K
Q

Azure Devops private build agent on Kubernetes - is it possible without mounting to docker socket?

9/12/2021

This is a guide for running a private build agent on docker.

https://docs.microsoft.com/en-us/azure/devops/pipelines/agents/docker?view=azure-devops

And this is a sample yaml file. Line 37 is mounting to docker.sock, https://github.com/ghoshasish99/AzureDevOps-SelfHostedAgents-AKS/blob/main/ReplicationController.yml#L37

Unfortunately this won't work on Kubernetes as stated in the article:

Caution

Doing this has serious security implications. The code inside the container can now run as root on your Docker host.

So, how else do you run a private build agent on Kubernetes?

-- cfbd
azure-devops
docker
kubernetes

Similar Questions

AKS cluster pod is being polled by unknown pod IP
What is the best solution for communication between a collection of gRPC service written in GO and Javascript client?
RunAsUser issue & Clicking external IP of load balancer -> Bad Request (400) on deploying Django app on GKE (Kubernetes) and db connection failing:
Use Release.Name in values.yaml in helm
Methods of Verifying Kubernetes Configuration

0 Answers