security Priority 5/5 6/13/2026, 11:05:15 AM

GitHub Actions to Enforce Minimum Version Requirements for Self-Hosted Runners

GitHub has announced the resumption of its minimum version enforcement timeline for self-hosted runners operating on github.com and GitHub Enterprise Cloud with Data Residency. This policy update is part of an ongoing security initiative aimed at strengthening the infrastructure of running workflows. Outdated runner versions lack crucial security patches and feature updates, making them a potential vector for vulnerability exploitation within CI/CD pipelines.

Related tools

Action Checklist

Identify all self-hosted runners currently connected to your GitHub organization or enterprise. Use the GitHub REST API or the admin dashboard to export the list of active runners.
Check the current runner application version running on each self-hosted machine. Compare your active runner versions against the latest official releases on the actions/runner repository.
Enable automatic updates for self-hosted runners where possible. Automatic updates ensure runners receive security patches and meet version requirements without manual intervention.
Manually upgrade any runners restricted from automatic updates behind strict firewalls. Ensure outbound network rules permit the runner to fetch the latest binaries from GitHub distribution servers.
Monitor workflow run logs for deprecation warnings or runner connection errors. Runners below the minimum enforced version will fail to register and accept new jobs once enforcement goes live.

Source: GitHub Changelog

This page summarizes the original source. Check the source for full details.

More English news Open source

GitHub Actions to Enforce Minimum Version Requirements for Self-Hosted Runners

Recommended tools for this topic

Action Checklist

Related