Harden Runner Installation
There are three ways to install Harden-Runner depending on your environment:
ARC (Actions Runner Controller)
Self-Hosted VM
GitHub Hosted Custom VM
ARC (Actions Runner Controller)
Actions Runner Controller (ARC) allows you to run GitHub Actions self-hosted runners at scale on Kubernetes.
Integrating Harden-Runner with ARC helps secure your runner fleet by enforcing outbound network policies, monitoring runtime behavior, and preventing supply chain attacks.
To configure an ARC cluster in StepSecurity, please follow the provided setup instructions. If the instructions have not been enabled in your account, please contact us for setup assistance.
Self Hosted VM
Self-hosted options allow you to execute workflows on your own infrastructure rather than using GitHub-hosted environments. This provides greater control, security, and customization options for your CI/CD pipelines.
To configure an self-hosted runner in StepSecurity, please follow the provided setup instructions. If the instructions have not been enabled in your account, please contact us for setup assistance.
GitHub Hosted Custom VM
GitHub Hosted Custom VMs allow you to run workflows on a managed virtual machine while still maintaining some configuration control. Installing Harden-Runner on these VMs adds an additional security layer that monitors and controls runtime behavior within ephemeral environments.
To configure a GitHub Hosted Custom VM in StepSecurity, please follow the provided setup instructions. If the instructions have not been enabled in your account, please contact us for setup assistance.
Last updated
Was this helpful?