Skip to content
Latchkey

uv-lock-sync workflow (vstorm-co/pydantic-deepagents)

The uv-lock-sync workflow from vstorm-co/pydantic-deepagents, explained and optimized by Latchkey.

C

CI health: C - fair

Point runs-on at Latchkey and get run de-duplication, job timeouts, SHA-pinned actions, self-healing for flaky steps, and up to 58% lower cost, applied automatically.

Grade your own workflow free or run it on Latchkey →
Source: vstorm-co/pydantic-deepagents.github/workflows/uv-lock-sync.ymlLicense MITView source

What it does

This is the uv-lock-sync workflow from the vstorm-co/pydantic-deepagents repository, a real project running GitHub Actions. It is shown here with attribution under its MIT license.

Below, Latchkey shows a faster, safer version produced by its optimization engine.

The workflow

workflow (.yml)
name: uv-lock-sync

# Runs after Renovate bumps pyproject.toml on its branch.
# Renovate's pep621 manager updates pyproject.toml but does not know how
# to regenerate uv.lock - this workflow fills that gap.

on:
  push:
    branches:
      - renovate/**

jobs:
  sync:
    name: Sync uv.lock
    runs-on: ubuntu-latest
    permissions:
      contents: write
    steps:
      - uses: actions/checkout@v4
        with:
          # Use the default GITHUB_TOKEN - has write access to the branch
          # that Renovate already pushed to.
          token: ${{ secrets.GITHUB_TOKEN }}
          ref: ${{ github.ref }}

      - name: Install uv
        uses: astral-sh/setup-uv@v4

      - name: Regenerate uv.lock
        run: uv lock

      - name: Commit if uv.lock changed
        run: |
          git config user.name "github-actions[bot]"
          git config user.email "github-actions[bot]@users.noreply.github.com"
          git add uv.lock
          git diff --staged --quiet && echo "uv.lock unchanged" || (
            git commit -m "chore: sync uv.lock after Renovate bump" &&
            git push
          )

The same workflow, on Latchkey

Removes redundant runs and caps runaway jobs. Added and changed lines are highlighted.

name: uv-lock-sync
 
# Runs after Renovate bumps pyproject.toml on its branch.
# Renovate's pep621 manager updates pyproject.toml but does not know how
# to regenerate uv.lock - this workflow fills that gap.
 
on:
  push:
    branches:
      - renovate/**
 
concurrency:
  group: ${{ github.workflow }}-${{ github.ref }}
  cancel-in-progress: true
 
jobs:
  sync:
    timeout-minutes: 30
    name: Sync uv.lock
    runs-on: latchkey-small
    permissions:
      contents: write
    steps:
      - uses: actions/checkout@v4
        with:
          # Use the default GITHUB_TOKEN - has write access to the branch
          # that Renovate already pushed to.
          token: ${{ secrets.GITHUB_TOKEN }}
          ref: ${{ github.ref }}
 
      - name: Install uv
        uses: astral-sh/setup-uv@v4
 
      - name: Regenerate uv.lock
        run: uv lock
 
      - name: Commit if uv.lock changed
        run: |
          git config user.name "github-actions[bot]"
          git config user.email "github-actions[bot]@users.noreply.github.com"
          git add uv.lock
          git diff --staged --quiet && echo "uv.lock unchanged" || (
            git commit -m "chore: sync uv.lock after Renovate bump" &&
            git push
          )
 

What changed

1 third-party action is referenced by a movable tag. Pin it to the commit SHA (Latchkey resolves and applies this automatically) so a repointed tag cannot change what runs.

This workflow runs 1 job per trigger. On Latchkey the same minutes cost up to 58% less than GitHub-hosted, with zero queue time.

Actions used in this workflow