Welcome to mirror list, hosted at ThFree Co, Russian Federation.

gitlab.com/gitlab-org/gitlab-foss.git - Unnamed repository; edit this file 'description' to name the repository.
summaryrefslogtreecommitdiff
path: root/doc/ci/runners/README.md
diff options
context:
space:
mode:
Diffstat (limited to 'doc/ci/runners/README.md')
-rw-r--r--doc/ci/runners/README.md13
1 files changed, 10 insertions, 3 deletions
diff --git a/doc/ci/runners/README.md b/doc/ci/runners/README.md
index 295d953db11..c76027f6949 100644
--- a/doc/ci/runners/README.md
+++ b/doc/ci/runners/README.md
@@ -62,7 +62,7 @@ Now simply register the runner as any runner:
sudo gitlab-runner register
```
-Shared runners are enabled by default as of GitLab 8.2, but can be disabled with the
+Shared runners are enabled by default as of GitLab 8.2, but can be disabled with the
`DISABLE SHARED RUNNERS` button. Previous versions of GitLab defaulted shared runners to
disabled.
@@ -142,5 +142,12 @@ project.
# Attack vectors in runners
-Mentioned briefly earlier, but the following things of runners can be exploited.
-We're always looking for contributions that can mitigate these [Security Considerations](https://gitlab.com/gitlab-org/gitlab-ci-multi-runner/blob/master/docs/security/index.md).
+Depending on the executor that GitLab Runners use, they may not offer secure
+isolation between projects that they do builds for. In that case, you are
+**trusting** all GitLab users who can push code to project A, B or C to run
+shell scripts on the machine hosting runner X.
+
+We're always looking for contributions that can mitigate these Security
+considerations. Read more on [Runners security][security].
+
+[security]: https://gitlab.com/gitlab-org/gitlab-ci-multi-runner/blob/master/docs/security/index.md
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-20 12:09:35 +0300