Multiple RPC secrets?

Some of my runner nodes will be physical machines lying around the office, and I would like to limit the blast range if they get compromised. I will use the node label to selectively run pipeline steps which do not contain any sensitive info, but I would also like to separate them on the RPC secret level, because without this, a malicious agent could claim any label.

1 Like

Any solution (or a plan) for this?

@ashwilliams1 or @bradrydzewski