[01:47:33] Hi, I am a volunteer contributor and interested in T292094 which is just marked as resolved. Is there a place to check the changes and decisions? [01:47:33] T292094: Limit GitLab shared runners to trusted contributors - https://phabricator.wikimedia.org/T292094 [09:53:02] Lens0021: hi, the best is probably to ask directly on the task ;) [10:24:21] 10GitLab (CI & Job Runners), 10Security-Team, 10Release-Engineering-Team (Done by Thu 04 Nov 🧟), 10User-brennen: Enable runners for projects under gitlab.wikimedia.org security group - https://phabricator.wikimedia.org/T294050 (10Jelto) @sbassett I seems all runners were offline. During work on T295481 I p... [15:53:24] 10GitLab (CI & Job Runners), 10Security-Team, 10Release-Engineering-Team (Done by Thu 04 Nov 🧟), 10User-brennen: Enable runners for projects under gitlab.wikimedia.org security group - https://phabricator.wikimedia.org/T294050 (10sbassett) 05Openβ†’03Resolved @Jelto - ah, ok, thanks. Yes, things look go... [17:03:32] 10GitLab (Infrastructure), 10serviceops: Migrate gitlab-test instance to puppet - https://phabricator.wikimedia.org/T297411 (10Jelto) [19:31:29] 10GitLab (CI & Job Runners), 10Release-Engineering-Team (Next), 10User-brennen: Provision untrusted GitLab job runners to handle user-level projects and merge requests from forks - https://phabricator.wikimedia.org/T297426 (10brennen) [19:32:48] Lens0021: the shorthand version is that the /repos group is now where we're putting "officially hosted" sorts of projects, which have access to a pool of runners, and we expect to follow up with the additional things mentioned in https://phabricator.wikimedia.org/T292094#7493614 [19:33:08] i also just filed the above as a followup for untrusted runners. [19:52:39] 10GitLab (CI & Job Runners), 10Release-Engineering-Team (Next), 10User-brennen: Provision untrusted GitLab job runners to handle user-level projects and merge requests from forks - https://phabricator.wikimedia.org/T297426 (10brennen) p:05Triageβ†’03Medium [23:22:21] 10GitLab (Infrastructure), 10serviceops, 10Release-Engineering-Team (Radar): Self-reported GitLab SSH host key fingerprints don’t appear to match actual host key fingerprints - https://phabricator.wikimedia.org/T296944 (10Dzahn) Brennen got that right, there are 2 separate SSH daemons on each gitlab server.... [23:37:07] 10GitLab (Infrastructure), 10serviceops, 10Release-Engineering-Team (Yak Shaving πŸƒπŸͺ’), 10Upstream: Self-reported GitLab SSH host key fingerprints don’t appear to match actual host key fingerprints - https://phabricator.wikimedia.org/T296944 (10brennen) > I am tempted to call this a minor bug or improvement... [23:39:01] 10GitLab (Infrastructure), 10serviceops, 10Release-Engineering-Team (Yak Shaving πŸƒπŸͺ’), 10Upstream: Self-reported GitLab SSH host key fingerprints don’t appear to match actual host key fingerprints - https://phabricator.wikimedia.org/T296944 (10Dzahn) Cool! Yea, so our case is we have 2 IP addresses on the s...