From 29d9523f44a03a76465bc7926af5dd679e865f91 Mon Sep 17 00:00:00 2001 From: S Date: Mon, 2 Mar 2026 08:12:10 -0500 Subject: [PATCH] fix: remove docker-compose.yml after stopping Docker runner to enhance security --- manage_runner.sh | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/manage_runner.sh b/manage_runner.sh index ad451bf..a3a80bf 100755 --- a/manage_runner.sh +++ b/manage_runner.sh @@ -476,7 +476,9 @@ remove_docker_runner() { if runner_ssh "test -f '${RUNNER_DATA_PATH}/docker-compose.yml'" 2>/dev/null; then runner_ssh "cd '${RUNNER_DATA_PATH}' && docker compose down 2>/dev/null || docker-compose down" || true - log_success "Docker runner '${RUNNER_NAME}' stopped" + # Remove docker-compose.yml — it contains the registration token in plaintext + runner_ssh "rm -f '${RUNNER_DATA_PATH}/docker-compose.yml'" 2>/dev/null || true + log_success "Docker runner '${RUNNER_NAME}' stopped and compose file removed" else log_info "No docker-compose.yml found for runner '${RUNNER_NAME}' — already removed" fi