[03:03:34] 10GitLab (Pipeline Services MigrationšŸ¤), 06collaboration-services: move security.wikimedia.org to kubernetes - https://phabricator.wikimedia.org/T350796#9866196 (10Arnoldokoth) 05Openā†’03Resolved [10:51:10] btullis: hey, it seems you edited the config of one of the gitlab-runners (Trusted Runner). What are you trying to do? The config for this runner is not supposed to be edited by "end users" and we are getting alerts [10:53:41] jelto: Thanks for the ping. I'm also glad you got alerts. I'm helping out our team with a very specific problem regarding building and publishing an airflow image for running CI testing/linting. I have said that this isn't a workaround that we can continue to use. [10:56:50] it seems the build-conda-env-test-image is stuck because it requires the "trusted" tag but trusted runners are not available in merge requests (not-merged code)? Why do you need the trusted tag there? is this a test build or do you use the image somewhere else [10:57:03] The guidance that was written to support this says to 'tweak the runner settings' https://gitlab.wikimedia.org/repos/data-engineering/airflow-dags/-/blob/main/docker/README.md?plain=1#L26-27 but I've said that we can't be doing this. I did it on this occasion but I will be updating the CI pipeline and using a different image. [10:58:44] There is a slack thread here that you are welcome to read/join https://wikimedia.slack.com/archives/C055QGPTC69/p1717666364202709 [10:59:52] It came about because of work undertaken by aqu on the DE team under this ticket: https://phabricator.wikimedia.org/T351792 - They wanted a way to publish an airflow image that would be used for running tests later in the pipeline. [11:00:45] thanks I will follow up and answer there! :) [11:01:59] We are now in the process of migrating Airflow to dse-k8s and so we are building a separate airflow image here: https://gitlab.wikimedia.org/repos/data-engineering/airflow I will ensure that our engineers use this image for running their tests, rather than attempt to circumvent the gitlab runner security settings in future :-) [11:05:38] ack, that sounds good :) I added a comment in the slack thread to not break up the discussion.