Skip to content

ci: run workflows on self-hosted runners#127

Merged
jmcte merged 5 commits into
mainfrom
pheidon/self-hosted-runners-20260531
May 31, 2026
Merged

ci: run workflows on self-hosted runners#127
jmcte merged 5 commits into
mainfrom
pheidon/self-hosted-runners-20260531

Conversation

@pheidon
Copy link
Copy Markdown
Contributor

@pheidon pheidon commented May 31, 2026

Summary

- Move non-fallback workflow jobs off GitHub-hosted runner labels and onto OMT self-hosted runner labels.
- Keep explicit hosted fork/fallback paths unchanged where present.
- Align workflow contract tests where this repository has them.

## Governing Issue

No linked issue. This follows JT's direct policy request that CI jobs should not run on GitHub-hosted runners unless they are explicit fallbacks.

## Validation

- [x] `git diff --check`
- [x] Workflow YAML parsed successfully
- [x] Hosted-runner policy scan found no non-fallback direct `ubuntu-*`, `macos-*`, or `windows-*` `runs-on` jobs in this patched worktree
- `pnpm exec vitest run test/workflow.test.ts test/release-workflow.test.ts test/security-workflow.test.ts`

  • pnpm lint

    Bootstrap Governance

    • Changes are scoped to the runner policy request
    • Contributor or PR guidance changes are not required
    • Auto-merge is enabled, or GitHub plan-limit evidence is recorded and the fallback merge-readiness policy applies
    • No real secrets, runtime auth, or machine-local env files are committed

    Merge Automation

    • Auto-merge is enabled, or the reason it is unavailable or unsafe is noted below

    Auto-merge is intentionally not enabled yet. This is a cross-repository runner policy migration and should land after CI confirms each repo's self-hosted route.

    Notes

    • Generated from /home/pheidon/.openclaw/workspace/reports/github-hosted-runner-audit-2026-05-31.md.
    • Repositories with explicit fork fallback jobs keep those jobs on GitHub-hosted runners by design.

@pheidon pheidon requested a review from jmcte as a code owner May 31, 2026 15:12
@athena-omt athena-omt added area:ai AI/model/agent behavior surface. area:infra Infrastructure, CI, release, governance, scripts, or repo setup. lane:hephaestus Hephaestus build/repo-ops lane. review:athena Athena review governance requested. risk:medium Medium-risk change; normal care required. state:waiting-checks Waiting for CI/check status to settle. status:needs-review PR is ready for Athena review. labels May 31, 2026
@jmcte jmcte enabled auto-merge (squash) May 31, 2026 17:28
@jmcte jmcte merged commit 2446f0b into main May 31, 2026
15 of 16 checks passed
@jmcte jmcte deleted the pheidon/self-hosted-runners-20260531 branch May 31, 2026 17:30
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jmcte jmcte jmcte approved these changes

Assignees

No one assigned

Labels

area:ai AI/model/agent behavior surface. area:infra Infrastructure, CI, release, governance, scripts, or repo setup. lane:hephaestus Hephaestus build/repo-ops lane. review:athena Athena review governance requested. risk:medium Medium-risk change; normal care required. state:waiting-checks Waiting for CI/check status to settle. status:needs-review PR is ready for Athena review.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@pheidon @jmcte @athena-omt