Zum Hauptinhalt springen
Dieser Inhalt ist noch nicht in Ihrer Sprache verfügbar und wird auf Englisch angezeigt.

Setup Container Registry

Skill Verifiziert Aktiv
Teil von:Agent Almanac

Configure container image registries including GitHub Container Registry (ghcr.io), Docker Hub, and Harbor with automated image scanning, tagging strategies, retention policies, and CI/CD integration for secure image distribution. Use when setting up a private container registry, migrating from Docker Hub to self-hosted registries, implementing vulnerability scanning in CI/CD pipelines, managing multi-architecture images, enforcing image signing, or configuring automatic cleanup and retention policies.

Zweck

To guide users through the process of configuring secure, production-ready container image registries with automated security scanning and distribution.

Funktionen

  • Configure GitHub Container Registry (ghcr.io)
  • Configure Docker Hub with automated builds
  • Deploy Harbor self-hosted registry
  • Implement image tagging strategies and retention policies
  • Configure Kubernetes image pull secrets
  • Enable vulnerability scanning with Trivy
  • Enable image signing with Cosign

Anwendungsfälle

  • Setting up a private container registry for an organization
  • Migrating from Docker Hub to self-hosted or alternative registries
  • Implementing image vulnerability scanning in CI/CD pipelines
  • Managing multi-architecture images and enforcing image signing
  • Configuring automatic image cleanup and retention policies

Nicht-Ziele

  • Building the container images themselves (though it references related skills)
  • Managing Kubernetes cluster infrastructure beyond image pull secrets
  • Advanced registry security configurations not directly related to distribution and scanning

Workflow

  1. Configure GitHub Container Registry (ghcr.io)
  2. Configure Docker Hub with Automated Builds
  3. Deploy Harbor Self-Hosted Registry
  4. Implement Image Tagging Strategy and Retention Policies
  5. Configure Kubernetes Image Pull Secrets
  6. Enable Vulnerability Scanning and Image Signing

Praktiken

  • DevOps
  • Container Security
  • CI/CD Integration

Voraussetzungen

  • Docker or Podman installed locally
  • Registry credentials (personal access tokens, service accounts)
  • Optional: Self-hosted infrastructure for Harbor deployment
  • Optional: Kubernetes cluster for registry integration
  • Optional: Cosign/Notary for image signing
  • Optional: Trivy or Clair for vulnerability scanning

Scope

  • info:Dry-run previewWhile the skill doesn't have explicit `--dry-run` flags for all commands, Helm installs can be previewed with `helm template`, and Kubernetes manifests can be previewed with `kubectl apply --dry-run=client`. However, a universal dry-run for all operations is not explicitly provided.

Installation

/plugin install agent-almanac@pjt222-agent-almanac

Qualitätspunktzahl

Verifiziert
99 /100
Analysiert about 18 hours ago

Vertrauenssignale

Letzter Commit1 day ago
GitHub-Inhaber pjt222 (opens in new tab)
Sterne14
Downloads 308 (opens in new tab)
LizenzMIT
Websitepjt222.github.io(opens in new tab)
Status
Quellcode ansehen

Ähnliche Erweiterungen

Azure Container Registry SDK for Python

100

Azure Container Registry SDK for Python. Use for managing container images, artifacts, and repositories. Triggers: "azure-containerregistry", "ContainerRegistryClient", "container images", "docker registry", "ACR".

Skill
microsoft

Secrets Management

100

Implement secure secrets management for CI/CD pipelines using Vault, AWS Secrets Manager, or native platform solutions. Use when handling sensitive credentials, rotating secrets, or securing CI/CD environments.

Skill
wshobson

Ops Fires

100

Production incidents dashboard. Reads ECS health, Sentry errors, CI failures. Offers to dispatch fix agents for active fires.

Skill
Lifecycle-Innovations-Limited

Ci Cd Pipeline Builder

100

CI/CD Pipeline Builder

Skill
alirezarezvani

K8s Manifest Generator

100

Create production-ready Kubernetes manifests for Deployments, Services, ConfigMaps, and Secrets following best practices and security standards. Use when generating Kubernetes YAML manifests, creating K8s resources, or implementing production-grade Kubernetes configurations.

Skill
wshobson

Ship Gate

100

Pre-production audit that scans a codebase for security, database, deployment, code quality, AI/LLM, dependency, frontend, and observability issues. Intercepts deploy commands and blocks until critical items pass. Stack-agnostic. Use for "run ship gate", "am I ready to ship", "pre-launch audit", "can I deploy", "push to production", "go live checklist", "preflight check". Not for CI/CD setup or infra provisioning.

Skill
alirezarezvani