name: "Update flakes"
on:
  repository_dispatch:
  workflow_dispatch:
  schedule:
    - cron: "00 12 * * *"
jobs:
  createPullRequest:
    runs-on: ubuntu-latest
    # if: github.ref == 'refs/heads/main' # ensure workflow_dispatch only runs on main
    steps:
      - uses: actions/checkout@v4
      - name: Install Nix
        uses: cachix/install-nix-action@v24
        with:
          extra_nix_config: |
            experimental-features = nix-command flakes
          install_url: https://releases.nixos.org/nix/nix-2.19.0/install
      - name: Pull latest docker images
        run: nix ./utils/fetch-docker.sh
      - name: Update flake.lock
        id: update
        uses: DeterminateSystems/update-flake-lock@main
        with:
          pr-title: "Update flake.lock ${{ github.ref }}" # Title of PR to be created
          branch: "update-${{ github.ref }}"
          pr-labels: |                  # Labels to be set on the PR
            dependencies
            automated
permissions:
  pull-requests: write
  contents: write