apiVersion: apps/v1 kind: Deployment metadata: name: act-runner namespace: jam-cloud-infra labels: app: act-runner spec: replicas: 1 strategy: type: Recreate selector: matchLabels: app: act-runner template: metadata: annotations: cluster-autoscaler.kubernetes.io/safe-to-evict: "false" labels: app: act-runner spec: hostAliases: - ip: "10.128.139.89" hostnames: - "git.staging.jamkazam.com" imagePullSecrets: - name: gitea-registry containers: - name: runner image: gitea/act_runner:0.3.0 workingDir: /data resources: requests: cpu: 250m memory: 512Mi limits: cpu: 2000m memory: 8Gi env: - name: CONFIG_FILE value: /etc/act_runner/config.yaml - name: GITEA_INSTANCE_URL value: http://gitea.jam-cloud-infra.svc.cluster.local:80 - name: GITEA_RUNNER_REGISTRATION_TOKEN value: "UL6SkV1E8cN6M017vNrmN3X2PPGxmcIDjsbbUvuq" - name: GITEA_RUNNER_NAME value: "k8s-runner" - name: GITEA_RUNNER_LABELS value: "ubuntu-latest:docker://node:16-bullseye,ubuntu-22.04:docker://node:16-bullseye,dagger:docker://nixpkgs/nix:latest" - name: DOCKER_HOST value: unix:///var/run/docker/docker.sock - name: DOCKER_API_VERSION value: "1.41" securityContext: privileged: true volumeMounts: - name: docker-sock mountPath: /var/run/docker - name: config mountPath: /etc/act_runner - name: data mountPath: /data - name: dind image: docker:27-dind resources: requests: cpu: 500m memory: 1Gi limits: cpu: 4000m memory: 8Gi command: ["dockerd", "--host=unix:///var/run/docker/docker.sock", "--tls=false", "--data-root=/var/lib/docker", "--insecure-registry=gitea.jam-cloud-infra.svc.cluster.local"] env: - name: DOCKER_TLS_CERTDIR value: "" securityContext: privileged: true volumeMounts: - name: docker-sock mountPath: /var/run/docker - name: docker-lib mountPath: /var/lib/docker volumes: - name: docker-sock emptyDir: {} - name: data emptyDir: {} - name: docker-lib emptyDir: {} - name: config configMap: name: act-runner-config