1 name: "Build Nixpkgs manual"
15 runs-on: ubuntu-latest
16 if: github.repository_owner == 'NixOS'
18 - uses: actions/checkout@v4
20 # pull_request_target checks out the base branch by default
21 ref: refs/pull/${{ github.event.pull_request.number }}/merge
22 - uses: cachix/install-nix-action@v23
24 # explicitly enable sandbox
25 extra_nix_config: sandbox = true
26 - uses: cachix/cachix-action@v12
28 # This cache is for the nixpkgs repo checks and should not be trusted or used elsewhere.
30 signingKey: '${{ secrets.CACHIX_SIGNING_KEY }}'
31 - name: Building Nixpkgs manual
32 run: NIX_PATH=nixpkgs=$(pwd) nix-build --option restrict-eval true pkgs/top-level/release.nix -A manual