Draft: .gitlab-ci.yml: do not use secure runners on forks
Forks may not have access to secure runners. Restrict jobs with the secure tag to https://gitlab.archlinux.org/archlinux/archlinux-docker only.
This implements what was already done for similar projects: archiso!145 (merged) and arch-boxes!166 (merged).
/cc @klausenbusk