Skip to content

feat(gha-runners): dockerized self-hosted runner setup#65

Merged
wavekat-eason merged 2 commits into
mainfrom
feat/gha-runners-docker
May 18, 2026
Merged

feat(gha-runners): dockerized self-hosted runner setup#65
wavekat-eason merged 2 commits into
mainfrom
feat/gha-runners-docker

Conversation

@wavekat-eason
Copy link
Copy Markdown
Contributor

@wavekat-eason wavekat-eason commented May 18, 2026

Summary

  • Add Docker-based self-hosted GitHub Actions runner setup (scripts/docker/ + scripts/setup-gha-runners-docker.sh)
  • Entrypoint chowns the named volume and keeps the registration token in env (not on disk)
  • Include matching uninstall script

Test plan

  • Run scripts/setup-gha-runners-docker.sh on a host and confirm runner registers
  • Trigger a workflow targeting the runner label and confirm it picks up the job
  • Run scripts/uninstall-gha-runners-docker.sh and confirm clean removal

🤖 Generated with Claude Code

wavekat-eason and others added 2 commits May 19, 2026 07:43
@wavekat-eason
Add docker Github Runner setup
39f6745
@wavekat-eason @claude
fix(gha-runners): chown named-volume in entrypoint; keep token in env
bb396f5 
Fresh Docker named volumes mount as root:root, so the `runner` user
couldn't write to /home/runner/runner on first start and config.sh
failed with permission denied. Entrypoint now starts as root, chowns
the volume, and re-execs itself as `runner` via sudo.

Also stop scrubbing RUNNER_TOKEN from env files after start — the
token is harmless after 1h and scrubbing made systemd's auto-restart
unable to recover when config.sh failed on the first attempt.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
@wavekat-eason wavekat-eason merged commit 120fd7e into main May 18, 2026
2 checks passed
@wavekat-eason wavekat-eason deleted the feat/gha-runners-docker branch May 18, 2026 20:33
@github-actions github-actions Bot mentioned this pull request May 18, 2026
Merged
@github-actions
Copy link
Copy Markdown
Contributor

github-actions Bot commented May 18, 2026

🔗 Preview: https://feat-gha-runners-docker.wavekat-com.pages.dev

wavekat-eason pushed a commit that referenced this pull request May 19, 2026
@github-actions
chore(main): release wavekat-com 0.0.23 (#63)
f99630f 
🤖 I have created a release *beep* *boop*
---


##
[0.0.23](wavekat-com-v0.0.22...wavekat-com-v0.0.23)
(2026-05-19)


### Features

* **gha-runners:** dockerized self-hosted runner setup
([#65](#65))
([120fd7e](120fd7e))
* self-hosted GHA runners on aoc-m3l + role-label workflow routing
([#64](#64))
([d2d8415](d2d8415))


### Bug Fixes

* **gha-runners:** install gh CLI and Rust toolchain in docker image
([#66](#66))
([9b167e7](9b167e7))
* **star-tracker:** de-inflate chart-view counts + per-repo breakdown
([#62](#62))
([954f9d4](954f9d4))

---
This PR was generated with [Release
Please](https://github.com/googleapis/release-please). See
[documentation](https://github.com/googleapis/release-please#release-please).

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@wavekat-eason