The goal of this spike is to host the GH Actions runners in ECP with target KubeCF clusters running on Kind in ECP. GH Actions recommends not using self-hosted runners for public repos so we need to determine if we can sandbox the runners to mitigate risks and minimize the blast radius. May need more inputs from @viovanov and Dirk and subsequent grooming of this story.
The goal of this spike is to host the GH Actions runners in ECP with target KubeCF clusters running on Kind in ECP. GH Actions recommends not using self-hosted runners for public repos so we need to determine if we can sandbox the runners to mitigate risks and minimize the blast radius. May need more inputs from @viovanov and Dirk and subsequent grooming of this story.
https://docs.github.com/en/actions/hosting-your-own-runners/about-self-hosted-runners#self-hosted-runner-security-with-public-repositories