Menu

Building Open Source Projects

Basics > Building Open Source Projects

This document provides tips and best practices for building your open source project with CircleCI 2.0 in the following sections:

In addition to a free plan for open source repos, the CircleCI app includes extra resources and settings specifically for open source projects.

Note: Consider the following basics about visibility of configuration details and logs for your project:

  • If your repository is public, your CircleCI project will also be publicly available.
  • CircleCI app settings are accessible only by contributors, therefore, environment variables set in the app are hidden from the public. However env-vars are shared in forks unless these are turned off.
  • Build-logs are publicly visible, so don’t print sensitive information in them.

Open Source Container Overview

CircleCI offers open-source projects additional free build containers for run their jobs. An open source project being built on CircleCI gets three additional build containers, four containers in total. Multiple build containers allow you to either build multiple pull requests (PRs) at a time, or to build a single PR much faster with CircleCI’s parallelism.

Note: Projects built on Linux (our default platform) will automatically receive the additional containers if they are public projects on GitHub or Bitbucket. If you are building an open source project on macOS and want to take advantage of our offer, contact billing@circleci.com.

Features and Settings for Open Source

The following features and setting are useful for contributors to your project:

Public build pages - Your project build pages can be public to allow core contributors, collaborators, and the general community to have transparency into your project.

Private environment variables - Many projects will end up needing an API token, SSH key, or password to build all dependencies or perhaps to deploy. Private environment variables enable you to store secrets safely even when your project can be seen and contributed by thousands of outside users.

Advanced Settings > Build forked Pull Request - This page of the CircleCI app determines whether or not PRs opened from forked repositories will be built. The benefit is the ability to test user contributions quickly and efficiently, indicating whether their PR is good before you even get a chance to look at it. A possible downside could be that a high volume of forked PRs or poorly crafted PRs may keep your build containers too busy to working on building your own code.

Advanced Settings > Pass secrets to builds from forked pull request - This setting is extremely important for security. If this setting is enabled, private environment variables, AWS & Heroku credentials, and SSH keys stored on CircleCI are made available to everyone who makes a fork and opens a PR to your project. The upside to this setting is that builds that require these variables will be able to pass. The security risk is that everyone may edit your CircleCI configuration to print out your SSH key to terminal and get access to your servers.

Advanced Settings -> Only build pull request - This setting determines that only pull requests (PRs) and the project’s default branch (typically master) will be built. This setting is useful for projects with a lot of commit activity which helps reduce the number of builds that will be run.

Example Open Source Projects

Following are a few examples of projects (big and small) that build on CircleCI:

Refer to the Examples document for more public and open source project configuration links organized by CircleCI features and by programming language.