Using a custom runner within a publice repository is introducing security risks.
For now we introduced a VM instance on bare metal. Within the VM we have k3s cluster running which is connected to GH. Every workflow is creating an instance which gets thrown away after every run.
This needs to be done:
[ ] Evaluate the implied security risks and measures against it.
fhennig
commented
9 months ago
Using a custom runner within a publice repository is introducing security risks.
For now we introduced a VM instance on bare metal. Within the VM we have k3s cluster running which is connected to GH. Every workflow is creating an instance which gets thrown away after every run.
This needs to be done:
This is done when: