isabelroses.com
my over complex system configurations
dotfiles.isabelroses.com/
nixos
nix
flake
dotfiles
linux
ci: pin actions
+2
.github/dependabot.yml
+2
.github/dependabot.yml
+3
-3
.github/workflows/build-isos.yml
+3
-3
.github/workflows/build-isos.yml
···
15
15
16
16
steps:
17
17
- name: Maximize Space
18
-
uses: easimon/maximize-build-space@v10
18
+
uses: easimon/maximize-build-space@fc881a613ad2a34aca9c9624518214ebc21dfc0c # v10
19
19
with:
20
20
overprovision-lvm: true
21
21
remove-android: true
···
25
25
remove-docker-images: true
26
26
27
27
- name: Checkout
28
-
uses: actions/checkout@v6
28
+
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
29
29
with:
30
30
persist-credentials: false
31
31
32
32
- name: Install Lix
33
-
uses: samueldr/lix-gha-installer-action@v2025-10-27
33
+
uses: samueldr/lix-gha-installer-action@8c7f8a4b0f594ab8a6dc3bf71c217587bbc756b5 # v2025-10-27
34
34
with:
35
35
extra_nix_config: |
36
36
substituters = https://nix-community.cachix.org https://catppuccin.cachix.org https://cache.nixos.org/ https://cache.tgirl.cloud/tgirlcloud/
+2
-2
.github/workflows/check-lock.yml
+2
-2
.github/workflows/check-lock.yml
···
20
20
21
21
steps:
22
22
- name: Checkout
23
-
uses: actions/checkout@v6
23
+
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
24
24
with:
25
25
ref: ${{ inputs.ref && inputs.ref || github.ref_name }}
26
26
persist-credentials: false
27
27
28
28
- name: Install Lix
29
-
uses: samueldr/lix-gha-installer-action@v2025-10-27
29
+
uses: samueldr/lix-gha-installer-action@8c7f8a4b0f594ab8a6dc3bf71c217587bbc756b5 # v2025-10-27
30
30
with:
31
31
extra_nix_config: |
32
32
substituters = https://nix-community.cachix.org https://catppuccin.cachix.org https://cache.nixos.org/ https://cache.tgirl.cloud/tgirlcloud/
+2
-2
.github/workflows/check.yml
+2
-2
.github/workflows/check.yml
···
31
31
32
32
steps:
33
33
- name: Checkout
34
-
uses: actions/checkout@v6
34
+
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
35
35
with:
36
36
ref: ${{ inputs.ref && inputs.ref || github.ref_name }}
37
37
persist-credentials: false
38
38
39
39
- name: Install Lix
40
-
uses: samueldr/lix-gha-installer-action@v2025-10-27
40
+
uses: samueldr/lix-gha-installer-action@8c7f8a4b0f594ab8a6dc3bf71c217587bbc756b5 # v2025-10-27
41
41
with:
42
42
extra_nix_config: |
43
43
substituters = https://nix-community.cachix.org https://catppuccin.cachix.org https://cache.nixos.org/ https://cache.tgirl.cloud/tgirlcloud/
+3
-3
.github/workflows/diff.yml
+3
-3
.github/workflows/diff.yml
···
17
17
runs-on: ubuntu-latest
18
18
steps:
19
19
- name: Checkout code
20
-
uses: actions/checkout@v6
20
+
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
21
21
with:
22
22
ref: ${{ inputs.ref && inputs.ref || github.ref_name }}
23
23
persist-credentials: false
24
24
25
25
- name: Install Lix
26
-
uses: samueldr/lix-gha-installer-action@v2025-10-27
26
+
uses: samueldr/lix-gha-installer-action@8c7f8a4b0f594ab8a6dc3bf71c217587bbc756b5 # v2025-10-27
27
27
with:
28
28
extra_nix_config: |
29
29
substituters = https://nix-community.cachix.org https://catppuccin.cachix.org https://cache.nixos.org/ https://cache.tgirl.cloud/tgirlcloud/
···
52
52
} >> "$GITHUB_OUTPUT"
53
53
54
54
- name: Run lix-diff
55
-
uses: isabelroses/lix-diff-action@main
55
+
uses: isabelroses/lix-diff-action@a09652283ba0df1f6841bd3383a7c119cadd3b8c # main
56
56
with:
57
57
attributes: ${{ steps.hosts.outputs.attributes }}
58
58
comment-strategy: update
+4
-4
.github/workflows/docs.yml
+4
-4
.github/workflows/docs.yml
···
19
19
20
20
steps:
21
21
- name: Checkout
22
-
uses: actions/checkout@v6
22
+
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
23
23
with:
24
24
persist-credentials: false
25
25
26
26
- name: Install Lix
27
-
uses: samueldr/lix-gha-installer-action@v2025-10-27
27
+
uses: samueldr/lix-gha-installer-action@8c7f8a4b0f594ab8a6dc3bf71c217587bbc756b5 # v2025-10-27
28
28
with:
29
29
extra_nix_config: |
30
30
substituters = https://nix-community.cachix.org https://catppuccin.cachix.org https://cache.nixos.org/ https://cache.tgirl.cloud/tgirlcloud/
···
34
34
run: nix build -L .#docs
35
35
36
36
- name: Upload Pages Artifact
37
-
uses: "actions/upload-pages-artifact@v4"
37
+
uses: "actions/upload-pages-artifact@7b1f4a764d45c48632c6b24a0339c27f5614fb0b" # v4.0.0
38
38
with:
39
39
path: "result/"
40
40
···
53
53
steps:
54
54
- name: Deploy to GitHub Pages
55
55
id: deployment
56
-
uses: actions/deploy-pages@v4
56
+
uses: actions/deploy-pages@d6db90164ac5ed86f2b6aed7e0febac5b3c0c03e # v4.0.5
+3
-3
.github/workflows/update.yml
+3
-3
.github/workflows/update.yml
···
21
21
22
22
steps:
23
23
- name: Checkout
24
-
uses: actions/checkout@v6
24
+
uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
25
25
with:
26
26
persist-credentials: false
27
27
28
28
- name: Install Lix
29
-
uses: samueldr/lix-gha-installer-action@v2025-10-27
29
+
uses: samueldr/lix-gha-installer-action@8c7f8a4b0f594ab8a6dc3bf71c217587bbc756b5 # v2025-10-27
30
30
with:
31
31
extra_nix_config: |
32
32
substituters = https://nix-community.cachix.org https://catppuccin.cachix.org https://cache.nixos.org/ https://cache.tgirl.cloud/tgirlcloud/
···
34
34
35
35
- name: Update Lockfile
36
36
id: pr
37
-
uses: DeterminateSystems/update-flake-lock@v27
37
+
uses: DeterminateSystems/update-flake-lock@c5930b397a673a70ca70be06020e943aeac310a1 # v27
38
38
with:
39
39
commit-msg: "flake.lock: update all inputs"
40
40
pr-title: "flake.lock: update all inputs"