Add allowed images restriction to Kubernetes executor (!2669) · Merge requests · GitLab.org / gitlab-runner

Yi Wei Pang requested to merge pangyiwei/gitlab-runner:2893-allowed-images-k8s-executor into main Jan 11, 2021

What does this MR do?

Adds the allowed_images and allowed_services features of the Docker executor to the Kubernetes executor.

Why was this MR needed?

For security reasons, developers at my company can only run pre-approved Docker images in Kubernetes. This change will allow us to restrict Runner images on k8s for this purpose. This attempts to continue from !840 (closed)

What's the best way to test this MR?

Wrote the tests based on what was in !840 (closed). Let me know if there should be more tests to write.

What are the relevant issue numbers?

Closes #2893 (closed)

Edited Aug 12, 2021 by Tomasz Maczukin

Add allowed images restriction to Kubernetes executor

What does this MR do?

Why was this MR needed?

What's the best way to test this MR?

What are the relevant issue numbers?

Merge request reports