This. As someone who migrated an organization’s repos from a self hosted Git server to GitHub (begrudgingly) and then back to a self hosted Git server again when it didn’t meet the business needs … emphatically this.
I was more thinking along the lines of having FOSS repos that are primarily used by me but which can accept external pull requests by anybody with a Github account.
I like the idea of running my own machine for CI but I don’t like the idea of having to become knowledgeable about avoiding exploits.
Just self host an open source runner like woodpecker and you’ll never have to move again
hell you can even self host github actions via
actThis. As someone who migrated an organization’s repos from a self hosted Git server to GitHub (begrudgingly) and then back to a self hosted Git server again when it didn’t meet the business needs … emphatically this.
How painful is the setup and general maintenance/security?
I’m considering the idea but I just don’t want to deal with people abusing exploits in the actions that give them access to my LAN.
If you’re working with a team, you can only let certain people trigger checks
I was more thinking along the lines of having FOSS repos that are primarily used by me but which can accept external pull requests by anybody with a Github account.
I like the idea of running my own machine for CI but I don’t like the idea of having to become knowledgeable about avoiding exploits.