We provide a variety of self-hosted runner configurations. Choose the one that best suits your project's needs (each runner is labelled with size, OS and architecture):

Specify the self-hosted runner in your workflow by setting the job.runs-on parameter. For instance, runs-on: [self-hosted, linux, x64, 4xlarge], runs-on: [self-hosted, windows, x64, xlarge].

If you're wondering about the security implications of using self-hosted runners in public repositories, consider these pointers:

• We suggest familiarizing yourself with GitHub's official guidelines on security implications of using self-hosted runners.
• To combat the risk of retaining unwanted or dangerous data, our project only supports ephemeral runners, which are discarded after running a single workflow.
• For an extra layer of protection against untrusted code execution, you might consider these strategies:
  • Require approval for workflow execution from all outside collaborators, providing you with an opportunity to review the code before execution.
  • Restrict workflows that can use self-hosted runners. This will prevent the use of self-hosted runners for workflows triggered on pull_request as it requires providing the exact git ref.