fix check workflow

2026-02-20 18:58:55 +02:00
parent 45ce478dd4
commit a41c885bb2
3 changed files with 41 additions and 4 deletions
--- a/.gitea/workflows/check.yml
+++ b/.gitea/workflows/check.yml
@@ -7,7 +7,7 @@ on:
    branches: [main]

 jobs:
-  build:
+  check:
    runs-on: nixos-latest

    steps:
@@ -16,5 +16,3 @@ jobs:

      - name: Check
        run: nix flake check
-        env:
-          NIX_CONFIG: "experimental-features = nix-command flakes"
--- a/flake.nix
+++ b/flake.nix
@@ -68,6 +68,7 @@
      ...
    }@inputs:
    flake-parts.lib.mkFlake { inherit inputs; } (
+      { withSystem, ... }:
      let
        ssh.publicKeys = {
          yubikey = "ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBLIUkESu5NnBi1M0+ZjYrkp6/rIFuwc3aguspf98jmOydNce6l65cnS3GRzc9oWx4lu11ahi87ZuE+pYV+gaHm4=";
@@ -124,6 +125,44 @@
            };

          images.turny = self.nixosConfigurations.turny.config.system.build.sdImage;
+
+          dockerImages =
+            nixpkgs.lib.genAttrs
+              [
+                "x86_64-linux"
+                "aarch64-linux"
+              ]
+              (
+                system:
+                withSystem system (
+                  { pkgs, ... }:
+                  {
+                    node = pkgs.dockerTools.buildImage {
+                      name = "node";
+                      tag = "latest";
+                      runAsRoot = ''
+                        #!${pkgs.stdenv.shell}
+                        set -e
+                        ${pkgs.dockerTools.shadowSetup}
+                        groupadd -r node
+                        useradd -r -g node node
+                      '';
+                      copyToRoot = pkgs.buildEnv {
+                        name = "image-root";
+                        pathsToLink = [ "/" ];
+                        paths = with pkgs; [
+                          nodejs
+                          nix
+                          busybox
+                        ];
+                      };
+                      config.Env = [
+                        "NIX_CONFIG=experimental-features = nix-command flakes"
+                      ];
+                    };
+                  }
+                )
+              );
          colmenaHive = colmena.lib.makeHive self.outputs.colmena;

          colmena =
--- a/hosts/freun-dev/services.nix
+++ b/hosts/freun-dev/services.nix
@@ -451,7 +451,7 @@ in
        labels = [
          "linux_arm64"
          "ubuntu-latest:docker://node:latest"
-          "nixos-latest:docker://nixos/nix:latest"
+          "nixos-latest:docker://repomaa/node:latest"
        ];
        tokenFile = secrets.gitea-actions-runner.path;
        url = "https://${config.services.gitea.subdomain}.${config.networking.domain}";