This repository provides enhanced Docker images for GitHub Actions self-hosted runners with a comprehensive suite of pre-installed development and operations tools. Built on top of the official GitHub Actions runner base image, it includes essential tools for CI/CD workflows, making it ideal for enterprise and development environments.
- 🚀 Based on official GitHub Actions runner image
- 🏗️ Multi-architecture support (AMD64 and ARM64)
- 📦 Comprehensive tool suite pre-installed
- 🔧 YAML-driven installation system for easy customization
- 🎯 Automated CI/CD pipeline with semantic versioning
- 🐳 Published to both Docker Hub and GitHub Container Registry
docker pull emberstack/github-actions-runner:latestdocker pull ghcr.io/emberstack/github-actions-runner:latestdocker run -d \
--name github-runner \
-e GITHUB_RUNNER_URL="https://github.com/your-org/your-repo" \
-e GITHUB_RUNNER_PAT="your-personal-access-token" \
-e GITHUB_RUNNER_NAME="my-runner" \
-e GITHUB_RUNNER_LABELS="docker,linux" \
emberstack/github-actions-runner:latestdocker run -d \
--name github-runner \
-e GITHUB_RUNNER_URL="https://github.com/your-org/your-repo" \
-e GITHUB_RUNNER_TOKEN="your-registration-token" \
-e GITHUB_RUNNER_NAME="my-runner" \
emberstack/github-actions-runner:latestdocker run -d \
--name github-runner \
-v /var/run/docker.sock:/var/run/docker.sock \
-e GITHUB_RUNNER_URL="https://github.com/your-org/your-repo" \
-e GITHUB_RUNNER_PAT="your-personal-access-token" \
-e GITHUB_RUNNER_DOCKER_SOCK="true" \
emberstack/github-actions-runner:latestdocker run -d \
--name github-runner \
-e GITHUB_RUNNER_URL="https://github.com/your-org/your-repo" \
-e GITHUB_RUNNER_PAT="your-personal-access-token" \
-e GITHUB_RUNNER_GID="1001" \
emberstack/github-actions-runner:latestGITHUB_RUNNER_URL(required): Repository, organization, or enterprise URLGITHUB_RUNNER_PATorGITHUB_RUNNER_TOKEN(required): Authentication tokenGITHUB_RUNNER_NAME(optional): Runner name (defaults to hostname)GITHUB_RUNNER_LABELS(optional): Comma-separated list of labelsGITHUB_RUNNER_GROUP(optional): Runner group nameGITHUB_RUNNER_WORKDIR(optional): Working directory for jobsGITHUB_RUNNER_GID(optional): Custom GID to create github-actions-runner groupGITHUB_RUNNER_DOCKER_SOCK(optional): Set to "true" to auto-configure Docker socket access
The following environment variables are set in the Docker image:
DOTNET_INSTALL_DIR: Set to/home/runner/.dotnetto avoid permission issues when using actions/setup-dotnet
The container handles shutdown signals (SIGTERM, SIGINT) gracefully:
- Stops the running job (if any)
- Removes the runner registration from GitHub
- Ensures clean termination
This automatic cleanup prevents orphaned runner registrations when containers are stopped.
The following tools are already available in the GitHub Actions runner base image:
- Python 3 - Python interpreter
- Git - Version control system
- Docker with Docker Buildx - Container platform
- jq - JSON processor
- curl - Data transfer tool
- SSH/SCP - Secure shell and copy
- tar - Archive utility
- unzip - ZIP extraction
- sudo - Privilege escalation
- Core Unix tools - find, grep, sed, awk, perl, etc.
- GNU Coreutils - Essential Unix utilities (ls, cp, mv, cat, etc.)
