actions: clarify IP address ranges for self hosted runners (#22460)

* actions: don't recommend users allow-list our hosted runners There are too many IP addresses for our hosted runners for users to use them as an allow-list. In fact, we have a note where we _don't_ recommend that they use this. Remove a contradictory sentence below. * ip addresses: clarify what these ip addresses are * self-hosted: clarify inbound/outbound requirements * Update content/actions/hosting-your-own-runners/about-self-hosted-runners.md * Update content/authentication/keeping-your-account-and-data-secure/about-githubs-ip-addresses.md Co-authored-by: hubwriter <hubwriter@github.com>
2026-01-06 06:02:35 -05:00 · 2021-10-29 05:57:11 -04:00
parent bc55d9ad76
commit 27cfbb13ba
3 changed files with 7 additions and 1 deletions
--- a/content/actions/using-github-hosted-runners/about-github-hosted-runners.md
+++ b/content/actions/using-github-hosted-runners/about-github-hosted-runners.md
@@ -106,9 +106,11 @@ You can install additional software on {% data variables.product.prodname_dotcom

 {% endnote %}

+To get a list of IP address ranges that {% data variables.product.prodname_actions %} uses for {% data variables.product.prodname_dotcom %}-hosted runners, you can use the {% data variables.product.prodname_dotcom %} REST API. For more information, see the `actions` key in the response of the "[Get GitHub meta information](/rest/reference/meta#get-github-meta-information)" endpoint.
+
 Windows and Ubuntu runners are hosted in Azure and subsequently have the same IP address ranges as the Azure datacenters. macOS runners are hosted in {% data variables.product.prodname_dotcom %}'s own macOS cloud.

-To get a list of IP address ranges that {% data variables.product.prodname_actions %} uses for {% data variables.product.prodname_dotcom %}-hosted runners, you can use the {% data variables.product.prodname_dotcom %} REST API . For more information, see the `actions` key in the response of the "[Get GitHub meta information](/rest/reference/meta#get-github-meta-information)" endpoint. You can use this list of IP addresses if you require an allow-list to prevent unauthorized access to your internal resources.
+Since there are so many IP address ranges for {% data variables.product.prodname_dotcom %}-hosted runners, we do not recommend that you use these as allow-lists for your internal resources.

 The list of {% data variables.product.prodname_actions %} IP addresses returned by the API is updated once a week.