Testing GitHub projects on custom resources using unprivileged Kubernetes runners

Igor Sfiligoi,Daniel McDonald,Rob Knight,Frank Würthwein
DOI: https://doi.org/10.1145/3569951.3597586
2023-05-18
Abstract:GitHub is a popular repository for hosting software projects, both due to ease of use and the seamless integration with its testing environment. Native GitHub Actions make it easy for software developers to validate new commits and have confidence that new code does not introduce major bugs. The freely available test environments are limited to only a few popular setups but can be extended with custom Action Runners. Our team had access to a Kubernetes cluster with GPU accelerators, so we explored the feasibility of automatically deploying GPU-providing runners there. All available Kubernetes-based setups, however, require cluster-admin level privileges. To address this problem, we developed a simple custom setup that operates in a completely unprivileged manner. In this paper we provide a summary description of the setup and our experience using it in the context of two Knight lab projects on the Prototype National Research Platform system.
Software Engineering
What problem does this paper attempt to address?