nur @main -
refs -
log -
-
https://git.jolheiser.com/nur.git
Signature
-----BEGIN PGP SIGNATURE-----
wsBcBAABCAAQBQJfyUTiCRBK7hj4Ov3rIwAAdHIIABezN5GZPLPGU56u3g0T/HXK
CP4fa1gW+kcmrTvcqn79VQZQ9n/EXVy/Ez81B0kMOott0WDjpcP44NGJ6gZ8pVG6
G6dVs5hTO4BYL8SrQnc8LNwMDuZtfQggQfyS//j8+q8dMAKxUc6OHpAD+ZfML4eb
9J/wWH9lca9Oy3bonhCjWsWbTEcZ9cAuQHD0/Wy0zWqpBdiUbvcUTMLQlAIkJgKo
a+XM7JvDC9aB0z/wOVFAJNSw3GpTZGjQxfvj3DBbRptdtSUk7y/B8t25dQZOci/4
xuIoz7TqjeGFpnMFehlQuttX8MUXjcFO+OnenWKf6C+u84fN9e2t3x0vNW65Mgg=
=6tQS
-----END PGP SIGNATURE-----
diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
index feedbd2498253fc71766d67ace3adcfa70c1658f..88f4ac2863c22b75ea9e1175d9a771e11f58a399 100644
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -48,6 +48,15 @@ if: ${{ matrix.cachixName != '<YOUR_CACHIX_NAME>' }}
with:
name: ${{ matrix.cachixName }}
signingKey: '${{ secrets.CACHIX_SIGNING_KEY }}'
+ - name: Check evaluation
+ run: |
+ nix-env -f . -qa \* --meta --xml \
+ --allowed-uris https://static.rust-lang.org \
+ --option restrict-eval true \
+ --option allow-import-from-derivation true \
+ --drv-path --show-trace \
+ -I nixpkgs=$(nix-instantiate --find-file nixpkgs) \
+ -I $PWD
- name: Build nix packages
# TODO switch to default nixpkgs channel once nix-build-uncached 1.0.0 is in stable
run: nix run -I 'nixpkgs=channel:nixos-unstable' nixpkgs.nix-build-uncached -c nix-build-uncached ci.nix -A cacheOutputs