These docs are for v5.0. Click to read the latest docs for v2023.

Self-Hosted Best Practices

On this page, you can find some helpful pointers on working with Codecov Self-Hosted.

Security

In line with industry best practices, we recommend placing your self-hosted install of Codecov behind your company's firewall, or otherwise perform other access controls such that it is only accessible by trusted staff and employees.

We recommend periodically restarting services to clear any memory leaks, and refresh the worker tasks. We recommend doing this daily or, at the very least, weekly.

Setup a Codecov Bot

See Team Bot.

Use your bash uploader

Your Codecov self-hosted includes a bash uploader that is a stable version, and should be used for all applicable uploading.

YES: bash <(curl -s https://codecov.mydomain.com/bash)
 NO: bash <(curl -s https://codecov.io/bash) -u http://codecov.mydomain.com

Use Global Upload Tokens

http://docs.codecov.io/docs/configuration#section-global-upload-tokens

Setup Report Archiving

Archiving Reports.