From 6d7a147b74278313f022c612348952f6a8c0a5df Mon Sep 17 00:00:00 2001 From: Jake Howard Date: Thu, 28 Jul 2022 17:40:11 +0100 Subject: [PATCH] Don't bind docker socket in CI Use dind instead, as it's more secure and isolated https://docs.gitlab.com/ee/ci/docker/using_docker_build.html#use-docker-in-docker --- ansible/roles/gitlab_runner/files/config.toml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/ansible/roles/gitlab_runner/files/config.toml b/ansible/roles/gitlab_runner/files/config.toml index fc1aec4..ba44fb4 100644 --- a/ansible/roles/gitlab_runner/files/config.toml +++ b/ansible/roles/gitlab_runner/files/config.toml @@ -16,5 +16,5 @@ check_interval = 10 image = "alpine" privileged = true disable_cache = false - volumes = ["/cache", "/var/run/docker.sock:/var/run/docker.sock:ro"] + volumes = ["/cache", "/certs/client"] pull_policy = "if-not-present"