UNPKG

@cloudsnorkel/cdk-github-runners

Version:

CDK construct to create GitHub Actions self-hosted runners. Creates ephemeral runners on demand. Easy to deploy and highly customizable.

github.com/CloudSnorkel/cdk-github-runners

CloudSnorkel/cdk-github-runners

133 lines (132 loc) 5.33 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
import { Construct } from 'constructs'; import { ImageBuilderComponent } from './aws-image-builder'; import { RunnerImageAsset } from './common'; import { Architecture, Os, RunnerVersion } from '../providers'; export interface RunnerImageComponentCustomProps { /** * Component name used for (1) image build logging and (2) identifier for {@link IConfigurableRunnerImageBuilder.removeComponent}. * * Name must only contain alphanumeric characters and dashes. */ readonly name?: string; /** * Commands to run in the built image. */ readonly commands?: string[]; /** * Assets to copy into the built image. */ readonly assets?: RunnerImageAsset[]; /** * Docker commands to run in the built image. * * For example: `['ENV foo=bar', 'RUN echo $foo']` * * These commands are ignored when building AMIs. */ readonly dockerCommands?: string[]; } /** * Components are used to build runner images. They can run commands in the image, copy files into the image, and run some Docker commands. */ export declare abstract class RunnerImageComponent { /** * Define a custom component that can run commands in the image, copy files into the image, and run some Docker commands. * * The order of operations is (1) assets (2) commands (3) docker commands. * * Use this to customize the image for the runner. * * **WARNING:** Docker commands are not guaranteed to be included before the next component */ static custom(props: RunnerImageComponentCustomProps): RunnerImageComponent; /** * A component to install the required packages for the runner. */ static requiredPackages(): RunnerImageComponent; /** * A component to prepare the required runner user. */ static runnerUser(): RunnerImageComponent; /** * A component to install the AWS CLI. */ static awsCli(): RunnerImageComponent; /** * A component to install the GitHub CLI. */ static githubCli(): RunnerImageComponent; /** * A component to install the GitHub CLI. */ static git(): RunnerImageComponent; /** * A component to install the GitHub Actions Runner. This is the actual executable that connects to GitHub to ask for jobs and then execute them. * * @param runnerVersion The version of the runner to install. Usually you would set this to latest. */ static githubRunner(runnerVersion: RunnerVersion): RunnerImageComponent; /** * A component to install Docker. * * On Windows this sets up dockerd for Windows containers without Docker Desktop. If you need Linux containers on Windows, you'll need to install Docker Desktop which doesn't seem to play well with servers (PRs welcome). */ static docker(): RunnerImageComponent; /** * A component to install Docker-in-Docker. * * @deprecated use `docker()` */ static dockerInDocker(): RunnerImageComponent; /** * A component to add a trusted certificate authority. This can be used to support GitHub Enterprise Server with self-signed certificate. * * @param source path to certificate file in PEM format * @param name unique certificate name to be used on runner file system */ static extraCertificates(source: string, name: string): RunnerImageComponent; /** * A component to set up the required Lambda entrypoint for Lambda runners. */ static lambdaEntrypoint(): RunnerImageComponent; /** * A component to add environment variables for jobs the runner executes. * * These variables only affect the jobs ran by the runner. They are not global. They do not affect other components. * * It is not recommended to use this component to pass secrets. Instead, use GitHub Secrets or AWS Secrets Manager. * * Must be used after the {@link githubRunner} component. */ static environmentVariables(vars: Record<string, string>): RunnerImageComponent; /** * Component name. * * Used to identify component in image build logs, and for {@link IConfigurableRunnerImageBuilder.removeComponent} */ abstract readonly name: string; /** * Returns commands to run to in built image. Can be used to install packages, setup build prerequisites, etc. */ abstract getCommands(_os: Os, _architecture: Architecture): string[]; /** * Returns assets to copy into the built image. Can be used to copy files into the image. */ getAssets(_os: Os, _architecture: Architecture): RunnerImageAsset[]; /** * Returns Docker commands to run to in built image. Can be used to add commands like `VOLUME`, `ENTRYPOINT`, `CMD`, etc. * * Docker commands are added after assets and normal commands. */ getDockerCommands(_os: Os, _architecture: Architecture): string[]; /** * Returns true if the image builder should be rebooted after this component is installed. */ shouldReboot(_os: Os, _architecture: Architecture): boolean; /** * Convert component to an AWS Image Builder component. * * @internal */ _asAwsImageBuilderComponent(scope: Construct, id: string, os: Os, architecture: Architecture): ImageBuilderComponent; }