... | @@ -603,6 +603,9 @@ implemented. |
... | @@ -603,6 +603,9 @@ implemented. |
|
The [runner documentation](https://docs.gitlab.com/runner/) has a [section on security](https://docs.gitlab.com/runner/security/) which
|
|
The [runner documentation](https://docs.gitlab.com/runner/) has a [section on security](https://docs.gitlab.com/runner/security/) which
|
|
this section is based on.
|
|
this section is based on.
|
|
|
|
|
|
|
|
We are considering a [tiered approach](https://gitlab.torproject.org/tpo/tpa/team/-/issues/41044) to container configuration
|
|
|
|
and access to limit the impact of those security issues.
|
|
|
|
|
|
### Image, volume and container storage and caching
|
|
### Image, volume and container storage and caching
|
|
|
|
|
|
GitLab runner creates quite a few containers, volumes and images in
|
|
GitLab runner creates quite a few containers, volumes and images in
|
... | @@ -752,9 +755,6 @@ preferred CI tool. |
... | @@ -752,9 +755,6 @@ preferred CI tool. |
|
|
|
|
|
## Overview
|
|
## Overview
|
|
|
|
|
|
<!-- describe the overall project. should include a link to a ticket -->
|
|
|
|
<!-- that has a launch checklist -->
|
|
|
|
|
|
|
|
Ever since the [GitLab migration](howto/gitlab), we have discussed the
|
|
Ever since the [GitLab migration](howto/gitlab), we have discussed the
|
|
possibility of replacing Jenkins with GitLab CI, or at least using
|
|
possibility of replacing Jenkins with GitLab CI, or at least using
|
|
GitLab CI in some way.
|
|
GitLab CI in some way.
|
... | | ... | |