Investigate possibility of requesting IBM runner access for {ppc64le, s390x} #199
Description
Relevant context
- Expanding Open Source Access: Hosted GitHub Actions Runners Now Available for IBM Z, IBM LinuxONE, and IBM Power.
IBM/actionspzon-boarding guide- https://github.com/IBM/actionspz
Discussions
Steps
- Periodically check if any of current proposals are accepted.
- 2025-06-28: LLVM's proposal seems to be okay, though it does require installing a Github App to the account.
- Nominate to infra team to discuss the permissions for the GitHub app.
- Discussed in #t-infra > meeting 2025-06-30 @ 💬. The GitHub app seems to require admin permissions, we should ask IBM about if that is necessary or what specific permissions are necessary.
- Wait to hear back from IBM.
- Looks like admin permissions are necessary due to GitHub API requirements. See Clarify third party and why permissions are needed IBM/actionspz#20 (comment).
- Update re. admin permissions:
Just one is required, either permission granted at the org level (for all the repos in the org), or only specific repos.
[...]
We did some testing and this permission is required to read the registration token.
- Re-assess GitHub app permissions.
- I believe the [team consensus] was that we're okay with "less sensitive" repos (i.e. stdarch/compiler-builts/libc), but not rust-lang/rust yet. See #t-infra > meeting 2025-06-30 @ 💬.
- Determine which rust-lang/* repos would like to request access to {ppc64le, s390x} runners
- Looks like stdarch/compiler-builts/libc repos initially, the admin permissions is less problematic on these.
- rust-lang/rust needs to be re-evaluated separately for admin permissions.
- Draft proposals for each repo that would like to request access (or combined?)
- For now, we're intending to request for {stdarch, compiler-builts, libc} only.
- This will need a repo admin to file.
- Investigate possibility of requesting IBM runner access for {ppc64le, s390x} #199 (comment)
- Wait for IBM approval.
- An infra-admin will need to wire it up.