update-flake-lock #309

	name: update-flake-lock
	on:
	workflow_dispatch: # allows manual triggering
	schedule:
	- cron: '0 0 * * 1,4' # Run twice a week

	jobs:
	lockfile:
	runs-on: ubuntu-latest
	steps:
	- name: Checkout repository
	uses: actions/checkout@v5
	- name: Install Nix
	uses: cachix/install-nix-action@v31

	- name: Generate App Token
	uses: actions/create-github-app-token@v2
	id: app-token
	with:
	app-id: ${{ vars.CI_APP_ID }}
	private-key: ${{ secrets.CI_APP_PRIVATE_KEY }}

	- name: Update flake.lock
	uses: DeterminateSystems/update-flake-lock@v27
	with:
	token: ${{ steps.app-token.outputs.token }}
	pr-labels: dependencies

Provide feedback