♻️ Update dependencies #7
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| --- | |
| name: "♻️ Update dependencies" | |
| # yamllint disable-line rule:truthy | |
| on: | |
| workflow_dispatch: | |
| schedule: | |
| - cron: "0 8 1 * *" | |
| jobs: | |
| update-dependencies: | |
| name: "Update dependencies" | |
| runs-on: ubuntu-latest | |
| permissions: | |
| # IMPORTANT: mandatory to raise the PR | |
| id-token: write | |
| pull-requests: write | |
| repository-projects: write | |
| contents: write | |
| env: | |
| GH_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| steps: | |
| - name: "Checkout repository" | |
| uses: actions/checkout@v4 | |
| - name: "Set up Python" | |
| uses: actions/setup-python@v5 | |
| - name: "Update Python dependencies" | |
| uses: pdm-project/update-deps-action@v1 | |
| with: | |
| sign-off-commit: "true" | |
| token: ${{ secrets.GH_TOKEN }} | |
| commit-message: "Chore: Update dependencies and pdm.lock [skip ci]" | |
| pr-title: "Update Python module dependencies" | |
| update-strategy: eager | |
| # Whether to install PDM plugins before update | |
| install-plugins: "false" | |
| - name: "Export dependencies" | |
| run: | | |
| pdm export --without-hashes -o requirements.txt | |
| # Ideally, we should export requirements.txt then amend the earlier PR | |
| # update-deps-action could be modified to export PR number as as output | |
| # Or we add the option to export the requirements.txt in that action |