archpkgs/actions
2
0
Fork 0
Code Activity Actions
actions/build-pkg/action.yml
Carlos Galindo 55439d23ad fix: init pacman keys and silence curl download
2026-06-17 11:26:20 +02:00

48 lines
1.7 KiB
YAML
Raw Blame History

name: 'Build ArchLinux package'
author: 'Carlos Galindo'
description: |
Builds an ArchLinux package in a container. Setups the container
with a build user, checks out the repository, imports required gpg
keys, builds and uploads the package as an artifact.
inputs:
extra_pkgs:
description: "Additional packages to be installed"
default: ""
gpg_keys:
description: "GPG keys to import in order to check signatures"
default: ""
runs:
using: 'composite'
steps:
- id: container_preparation
name: Install build tools
run: |
echo "##[group]Installing dependencies"
curl -s https://git.cgj.es/api/packages/archpkgs/arch/repository.key | pacman-key --add -
pacman-key --init
pacman-key --lsign-key 'archpkgs@noreply.git.cgj.es'
cat >> /etc/pacman.conf <<EOF
[archpkgs.git.cgj.es]
SigLevel = Required
Server = https://git.cgj.es/api/packages/archpkgs/arch/pkgs/$arch
EOF
pacman -Sy --noconfirm --noprogressbar git sudo nodejs ${{ inputs.extra_pkgs }}
echo "##[endgroup]"
useradd --create-home --shell=/bin/false builder && usermod --lock builder
echo 'builder ALL = NOPASSWD: /usr/bin/pacman' >> /etc/sudoers
- uses: actions/checkout@v6
- id: makepkg
name: Build the package
run: |
chown -R builder:builder $FORGEJO_WORKSPACE
if [ ! -z "${{ inputs.gpg_keys }}" ]; then
sudo -u builder gpg --receive-keys ${{ inputs.gpg_keys }}
fi
sudo -u builder makepkg --dir $FORGEJO_WORKSPACE --syncdeps --noconfirm --noprogressbar
- uses: actions/upload-artifact@v3
with:
name: packages
path: '*.pkg.tar.zst'
View git blame Copy permalink