GitLab for Open Source Program and pipeline privacy

jameschensmith · April 4, 2024, 3:29am

Hey there!

I’ve been looking into the GitLab for Open Source Program and had a question on pipeline privacy. One of the program qualifications is “Be publicly visible”. The qualification is further defined as follows:

Both the applicant’s GitLab.com group or self-managed instance and source code must be publicly visible and publicly available.

I would like to know if this includes pipeline visibility. I might have to make pipelines from some projects private. Renovate, for instance, has a recommendation to have private CI logs for their runner to be safe.

gitlab-greg · April 5, 2024, 6:13pm

Hi @jameschensmith,

As far as I know, the “Public” visibility requirement only applies to the repository (source code + merge requests) and the issue tracker, as these features are required to allow for contributions from and collaboration with open source community members.

Choosing to make pipelines or pipeline artifacts private for security reasons will not disqualify you from being accepted into the the GitLab for Open Source program.

jameschensmith · April 5, 2024, 6:15pm

Perfect! Thanks, @gitlab-greg!