Question 1

How to whitelist GitHub Actions runner IP in AWS using public-ip?

Accepted Answer

Use the output IP addresses from public-ip in subsequent steps with AWS CLI commands, like aws ec2 authorize-security-group-ingress, to dynamically update security groups for the duration of the workflow.

Question 2

public-ip vs manually checking GitHub's IP ranges – which is better?

Accepted Answer

public-ip is better for real-time, per-run accuracy since GitHub's IP ranges change frequently and are static lists. However, public-ip adds an external dependency, while manual checking is more reliable but labor-intensive.

Question 3

Does public-ip work with self-hosted GitHub Actions runners?

Accepted Answer

Yes, it queries the public IP of any runner it runs on, but if self-hosted runners are behind NAT or proxies, the returned IP might not be the true external address, limiting usefulness.

Question 4

How reliable is the ipify API for public-ip in CI/CD?

Accepted Answer

Ipify is a free service without guaranteed uptime, so reliability can vary. The retry logic helps, but for critical workflows, monitor ipify's status or implement backup actions to avoid disruptions.

Question 5

Can public-ip handle IPv6-only networks?

Accepted Answer

It attempts to fetch IPv6 addresses but falls back to IPv4 if unavailable. In IPv6-only environments, ensure runner connectivity, as the fallback might not apply, potentially causing issues.

Question 6

What happens if ipify is down during my GitHub Action run?

Accepted Answer

The action will retry up to the configured maxRetries (default 5), and if all fail, the step errors, halting the workflow unless you add error handling like continue-on-error in your YAML.

Public IP

What is Public IP?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions