https://github.com/defelo/nixpkgs-review-gha

Run nixpkgs-review in GitHub Actions
https://github.com/defelo/nixpkgs-review-gha

github-actions nix nixos nixpkgs

Last synced: about 1 year ago
JSON representation

Run nixpkgs-review in GitHub Actions

• Host: GitHub
• URL: https://github.com/defelo/nixpkgs-review-gha
• Owner: Defelo
• License: mit
• Created: 2025-01-25T12:53:15.000Z (over 1 year ago)
• Default Branch: main
• Last Pushed: 2025-03-18T15:47:14.000Z (about 1 year ago)
• Last Synced: 2025-03-18T16:42:50.486Z (about 1 year ago)
• Topics: github-actions, nix, nixos, nixpkgs
• Language: JavaScript
• Homepage:
• Size: 15.6 KB
• Stars: 19
• Watchers: 1
• Forks: 22
• Open Issues: 2
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

          
# nixpkgs-review-gha

Run [nixpkgs-review](https://github.com/Mic92/nixpkgs-review) in GitHub Actions

## Features

- Build on `x86_64-linux`, `aarch64-linux`, `x86_64-darwin` and `aarch64-darwin`

- No local setup

- Automatically post results on the reviewed pull request

- Wait for [upstream evaluation](https://github.com/NixOS/nixpkgs/blob/master/.github/workflows/eval.yml) to finish before running nixpkgs-review

- Optionally start an [Upterm](https://upterm.dev/) session after nixpkgs-review has finished to allow interactive testing/debugging via SSH

- Push new packages to an [Attic](https://github.com/zhaofengli/attic) or [Cachix](https://www.cachix.org/) cache

- Automatically approve pull requests on review success

- Add a "Run nixpkgs-review" shortcut to pull request pages in nixpkgs

## Setup

1. [Fork](https://github.com/Defelo/nixpkgs-review-gha/fork) this repository.

2. In your fork, go to the [Actions](../../actions) tab and enable GitHub Actions workflows.

3. (optional) If you want nixpkgs-review-gha to automatically post the results on the reviewed pull requests or automatically approve them, you need to generate a [personal access token](https://docs.github.com/en/authentication/keeping-your-account-and-data-secure/managing-your-personal-access-tokens):

    1. Go to  and generate a new **classic** token with the `public_repo` scope.

    2. In your fork, go to "Settings" > "Secrets and variables" > "actions" and [add a new repository secret](../../settings/secrets/actions/new) with the name `GH_TOKEN` and set its value to the personal access token you generated before.

4. (optional) Follow these steps if you want nixpkgs-review-gha to push new packages to an [Attic](https://github.com/zhaofengli/attic) cache. Replace `$CACHE` with the name of your cache (e.g. `nixpkgs`) and `$SERVER` with the url of your Attic server (e.g. `https://attic.example.com/`):

    1. Generate a token with `push` and `pull` permissions: `atticadm make-token --sub nixpkgs-review-gha --validity 1y --pull $CACHE --push $CACHE`

    2. [Create a new variable](../../settings/variables/actions/new) with the name `ATTIC_SERVER` and set it to the value of `$SERVER`

    3. [Create a new variable](../../settings/variables/actions/new) with the name `ATTIC_CACHE` and set it to the value of `$CACHE`

    4. [Create a new secret](../../settings/secrets/actions/new) with the name `ATTIC_TOKEN` and set its value to the token you generated before.

5. (optional) Follow these steps if you want nixpkgs-review-gha to push new packages to a [Cachix](https://www.cachix.org/) cache. Note: If both an Attic cache and a Cachix cache is configured, the Attic cache is preferred and the Cachix configuration is ignored.

    1. Go to https://app.cachix.org/ and set up your binary cache.

    2. [Create a new variable](../../settings/variables/actions/new) with the name `CACHIX_CACHE` and set it to the name of your Cachix cache.

    3. [Create a new secret](../../settings/secrets/actions/new) with the name `CACHIX_AUTH_TOKEN` and set its value to your auth token. If you are using a self-signed cache, you also need to create a `CACHIX_SIGNING_KEY` secret and set its value to your private signing key.

6. (optional) Add [`shortcut.js`](shortcut.js) as a user script in your browser for `https://github.com/` for example using the [User JavaScript and CSS chrome extension](https://chromewebstore.google.com/detail/user-javascript-and-css/nbhcbdghjpllgmfilhnhkllmkecfmpld).

## Usage

1. Open the [review workflow in the "Actions" tab](../../actions/workflows/review.yml)

2. Click on "Run workflow"

3. Enter the number of the pull request in nixpkgs you would like to review and click on "Run workflow"

4. Reload the page if necessary and click on the review run to see the logs