runner: reproducible nix-built job image + compose-based act_runner

This commit is contained in:
2026-05-18 10:13:17 +00:00
parent f8a041f5b7
commit 623fe57683
7 changed files with 226 additions and 42 deletions

20
runner/compose.yml Normal file
View File

@@ -0,0 +1,20 @@
# Runs the act_runner that listens to Gitea and spawns one job
# container per workflow run. The job image (cargoxx-runner-job:latest)
# is built reproducibly from runner/flake.nix — run `nix run .#load-image`
# in this directory to load it into the host's Docker daemon before
# starting the runner.
version: "3.8"
services:
runner:
image: docker.io/gitea/act_runner:nightly
restart: unless-stopped
environment:
CONFIG_FILE: /config.yaml
GITEA_INSTANCE_URL: "${GITEA_INSTANCE_URL}"
GITEA_RUNNER_REGISTRATION_TOKEN: "${GITEA_RUNNER_REGISTRATION_TOKEN}"
GITEA_RUNNER_NAME: "${GITEA_RUNNER_NAME:-cargoxx-pkgs-runner}"
GITEA_RUNNER_LABELS: "${GITEA_RUNNER_LABELS:-self-hosted}"
volumes:
- ./config.yaml:/config.yaml:ro
- ./data:/data
- /var/run/docker.sock:/var/run/docker.sock