Skip to main content

Automatic updates

The runner automatically updates itself with new features, improvements, and security patches. No action required.
  • Updates are non-disruptive to running environments
  • Failed updates automatically roll back
  • View current version at Settings → Runners
  • Update activity is logged to CloudWatch

Set update window

By default, automatic updates can occur at any time. You can restrict updates to a specific daily time window (UTC) to align with your maintenance schedule.
  1. Navigate to Settings → Runners and select your runner
  2. Scroll to Runner Configuration
  3. Enable Set update window
  4. Select a Start hour and End hour (UTC). The window must be at least 2 hours long. Overnight windows are supported (e.g., 22:00 to 04:00 UTC).
  5. Click Save Configuration
    Runner configuration showing the update window settings with start and end hour selection
To remove the restriction and allow updates at any time, disable the Set update window toggle. When the toggle is off, the runner applies updates as soon as they are available.
The update window controls when routine automatic updates are applied. It does not affect manual infrastructure upgrades via CloudFormation.In rare cases, Ona may push a hotfix release that bypasses the update window. Hotfixes are reserved for fixes to functional degradation of the runner or critical security patches. You will be notified before a hotfix is applied.

Upgrade runner infrastructure

When a new CloudFormation template version is available, you can upgrade your runner infrastructure directly from the Ona dashboard.
  1. Navigate to Settings → Runners and select your runner
  2. Open the runner menu (three-dot icon) and click Upgrade runner
    Runner details page showing the Upgrade runner option in the three-dot menu
  3. Follow the instructions in the upgrade dialog — it provides the template URL for your runner
    Upgrade runner dialog showing CloudFormation stack update instructions and template URL
  4. Open your runner’s CloudFormation stack in the AWS console
  5. Click UpdateReplace existing template and enter the template URL from the dialog
    AWS CloudFormation Update stack dialog with Replace existing template option selected
  6. Review parameters and complete the wizard
If your runner uses an Internet Gateway directly (without NAT or private network connectivity such as VPC endpoints), set the Assign Public IP to Fargate Tasks parameter to true in the CloudFormation template.
CloudFormation parameter showing Assign Public IP to Fargate Tasks set to true
Templates from January 2025 or earlier have SSH port changes. Before upgrading, stop and discard existing environments, or add port 22 to your security group.

Update parameters

To change VPC, subnets, or other settings without updating the template:
  1. Open your runner’s CloudFormation stack
  2. Click UpdateUse existing template
    AWS CloudFormation Update stack dialog with Use existing template option selected
  3. Adjust parameters and complete the wizard

Expanding availability zones

Availability is determined by your subnets, not the AZ parameter. Use the VPC Resource Map in AWS console to find subnets for your desired AZs.
AWS VPC Resource Map showing subnets and availability zones in your VPC