More than a registry — store, scan, sign, and govern your container images as the gate of your software supply chain.

Welcome to Harbor: A Trusted Cloud-Native Registry.

Harbor is an open-source registry for container images and cloud-native artifacts that adds security and governance on top of storage. This free book teaches it from the ground up: container registries and the OCI distribution model, Harbor's architecture and components, projects and access control with RBAC, SSO, and robot accounts, vulnerability scanning and policy enforcement, image signing and content trust, replication across registries and clouds, management with quotas/retention/garbage collection, Harbor in Kubernetes and CI/CD as the secure image gate, and securing and operating Harbor in production. Ten focused chapters with clear diagrams that show how to turn a registry into a trusted, governed hub for your software supply chain.

This title is part of the ShriIra library and is free to read in full, right here — our small contribution to making world-class knowledge easy to reach.

A note on reading it: open the Contents menu at the top of the reader to jump between chapters, use the Aa menu to set a comfortable text size, theme (light, sepia, or night), and single- or two-page layout. Your place is saved automatically, so you can always pick up where you left off.

We hope it serves you well.

— Shriira Press

Contents

1. Chapter 1 — What Harbor Is
2. Chapter 2 — Registries and the OCI Model
3. Chapter 3 — Architecture
4. Chapter 4 — Projects and Access Control
5. Chapter 5 — Vulnerability Scanning and Policy
6. Chapter 6 — Signing and Content Trust
7. Chapter 7 — Replication
8. Chapter 8 — Management and Maintenance
9. Chapter 9 — Harbor in Kubernetes and CI/CD
10. Chapter 10 — Operating Harbor and Putting It Together