Agent Runtime Docker Image Release Strategy
Overview
Step Agent runtime Docker images provide the execution environment for running Agents. These images are separate from the Step Controller and Agent images and are released independently of Step platform releases.
Official Agent Runtime Images
Step provides two types of official agent runtime images from docker.exense.ch/step-enterprise:
1. Basic Agent Image (Java 21 + Chromium)
A lightweight image containing:
- Java 21 runtime
- OS: debian-12-slim
- Chromium browser
- ChromeDriver
- Ghostscript
This image is suitable for basic browser automation and Java / Dotnet / Nodejs based keywords.
Example:
docker.exense.ch/step-enterprise/base:21-debian-12-slim
2. Full Browser Agent Image
A comprehensive image extending the base one, with the additional content listed below:
- Official browsers (Chromium, Google-Chrome, Mozilla Firefox and Microsoft Edge)
- Corresponding WebDrivers (ChromeDriver, GeckoDriver, EdgeDriver)
This image provides support for multiple official browsers, their drivers, and common Step plugin dependencies.
Example:
docker.exense.ch/step-enterprise/browsers:1.0.4-java-21
Independent Release Cycle
Agent runtime images are released independently from the Step platform. This means:
- Browser and driver updates can be deployed without waiting for a Step release
- Security patches for browsers can be applied without notice
- Image versions are not tied to Step platform versions
Image Tagging Strategy
Agent runtime images use their own versioning scheme independent of Step platform versions.
Example Tags
# Base image with Java 21
docker.exense.ch/step-enterprise/base:21-debian-12-slim
# Browsers image version 1.0.4 with Java 21
docker.exense.ch/step-enterprise/browsers:1.0.4-java-21
Custom Agent Images
A key feature of Step’s agent architecture is the ability to create custom agent images. Starting with Helm Chart 1.2.0, agents use a binaries copy mode, which allows you to:
- Use custom base Docker images
- Include additional tools and dependencies
- Configure specific runtime environments
Choosing the Right Image
When to Use the Basic Image (Java 21 + Chromium)
- Lightweight deployments
- Chromium browser is sufficient for your testing needs
- Faster pull and startup times
When to Use the Full Browser Image
- Need to test across multiple browsers (Chrome, Firefox, Edge)
- Official browser compatibility testing
- Cross-browser automation requirements
When to Use Your Own Custom Image
You may want to create your own custom agent image when:
- You need specific tools or libraries not included in the official images
- You have proprietary dependencies or custom automation frameworks
- You need a different base OS or specific OS configurations
- You want to pre-install custom browser extensions or configurations
- Your testing requires specialized software packages
- You need to comply with specific security or compliance requirements
- You want to optimize image size for your specific use case
For details on creating custom agent images, see Creating Custom Agent Images.
Image Updates and Release Schedule
Agent runtime images are updated independently of Step platform releases:
Regular Updates
Runtime images (both base and browsers images) follow a scheduled release cadence:
- Twice per year: Major updates including functionality improvements and browser updates
- Typically released in Q2 (April-June) and Q4 (October-December)
- Updates include the latest browser versions, driver updates, and security patches
Vulnerability Management
Agent runtime images follow a proactive security vulnerability management process:
Vulnerability Scanning
- Internal scanning: Performed weekly to identify potential security issues
- Public documentation: Vulnerability status communicated accordingly
Response Process
When a high or critical vulnerability is discovered:
- Assessment: Vulnerability is evaluated and prioritized
- Fix delivery: If the vulnerability is fixable, a new image with the fix is delivered within 14 days
- Release strategy: Follows the same critical security response strategy as the Step platform
This process ensures that security issues are addressed promptly while maintaining image stability.