executor: keep the runners unprivileged (!84) · Merge requests · gfx-ci / CI-tron

Martin Roukala requested to merge unprivileged_runners into master May 12, 2021

This really is not needed anymore, since runners are just expected to call the client and do some light processing of the results. I however needed to add podman's seccomp policy, to let buildah work in the container!

I cannot test this fully ahead of time because the gitlab runner always pulls the image. So let's cross fingers!

Admin message

executor: keep the runners unprivileged

Merge request reports