Feature Requests

Currently when creating a scheduled pipeline trigger, intended to run once per hour, there is no control as to when the trigger will execute within the hour specified. In extreme cases it can run close enough to the end of the hourly window to cause confusion or delays relative to expectations. Per docs: "Why did my scheduled pipeline run later than expected?" https://circleci.com/docs/scheduled-pipelines/#scheduled-pipeline-run-later Although subsequent runs occur at a consistent time, greater control in specifying that recurring time is desired. Eg) a narrower 30 minute or even 15 minute time range would be desireable

Create some plugin with Grafana to send there metrics with some insights like build time

Summary We request an enhancement to CircleCI’s access control mechanisms to ensure that workflows executing on specific runners (e.g., production, staging, or other critical environments) are explicitly linked to a CircleCI Context that enforces security policies. This will prevent unauthorized deployments across all environments. Problem Statement Currently, a job configured with a non-restricted context (e.g., staging) can still execute on a runner assigned to a restricted environment by specifying its resource_class. This means: A workflow without proper approval can inadvertently trigger deployments in restricted environments. Context restrictions do not prevent execution on a runner with elevated access. -While deployment failures may occur due to missing credentials or other access barriers, the ability to attempt unauthorized deployments remains a security risk. Proposed Solution CircleCI should implement a stricter enforcement mechanism that ensures: Runner-Level Context Enforcement: Runners designated for specific environments (e.g., production, staging) should be restricted to workflows explicitly using a designated CircleCI Context with appropriate access controls. Security Group Validation: Only users in an authorized security group (e.g., Environment-Deployers) should be able to trigger workflows that execute on restricted runners. Blocking Unauthorized Execution: If a job specifies a restricted runner but does not meet approval requirements, the workflow should fail early with a clear security violation message. Steps to Replicate Current Issue Configure a CircleCI job with a non-restricted context (e.g., staging). Set the job’s resource_class to a runner designated for a restricted environment. Push a commit to trigger the job in CircleCI. Observe that a deployment attempt occurs in the restricted environment despite lacking approval from the expected security group. Deployment may fail due to missing credentials, but unauthorized workflows still reach restricted environments. Expected Behavior If a job specifies a restricted runner, it should be required to use the appropriate CircleCI Context. Only authorized users in the relevant security group should be able to trigger workflows on such runners. Unauthorized workflows should be blocked before execution, preventing unauthorized access to sensitive environments. This feature would strengthen security controls, prevent unintended deployments, and align CircleCI’s access model with best practices for environment separation. Let us know if additional details or clarifications are needed. We appreciate your consideration!

Issue: 1. Imagine a pipeline that spins up 3rd party services or containers that would usually be "cleaned" up at the end of a pipeline, but if that pipeline fails, the final clean up job will never be given the chance to run. 2. Currently sending out any kind of notification data to third-party services while running in a pipeline can be difficult, both for the reason already described above, as well as the fact that the results and data for that pipeline will not be available to the API until after the pipeline has run, limiting the amount of information that can be exported. Solution: The ability to specify that a job will execute after the pipeline has run. This should run regardless of how the pipeline ended (or should be configurable). This job should have access to all of the pipeline data for that pipeline (where currently the API does not update until the pipeline has finished). This feature will enable a number of notification, stats, and reporting orbs and greatly improve interactivity with external services utilized within pipelines.Related: https://ideas.circleci.com/ideas/CCI-I-1227 CCI-I-1300

It would be good to have manual approvals restricted by user. At the moment you have to have github oauth and use contexts. We just have the github app which is the newer way to do it. Also have a timeout option in manual approval so after X days it will auto cancel.

Since late 2022, CircleCI has rolled out a new Docker Layer Caching (DLC) implementation: https://discuss.circleci.com/t/fyi-small-dlc-update-no-action-required/44614 Currently (as of May 2023), we noted there is a cache size limit of 15 GB; Images pulled or built that are larger than this limit will be purged (not saved). It would be great if we can allow users to increase this cache limit. Perhaps versioned via the paid plan tiers, or choosing the "resource size" for DLC storage.

Like most engineers, I prefer to use a dark UI. CCI-I-930

At the moment, create a new git-branch in Bitbucket is triggering automatic Circle-CI build although no commit have been pushed to this branch yet. This resulting in a redundant build and in-case your pipeline resides on commit-it it might override resources using this commit-it. CCI-I-684

Allow the option to trigger more than one pipeline where the SHA matches that of a prior pull request. This would allow more flexibility around triggering pipelines for some use cases.

We use the "Only build pull requests" option to reduce our CI overhead, but we also have release/ branches that we treat as "default" branches. We currently have to rely on a GitHub Action to trigger a pipeline build for those branches, but being able to configure the Project in Circle by providing a branch naming pattern for "default" branches would simplify things.