GitHub Actions Runner on Ubuntu 24.04 LTS

Azure Developer Tools

the official self hosted runner for your own build infrastructure, ready to register

Base
Hardened build
minimal ports, security patches applied at build time
Access
Unique credentials
generated on first boot, readable only by root
Verified
Boots working
services pass a health gate before release
Support
24/7, 365 days
by email and live chat, 24 hour response SLA

Overview

GitHub Actions Runner is the official self hosted runner agent. It executes your GitHub Actions workflows on machines you control rather than on hosted runners, which is what you need when a job must reach a private network, use software or hardware the hosted fleet does not offer, stay inside your own compliance boundary, or run longer and more often than hosted minutes allow. The runner connects outbound to GitHub and waits to be handed work, so it never needs an inbound port.

Why the cloudimg image

cloudimg ships the runner fully installed and dependency resolved, running under a dedicated non root service account with no sudo rights, alongside the toolchain real workflows need: git, Docker for container jobs, a C and C++ build toolchain, and Python. Everything included is documented, so the image never quietly accumulates packages. Critically, the image carries no GitHub token and no registration of any kind: a registration token is short lived and specific to your organisation, so a shipped credential would let a stranger join your continuous integration. The service is installed but deliberately disabled and gated so it cannot start unregistered, each instance generates its own unique runner name at first boot, and a built in self test proves no credential artifact exists anywhere on the image. Paired with a step by step deployment guide and 24/7 cloudimg support.

Common uses

  • Run CI jobs that need access to private networks or internal services
  • Build and test on hardware, software or images the hosted runners do not provide
  • Keep continuous integration inside your own compliance and data boundary