Should we use one self-hosted runner or several on the same Mac?

Prefer one runner process per machine for heavy Xcode or archive work so GitHub’s job concurrency maps cleanly to physical cores and disk I/O. Add a second Mac (or a second hosted node) before you run multiple heavy runners on one box. Light jobs can share a runner if you enforce concurrency limits in workflow or org settings.

How do labels interact with queueing on a shared pool?

Labels only route jobs to eligible runners; they do not create queues by themselves. Queues form when more jobs request the same label set than runners can accept. Split labels (and runners) when workloads need isolation—different Xcode versions, signing identities, or SLA tiers—not merely because you have many repositories.

2026 Shared Remote Mac Build Pool: GitHub Actions Self-Hosted Runner Label Routing, Queues & Conflict Matrix

Small teams that share a remote Mac for team CI quickly discover that a self-hosted Runner is only half the design: you still need label routing, a clear concurrent queuing policy, and explicit rules for conflicts. This article gives a compact decision matrix plus executable thresholds—when to split queues, how to name labels, concurrency ceilings, and disk cleanup—so your pool stays predictable as you grow.

Shared pool goals and risks

A shared remote Mac pool usually targets fast PR feedback, reproducible releases, and fair access. Main risks: CPU/RAM/disk/Simulator contention, signing and keychain clashes, and opaque queueing—jobs sit “queued” while the real bottleneck may be labels, runner capacity, or a stuck lock.

Treat the self-hosted Runner as a scheduling endpoint, not full multi-tenant isolation. Your policies decide whether work overloads one box or starves releases. Name an owner for Xcode pins, runner upgrades, and drain steps when VNC and CI share a host.

When to split queues (decision checklist)

Split when two product lines need different Xcode or macOS baselines—use separate runners and label routing so workflows cannot accidentally pick the wrong toolchain.
Split when interactive VNC sessions and heavy CI routinely overlap; give CI a dedicated node or dedicated time windows so human latency does not fight compile jobs.
Split when release archives require guaranteed capacity; route release workflows to labels backed by runners that do not accept PR noise.
Keep one queue for early-stage teams with one Xcode version and low parallelism—add structure only after you measure repeated conflicts or SLA misses.

Label routing comparison matrix

Label routing selects which self-hosted Runner may run a job. Weak naming causes misroutes, idle hardware, or wrong-Mac incidents—keep labels stable, machine-readable, and out of personal nicknames in production workflows.

Routing pattern	Best for	Trade-offs
Broad pool (`macos`, `arm64`)	Homogeneous fleet, one Xcode pin, maximum utilisation.	Any workflow can consume any runner; harder to reserve capacity for releases.
Toolchain-scoped (`xcode-16-2`, `swift-6`)	Repositories pinned to specific compiler or SDK behaviour.	More runners to maintain; labels must track upgrade calendar.
Tiered SLA (`ci-pr`, `ci-release`)	Separate pools for PR checks vs shipping builds.	Requires enough hardware behind each tier; empty tiers stall jobs.
Tenant or org slice (`team-mobile`, `repo-core`)	Billing chargeback or strict blast-radius isolation.	Lower utilisation if slices are under-filled; more operational overhead.

Tag naming convention (recommended)

Use os + arch + xcode-<major.minor> as the minimum triple, e.g. macos, arm64, xcode-16-2.
Add optional role suffixes: ci-pr, ci-release, experimental—never reuse a role label for a different Xcode without a migration window.
Keep default GitHub labels (self-hosted) plus your custom set; document the canonical list in your internal wiki and in a repo README for workflow authors.

Queuing and lock strategy

Concurrent queuing on a single Mac is part GitHub semantics (how many jobs the runner accepts), part physics (cores, SSD, Simulator), and part convention (mutex steps around signing or device slots). Start conservative and increase only when metrics show headroom.

Policy item	Starting threshold	Notes
Concurrency cap (heavy compile / archive)	1 active job per Mac class	Add a second node before sustained parallel archives on one machine.
Concurrency cap (light checks)	Up to 2 jobs if CPU < ~75% sustained and free RAM > ~8 GB	Pair with workflow `concurrency:` groups to cancel stale PR builds.
Global queue depth	Fail or defer beyond ~20 pending jobs per pool	Prevents silent multi-hour backlogs; surface alerts instead.
Mutex / lock	One signing or notarization sequence at a time per keychain	Use workflow locks (file, Redis, or org-approved action) for non-reentrant steps.

Align detailed queue and quota ideas with the shared remote Mac pool FAQ; it expands FIFO vs priority patterns and conflict scenarios that complement this matrix.

Permissions and isolation highlights

Shared-host CI breaks when permissions blur: world-readable artifacts, provisioning profiles removed by cleanup, or shared login keychains. Prefer dedicated CI users or separated homes, automation keychains, and documented shared-dir ownership (setgid/ACL per provider).

Disk cleanup thresholds: purge DerivedData or build caches when free space drops below about 15–20% on the CI volume, or per-project caches exceed roughly 30–80 GB (tune to SSD). Preserve ~/Library/Keychains and signing assets; never unscoped rm -rf. See the SSH/VNC shared build FAQ and permission isolation guide.

Monitoring and alerts

Watch four signals: runner heartbeat, queue wait (created → start), saturation (CPU, memory, disk), and auth failures (keychain, certs). Alert when PR wait exceeds your SLO (often about 10–20 minutes) or free disk stays under the cleanup threshold.

Correlate “flaky CI” with SSH timeouts or maintenance. Use the stability FAQ and reconnect checklist for latency and SLA on the same pools.

FAQ

Do labels replace a real queue product?: No. Labels are filters. If you need cross-repo prioritisation, deadlines, or fair-share between teams, combine GitHub concurrency with an external coordinator—or split pools across multiple remote Mac nodes.
How many runners should register to one machine?: Often one runner service per Mac for heavy iOS/macOS builds. Multiple runners multiply simultaneous jobs and multiply disk and Simulator contention unless you enforce strict caps.
What is the first sign we need multi-node or a team plan?: Recurring queue SLO breaches, routine conflicts on signing steps, or scheduled maintenance that blocks every repo at once. Those are structural, not tuning problems—extra nodes or dedicated release hosts fix them.

Scale team CI with multiple remote Mac nodes

When one host cannot satisfy label routing and concurrent queuing, add nodes: split PR vs release pools, pin Xcode per machine, cut conflicts. Use the homepage for multi-node and team plans, help for SSH/VNC, the blog for cluster guides, plus load balance & failover and Runner vs rented Mac before you expand.

Rent a Mac / team plans Help center More blog articles SSH vs VNC guide