Hi Jeff,

After applying the CIS hardening scripts to Ubuntu Pro the default umask changes to user read only (instead of read all). As a result, the GitLab provided install script adds the GitLab PGP key for the apt repository with insufficient permissions. To run the script successfully you need to ensure the umask is all read before the script runs. Patch incoming!

Had the same issue on an Ubuntu AMI from the CIS foundation, was fixed by @ianburrowes PR. Thanks bud!

This issue has been marked 'stale' due to lack of recent activity. If there is no further activity, the issue will be closed in another 30 days. Thank you for your contribution!

Please read this blog post to see the reasons why I mark issues as stale.

This issue has been closed due to inactivity. If you feel this is in error, please reopen the issue or file a new issue with the relevant details.