- file - File type identification
- findutils - Find files and directories
- tree - Directory tree visualization
- time - Time command execution
- PowerShell Core - Cross-platform PowerShell
- Azure CLI - Azure cloud management
- AzCopy - Azure Storage data transfer (latest release)
- Docker Compose Plugin - Multi-container orchestration (latest)
- Docker Buildx - Advanced Docker builds (pre-installed in base image)
- Git - Version control (pre-installed in base image)
- GitHub CLI (
gh) - GitHub operations (latest) - jq - JSON processor (pre-installed in base image)
- yq - YAML processor (latest)
- yamllint - YAML linter (latest from pip)
- tar - Tape archive utility (pre-installed in base image)
- unzip - ZIP decompression (pre-installed in base image)
- zip - ZIP compression
- p7zip-full (7z) - 7-Zip archiver
- DNS Utilities
dig- DNS lookupnslookup- Query DNS serversnsupdate- Dynamic DNS updates
- IP Utilities
ping- Network connectivity testtracepath- Network path discoveryarping- ARP level pingip- Show/manipulate routing, network devicesss- Socket statistics
- Legacy Network Tools
ifconfig- Network interface configurationnetstat- Network statisticsroute- Routing table manipulation
- Connection Tools
ssh- Secure Shell client (pre-installed in base image)scp- Secure copy (pre-installed in base image)ftp- File Transfer Protocol clienttelnet- Telnet clientnetcat(nc) - Network debuggingsshpass- Non-interactive SSH authentication
The image uses a YAML-driven installation system:
src/setup.yaml- Defines installation stepssrc/setup.sh- Orchestrates the installation processsrc/scripts/- Individual installation scripts for each tool group
- Automatic architecture detection during build
- Platform-specific binaries for AMD64 and ARM64
- Unified multi-arch manifests in registries
- Docker or Docker Desktop
- Docker Buildx (for multi-platform builds)
docker build -t github-actions-runner -f src/Dockerfile src/docker buildx build --platform linux/amd64 -t github-actions-runner -f src/Dockerfile src/docker buildx build --platform linux/amd64,linux/arm64 -t github-actions-runner -f src/Dockerfile src/- Create an installation script in
src/scripts/:
#!/bin/bash
# src/scripts/install-newtool.sh
apt-get update
apt-get install -y newtool
# Add verification
if ! command -v newtool &> /dev/null; then
echo "ERROR: newtool installation failed"
exit 1
fi- Add to
src/setup.yaml:
- name: "Install New Tool"
script: "scripts/install-newtool.sh"
description: "Description of the tool"- Make the script executable:
chmod +x src/scripts/install-newtool.shThe repository uses GitHub Actions for automated building and releasing:
- Automatic Builds: Triggered on push to any branch
- Multi-Architecture Builds: Parallel builds for AMD64 and ARM64
- Semantic Versioning: Using GitVersion
- Container Registries: Publishes to Docker Hub and GitHub Container Registry
- Release Management: Automatic GitHub releases on main branch
- Commit messages control version bumps:
feat:- Minor version bumpfix:- Patch version bumpfeat!:or+semver:major- Major version bump
├── .github/
│ └── workflows/
│ └── pipeline.yaml # CI/CD pipeline
├── src/
│ ├── Dockerfile # Main Docker image definition
│ ├── setup.yaml # Tool installation configuration
│ ├── setup.sh # Installation orchestrator
│ └── scripts/ # Individual tool installation scripts
├── GitVersion.yaml # Semantic versioning configuration
├── LICENSE # Repository license
├── README.md # This file
└── CLAUDE.md # AI assistant guidance
Contributions are welcome! Please feel free to submit a Pull Request. For major changes, please open an issue first to discuss what you would like to change.
- Follow the existing script patterns
- Ensure tools work on both AMD64 and ARM64
- Add verification steps in installation scripts
- Update documentation for new tools
- Test builds locally before submitting PR
This project is licensed under the MIT License - see the LICENSE file for details.
- Built on top of actions/runner official images
- Inspired by the need for comprehensive CI/CD environments
- Thanks to all contributors and the open-source community
While installation scripts for various development tools are available in the src/_archive/scripts/ directory, we recommend using GitHub Actions' official setup actions or marketplace actions in your workflows:
- Python/pip: Use
actions/setup-python- includes pip by default - Node.js: Use
actions/setup-node - .NET SDK: Use
actions/setup-dotnet
- kubectl: Use
azure/setup-kubectl - Helm: Use
azure/setup-helm - Kustomize: Use
imranismail/setup-kustomize - Ansible: Install via pip after setting up Python
These actions provide better caching, version management, and are optimized for CI/CD environments.