summary refs log tree commit diff
path: root/.github/workflows/ofborg-pending.yml
blob: b5e0a7c46c8c172517237afb545d9b4e0b249cb4 (plain) (blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
name: "Set pending OfBorg status"
on:
  pull_request_target:

# Sets the ofborg-eval status to "pending" to signal that we are waiting for
# OfBorg even if it is running late. The status will be overwritten by OfBorg
# once it starts evaluation.

# WARNING:
# When extending this action, be aware that $GITHUB_TOKEN allows (restricted) write access to
# the GitHub repository. This means that it should not evaluate user input in a
# way that allows code injection.

permissions:
  contents: read

jobs:
  action:
    if: github.repository_owner == 'NixOS'
    permissions:
      statuses: write
    runs-on: ubuntu-latest
    steps:
    - name: "Set pending OfBorg status"
      env:
        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
      run: |
        curl \
          -X POST \
          -H "Accept: application/vnd.github.v3+json" \
          -H "Authorization: Bearer $GITHUB_TOKEN" \
          -d '{"context": "ofborg-eval", "state": "pending", "description": "Waiting for OfBorg..."}' \
          "https://api.github.com/repos/NixOS/nixpkgs/commits/${{ github.event.pull_request.head.sha }}/statuses"