mirror of
https://github.com/searxng/searxng.git
synced 2025-12-25 13:10:01 +00:00
dd170964c7
All actions are pulled using the version hash, versions are handled by dependabot, and we'll have control over which actions get updated. Replaces Trivy scanner with Docker Scout, we have recently begun analyzing the images there, and the action will keep us in sync about the problems on GHCS dashboard.
38 lines
1007 B
YAML
38 lines
1007 B
YAML
---
|
|
name: Cleanup
|
|
|
|
# yamllint disable-line rule:truthy
|
|
on:
|
|
workflow_dispatch:
|
|
schedule:
|
|
- cron: "4 4 * * *"
|
|
|
|
concurrency:
|
|
group: ${{ github.workflow }}
|
|
cancel-in-progress: false
|
|
|
|
permissions:
|
|
contents: read
|
|
|
|
jobs:
|
|
registry:
|
|
# FIXME: On forks it fails with "Failed to fetch packages: missing field `id` at line 1 column 141"
|
|
if: github.repository_owner == 'searxng' || github.event_name == 'workflow_dispatch'
|
|
name: Registry
|
|
runs-on: ubuntu-24.04
|
|
permissions:
|
|
# Organization GHCR
|
|
packages: write
|
|
|
|
steps:
|
|
- name: Prune
|
|
uses: snok/container-retention-policy@4f22ef80902ad409ed55a99dc5133cc1250a0d03 # v3.0.0
|
|
with:
|
|
account: "${{ github.repository_owner }}"
|
|
token: "${{ secrets.GITHUB_TOKEN }}"
|
|
# Remove only cache images https://github.com/snok/container-retention-policy/issues/97
|
|
image-names: "cache"
|
|
image-tags: "!searxng*"
|
|
cut-off: "1d"
|
|
keep-n-most-recent: "30"
|