name: update-flake-lock
on:
  workflow_dispatch:
  schedule:
    - cron: '*/5 * * * *' # runs weekly on Sunday at 00:00 ... 0 0 * * 0


env:
  USER: "runner"

jobs:
  lockfile:
    runs-on: ubuntu-latest
    steps:
      - name: Checkout repository
        uses: actions/checkout@v3
      - name: Install nix
        uses: DeterminateSystems/nix-installer-action@v7
        with:
          extra_nix_config: |
            experimental-features = nix-command flakes
            access-tokens = github.com=${{ secrets.GH_TOKEN_FOR_UPDATES }}
      - name: Update flake.lock
        uses: DeterminateSystems/update-flake-lock@v20
        with:
          pr-title: "[chore] Update flake.lock"
          pr-labels: |
            dependencies
            automated