Skip to main content
Private preview. fremforge is in private preview — invited customers only. Content is still subject to change. Request access →

Build & ship

The CI/CD surface on fremforge. Workflows run on hosted Linux runners by default; environments scope secrets to a branch glob; runner OIDC federation lets a job assume a role in your own cloud without storing long-lived credentials.

What’s in here

  • Actions, workflow syntax, package cache, runner image catalogue.
  • Runners, hosted runner pool, OIDC for runners, the Phase 2 self-hosted path.
  • Environments, per-environment secrets, branch-glob protection, required reviewers.
  • Secrets, org-level Actions secrets, encryption, rotation.
  • Runner OIDC, federate into AWS, GCP, Azure without long-lived keys.
  • Webhooks, outbound webhook destinations, HMAC signing, DLQ, retry policy.