Runners Overview

GloriousFlywheel provides a cross-forge runner pool that serves both GitLab CI and GitHub Actions from the same Kubernetes cluster. Six runner types are deployed across two scaling models.

Runner Types

Scaling Models

GitLab runners use Kubernetes HorizontalPodAutoscalers (HPA) with configurable min/max replicas and CPU-based scaling. Runners are always warm with at least one replica.

GitHub Actions runners use ARC (Actions Runner Controller) scale sets with scale-to-zero. Runner pods are created on demand when a workflow job matches the runs-on label and terminated after the job completes.

Important boundary:

• ARC autoscaling is horizontal for runner count
• it does not automatically raise the CPU or memory limit of one runner pod
• per-runner resource envelopes still come from the committed stack values
• a job can be OOM-killed inside one runner pod even when the cluster can still scale out or has abundant aggregate free memory

Namespace Layout

Common Properties

• Cache integration: All runners access the Attic Nix binary cache and Bazel remote cache via cluster-internal DNS. No Ingress or credentials required for cache access.
• Infrastructure as Code: Deployed via OpenTofu modules in tofu/modules/gitlab-runner/ and tofu/modules/arc-runner/.
• Nix integration: Nix runners auto-configure ATTIC_SERVER and ATTIC_CACHE environment variables for transparent binary cache access.

Further Reading

GitLab CI Runners

• Runner Selection Guide — how to choose the right runner
• Docker Builds — Docker-in-Docker configuration
• Nix Builds — Nix flake and Attic cache patterns
• HPA Tuning — autoscaler configuration
• Self-Service Enrollment — onboard your project

GitHub Actions Runners

• GitHub Actions Runners — ARC setup, composite actions, cache integration

Operations

• Security Model — privilege and access boundaries
• Troubleshooting — common issues and fixes
• Runbook — operational procedures
• Resource Limits — job pod resource limits reference