Revert "stop using GHA"

This reverts commit ca451c165c8728f63bcacf0b38cd773fe060e076.

5 files changed, 113 insertions, 0 deletions

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
new file mode 100644
index 0000000..5ace460
--- /dev/null
+++ b/.github/dependabot.yml
@@ -0,0 +1,6 @@
+version: 2
+updates:
+  - package-ecosystem: "github-actions"
+    directory: "/"
+    schedule:
+      interval: "weekly"
diff --git a/.github/workflows/check-links.yaml b/.github/workflows/check-links.yaml
new file mode 100644
index 0000000..ea20952
--- /dev/null
+++ b/.github/workflows/check-links.yaml
@@ -0,0 +1,38 @@
+name: Check links
+on:
+  schedule:
+    - cron: "30 6 * * 0"
+  workflow_dispatch:
+  pull_request:
+    branches:
+      - main
+jobs:
+  lychee:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      - uses: DeterminateSystems/nix-installer-action@main
+      - uses: DeterminateSystems/magic-nix-cache-action@main
+      - name: Build the site
+        run: nix build --print-build-logs
+      - name: Restore lychee cache
+        uses: actions/cache@v3
+        with:
+          path: .lycheecache
+          key: cache-lychee-${{ hashFiles('**/*.md') }}
+          restore-keys: cache-lychee-
+      - name: Check links
+        id: lychee
+        uses: lycheeverse/lychee-action@v1
+        with:
+          args: --verbose --no-progress './result/**/*.html'
+          output: ./lycheeresult.md
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+      - name: Create issue
+        if: ${{ github.event_name != 'pull_request' && env.lychee_exit_code != 0 }}
+        uses: peter-evans/create-issue-from-file@v4
+        with:
+          title: "[lychee] Broken links"
+          content-filepath: ./lycheeresult.md
+          labels: bug, automated issue
diff --git a/.github/workflows/page.yml b/.github/workflows/page.yml
new file mode 100644
index 0000000..84fec1e
--- /dev/null
+++ b/.github/workflows/page.yml
@@ -0,0 +1,40 @@
+name: "Deploy to Pages"
+on:
+  push:
+    branches: ["main"]
+    paths-ignore:
+      - ".github/**"
+      - "README.md"
+  workflow_dispatch:
+permissions:
+  contents: read
+  pages: write
+  id-token: write
+concurrency:
+  group: "pages"
+  cancel-in-progress: true
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      - uses: DeterminateSystems/nix-installer-action@main
+      - uses: DeterminateSystems/magic-nix-cache-action@main
+      - name: flake check
+        run: nix flake check
+      - name: Build the site
+        run: nix build --print-build-logs
+      - name: Upload artifact
+        uses: actions/upload-pages-artifact@v3
+        with:
+          path: ./result
+  deploy:
+    runs-on: ubuntu-latest
+    environment:
+      name: github-pages
+      url: ${{ steps.deployment.outputs.page_url }}
+    needs: build
+    steps:
+      - name: Deploy to GitHub Pages
+        id: deployment
+        uses: actions/deploy-pages@v4
diff --git a/.github/workflows/update.yml b/.github/workflows/update.yml
new file mode 100644
index 0000000..af05bdf
--- /dev/null
+++ b/.github/workflows/update.yml
@@ -0,0 +1,28 @@
+name: "Update flake.lock"
+on:
+  workflow_dispatch:
+  schedule:
+    - cron: "30 5 * * 0"
+# you need to grant permissions to create PR:
+# https://github.com/DeterminateSystems/update-flake-lock/issues/75
+jobs:
+  update-flake-lock:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+      - name: Install Nix
+        uses: cachix/install-nix-action@V27
+        with:
+          extra_nix_config: |
+            access-tokens = github.com=${{ secrets.GITHUB_TOKEN }}
+      - name: Update flake.lock
+        id: update-flake-lock
+        uses: DeterminateSystems/update-flake-lock@v23
+        with:
+          pr-title: "Update flake.lock"
+          commit-msg: "chore: update flake"
+          pr-assignees: fcuny
+          pr-labels: |
+            dependencies
+            automated
diff --git a/flake.nix b/flake.nix
index 4fc38e6..07770fb 100644
--- a/flake.nix
+++ b/flake.nix
@@ -22,6 +22,7 @@
               check-yaml.enable = true;
               check-merge-conflicts.enable = true;
               end-of-file-fixer.enable = true;
+              actionlint.enable = true;
             };
           };
         };