From 89e54378764eaa5b922af5071b7b144e7826346d Mon Sep 17 00:00:00 2001
From: Ryan Moon <moonryan2009@gmail.com>
Date: Thu, 2 Apr 2026 18:24:10 -0500
Subject: [PATCH] feat: add Gitea runner deployment with dind and resource
 limits

---
 runner/deployment.yaml | 55 ++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 55 insertions(+)
 create mode 100644 runner/deployment.yaml

diff --git a/runner/deployment.yaml b/runner/deployment.yaml
new file mode 100644
index 0000000..7e8417b
--- /dev/null
+++ b/runner/deployment.yaml
@@ -0,0 +1,55 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: gitea-runner
+  namespace: runner
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: gitea-runner
+  template:
+    metadata:
+      labels:
+        app: gitea-runner
+    spec:
+      containers:
+        - name: runner
+          image: gitea/act_runner:latest
+          resources:
+            requests:
+              cpu: 100m
+              memory: 128Mi
+            limits:
+              cpu: 2000m
+              memory: 2Gi
+          env:
+            - name: GITEA_INSTANCE_URL
+              value: https://git2.lunarfront.tech
+            - name: GITEA_RUNNER_REGISTRATION_TOKEN
+              valueFrom:
+                secretKeyRef:
+                  name: gitea-runner-token
+                  key: token
+            - name: GITEA_RUNNER_NAME
+              value: k8s-runner
+            - name: DOCKER_HOST
+              value: tcp://localhost:2375
+            - name: DOCKER_TLS_VERIFY
+              value: "0"
+
+        - name: dind
+          image: docker:dind
+          securityContext:
+            privileged: true
+          resources:
+            requests:
+              cpu: 100m
+              memory: 256Mi
+            limits:
+              cpu: 2000m
+              memory: 4Gi
+          env:
+            - name: DOCKER_TLS_CERTDIR
+              value: ""
+          args: ["--host=tcp://0.0.0.0:2375"]