Option for builds from protected environments to be picked up by protected runners
Problem to solve
Protected environments provide a secure way to manage sensitive environments, however, the runners that pick up these jobs may reveal sensitive information if compromised.
Further details
Currently, protected runners pick only jobs created on protected branches or protected tags, and ignores other jobs. This must be factored in when implementing a solution.
Proposal
Provide a way for users to determine if jobs from protected environments should be picked up only by protected runners.
What does success look like, and how can we measure that?
User is able to decide whether or not jobs from protected environments should be processed by protected runners.