Skip to content

Commit 6a0e49c

Browse files
kbukum1carlincherryCopilotmchammer01jc-clark
authored
Document custom runner settings for Dependabot self-hosted runners (#58429)
Co-authored-by: Carlin Cherry <[email protected]> Co-authored-by: Copilot <[email protected]> Co-authored-by: mc <[email protected]> Co-authored-by: Joe Clark <[email protected]>
1 parent cc8528f commit 6a0e49c

File tree

1 file changed

+32
-3
lines changed

1 file changed

+32
-3
lines changed

content/code-security/securing-your-organization/enabling-security-features-in-your-organization/configuring-global-security-settings-for-your-organization.md

Lines changed: 32 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -29,8 +29,9 @@ Alongside {% data variables.product.prodname_security_configurations %}, which d
2929
You can customize several {% data variables.product.prodname_global_settings %} for {% data variables.product.prodname_dependabot %}:
3030

3131
* [Creating and managing {% data variables.dependabot.auto_triage_rules %}](#creating-and-managing-dependabot-auto-triage-rules)
32-
* [Grouping {% data variables.product.prodname_dependabot %} security updates](#grouping-dependabot-security-updates){% ifversion fpt or ghec %}
33-
* [Enabling dependency updates on {% data variables.product.prodname_actions %} runners](#enabling-dependency-updates-on-github-actions-runners){% endif %}{% ifversion fpt %}
32+
* [Grouping {% data variables.product.prodname_dependabot %} security updates](#grouping-dependabot-security-updates){% ifversion dependabot-on-actions-opt-in %}
33+
* [Enabling dependency updates on {% data variables.product.prodname_actions %} runners](#enabling-dependency-updates-on-github-actions-runners){% endif %}{% ifversion dependabot-arc-support %}
34+
* [Configuring the runner type for {% data variables.product.prodname_dependabot %}](#configuring-the-runner-type-for-dependabot){% endif %}{% ifversion fpt %}
3435
* [Granting {% data variables.product.prodname_dependabot %} access to private repositories](#granting-dependabot-access-to-private-repositories){% else %}
3536
* [Granting {% data variables.product.prodname_dependabot %} access to private and internal repositories](#granting-dependabot-access-to-private-and-internal-repositories){% endif %}
3637

@@ -56,7 +57,35 @@ Otherwise, to allow {% data variables.product.prodname_dependabot %} to use {% d
5657

5758
For more information, see [AUTOTITLE](/code-security/dependabot/working-with-dependabot/about-dependabot-on-github-actions-runners).
5859

59-
{% data reusables.dependabot.dependabot-on-actions-self-hosted-link %}
60+
{% endif %}
61+
62+
{% ifversion dependabot-arc-support %}
63+
64+
### Configuring the runner type for {% data variables.product.prodname_dependabot %}
65+
66+
You can configure which type of runner {% data variables.product.prodname_dependabot %} uses to scan for version and security updates. By default, {% data variables.product.prodname_dependabot %} uses standard **{% data variables.product.company_short %}-hosted runners**. You can configure {% data variables.product.prodname_dependabot %} to use **self-hosted runners** with custom labels, which allows you to integrate with existing runner infrastructure such as {% data variables.product.prodname_actions_runner_controller %} (ARC).
67+
68+
> [!NOTE]
69+
> * For security reasons, {% data variables.product.prodname_dependabot %} uses {% data variables.product.company_short %}-hosted runners for public repositories, even when you configure labeled runners.
70+
> * Labeled runners **do not work** for public repositories.
71+
72+
To configure the runner type:
73+
74+
1. Under "{% data variables.product.prodname_dependabot %}", next to "Runner type", select {% octicon "pencil" aria-label="Edit runner type" %}.
75+
1. In the "Edit runner type for {% data variables.product.prodname_dependabot %}" dialog, select the runner type you want {% data variables.product.prodname_dependabot %} to use:
76+
* **Standard {% data variables.product.company_short %} runner**.
77+
* **Labeled runner**: If you select this option, {% data variables.product.prodname_dependabot %} will use self-hosted runners that match the label you specify.
78+
1. If you selected **Labeled runner**:
79+
* In "Runner label", enter the label assigned to your self-hosted runners. {% data variables.product.prodname_dependabot %} will use runners with this label. By default, the `dependabot` label is used, but you can specify a custom label to match your existing runner infrastructure.
80+
* Optionally, in "Runner group name", enter the name of a runner group if you want to target a specific group of runners.
81+
1. Click **Save runner selection**.
82+
83+
84+
{% endif %}
85+
86+
{% ifversion dependabot-on-actions-self-hosted %}
87+
88+
For more information about configuring self-hosted runners for {% data variables.product.prodname_dependabot %}, see [AUTOTITLE](/code-security/dependabot/maintain-dependencies/managing-dependabot-on-self-hosted-runners).
6089

6190
{% endif %}
6291

0 commit comments

Comments
 (0)