-
Notifications
You must be signed in to change notification settings - Fork 16
39 lines (31 loc) · 1.17 KB
/
update_dependencies.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
name: Update dependencies
# smoelius: 'Dependabot only makes Rust security updates if "Cargo.lock" exists'
# https://github.com/dependabot/dependabot-core/issues/2011
# So, every Friday at 3:00 UTC (Thursday at 22:00 EST), run `cargo upgrade` and create a PR.
on:
schedule:
- cron: "0 3 * * 5"
workflow_dispatch:
jobs:
update:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
with:
# https://github.com/peter-evans/create-pull-request/blob/main/docs/concepts-guidelines.md#triggering-further-workflow-runs
# https://github.com/peter-evans/create-pull-request/blob/main/docs/concepts-guidelines.md#push-using-ssh-deploy-keys
ssh-key: ${{ secrets.SSH_KEY }}
- name: Install cargo-edit
run: cargo install cargo-edit
- name: Update dependencies
run: |
cargo update
cargo upgrade
- name: Create pull request
uses: peter-evans/create-pull-request@v7
with:
title: Update dependencies
branch: update-dependencies
branch-suffix: random
commit-message: Update dependencies
token: ${{ secrets.REPO_TOKEN }}