Hi
@numerous-computer-97550 once thing I’ve seen done before is run a github actions runner within your VPN (in your data center with the right network) and then use github actions to define which workflows/repos are allowed to leverage that runner.
Another, more involved, option is to expose the endpoint through a front/edge proxy (e.g.
envoy front proxy) and enable Authentication on the endpoint.