ci: allow unfree #7

	name: "Build"

	on:
	push:
	schedule:
	- cron: "40 6 * * *" # everyday at 6:40
	workflow_dispatch:

	jobs:
	tests:
	strategy:
	matrix:
	nurRepo:
	- mrtnvgr
	cachixName:
	- mrtnvgr
	nixPath:
	- nixpkgs=channel:nixos-unstable
	- nixpkgs=channel:nixpkgs-unstable
	- nixpkgs=channel:nixos-23.05

	runs-on: ubuntu-latest

	steps:
	- name: Checkout repository
	uses: actions/checkout@v4

	- name: Install nix
	uses: cachix/install-nix-action@v23
	with:
	nix_path: "${{ matrix.nixPath }}"
	extra_nix_config: \|
	experimental-features = nix-command flakes
	access-tokens = github.com=${{ secrets.GITHUB_TOKEN }}
	allowUnfree = true

	- name: Show nixpkgs version
	run: nix-instantiate --eval -E '(import <nixpkgs> {}).lib.version'

	- name: Setup cachix
	uses: cachix/cachix-action@v12
	if: ${{ matrix.cachixName != '<YOUR_CACHIX_NAME>' }}
	with:
	name: ${{ matrix.cachixName }}
	signingKey: '${{ secrets.CACHIX_SIGNING_KEY }}'
	authToken: '${{ secrets.CACHIX_AUTH_TOKEN }}'

	- name: Check evaluation
	run: \|
	nix-env -f . -qa \* --meta --xml \
	--allowed-uris https://static.rust-lang.org \
	--option restrict-eval true \
	--option allow-import-from-derivation true \
	--drv-path --show-trace \
	-I nixpkgs=$(nix-instantiate --find-file nixpkgs) \
	-I $PWD

	- name: Build nix packages
	run: nix shell -f '<nixpkgs>' nix-build-uncached -c nix-build-uncached ci.nix -A cacheOutputs

	- name: Trigger NUR update
	if: ${{ matrix.nurRepo != '<YOUR_REPO_NAME>' }}
	run: curl -XPOST "https://nur-update.nix-community.org/update?repo=${{ matrix.nurRepo }}"

Provide feedback