Commit 41941331 authored by Marcel Amirault's avatar Marcel Amirault

Merge branch 'patch-75' into 'master'

Clarify Runner sensitive information risk

See merge request gitlab-org/gitlab!25764
parents 3c76175f 9958dbd6
...@@ -337,8 +337,8 @@ How this feature will work: ...@@ -337,8 +337,8 @@ How this feature will work:
### Be careful with sensitive information ### Be careful with sensitive information
With some [Runner Executors](https://docs.gitlab.com/runner/executors/README.html), With some [Runner Executors](https://docs.gitlab.com/runner/executors/README.html),
if you can run a job on the Runner, you can get access to any code it runs if you can run a job on the Runner, you can get full access to the file system,
and get the token of the Runner. With shared Runners, this means that anyone and thus any code it runs as well as the token of the Runner. With shared Runners, this means that anyone
that runs jobs on the Runner, can access anyone else's code that runs on the that runs jobs on the Runner, can access anyone else's code that runs on the
Runner. Runner.
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment