# goharbor/harbor **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/goharbor-harbor).** 27,611 stars · 5,110 forks · Go · apache-2.0 ## Links - GitHub: https://github.com/goharbor/harbor - Homepage: https://goharbor.io - awesome-repositories: https://awesome-repositories.com/repository/goharbor-harbor.md ## Topics `cloud-native` `cncf` `cncf-project` `container` `container-management` `container-registry` `containers` `docker` `hacktoberfest` `helm` `kubernetes` `registry` ## Description Harbor is a self-hosted, enterprise-grade container registry platform designed to store, sign, and scan container images and cloud-native artifacts. It provides a centralized repository that integrates directly with Kubernetes environments to manage the full lifecycle of software artifacts, from initial storage to production deployment. The platform distinguishes itself through a focus on security, governance, and multi-site availability. It features a pluggable vulnerability scanning framework that allows for the integration of various security engines, alongside content trust mechanisms that enforce digital signatures to ensure image authenticity. To support distributed infrastructure, it includes a cross-instance replication controller that synchronizes artifacts across geographic locations, ensuring high availability and disaster recovery. Harbor manages access and organization through project-based workspaces, where granular role-based access control is enforced for users and groups. It integrates with external identity providers using standardized protocols like OIDC to streamline authentication. The system also provides comprehensive administrative capabilities, including audit logging, storage quota enforcement, and automated garbage collection to maintain registry health and performance. The platform is built on a modular, microservices-based architecture that supports pluggable storage backends, allowing for flexibility across different cloud and local storage environments. It is designed for deployment within Kubernetes clusters, utilizing administrative APIs to facilitate programmatic management and integration with external CI/CD pipelines. ## Tags ### DevOps & Infrastructure - [Container Image Registries](https://awesome-repositories.com/f/devops-infrastructure/container-image-registries.md) — Hosts and organizes container images and cloud-native artifacts in a centralized, secure repository. - [Artifact Hosting](https://awesome-repositories.com/f/devops-infrastructure/repository-hosting/artifact-hosting.md) — Hosts container images and cloud-native artifacts in a centralized, secure repository for production environments. ([source](https://cdn.jsdelivr.net/gh/goharbor/harbor@main/README.md)) - [Kubernetes Deployment](https://awesome-repositories.com/f/devops-infrastructure/kubernetes-deployments/kubernetes-deployment.md) — Provides orchestration for installing registry services within Kubernetes clusters using package management tools. ([source](https://goharbor.io/docs/latest/install-config/)) - [Automated Artifact Lifecycle](https://awesome-repositories.com/f/devops-infrastructure/automated-lifecycle-management/automated-artifact-lifecycle.md) — Manages the full lifecycle of container artifacts, including creation, security scanning, and digital signing. ([source](https://github.com/goharbor/harbor/wiki/Architecture-Overview-of-Harbor)) - [Artifact Distribution](https://awesome-repositories.com/f/devops-infrastructure/artifact-distribution.md) — Synchronizes container images between local and remote storage locations to ensure consistent artifact availability. ([source](https://github.com/goharbor/harbor/wiki/Architecture-Overview-of-Harbor)) - [Multi-Site Replication](https://awesome-repositories.com/f/devops-infrastructure/container-image-registries/multi-site-replication.md) — Synchronizes container images across multiple geographic locations to ensure high availability and disaster recovery. - [Registry Management](https://awesome-repositories.com/f/devops-infrastructure/container-image-registries/registry-management.md) — Provides centralized management of registry settings and administrative policies to maintain system health. ([source](https://goharbor.io/docs/)) - [Retention Policies](https://awesome-repositories.com/f/devops-infrastructure/artifact-registries/retention-policies.md) — Automates the removal of outdated or unused artifact tags based on configurable retention policies. ([source](https://github.com/goharbor/harbor/wiki/Architecture-Overview-of-Harbor)) - [Automated Garbage Collection](https://awesome-repositories.com/f/devops-infrastructure/container-garbage-collection/automated-garbage-collection.md) — Reclaims storage space by automatically identifying and removing unreferenced data blobs and orphaned manifests. ([source](https://cdn.jsdelivr.net/gh/goharbor/harbor@main/README.md)) - [Content Trust Mechanisms](https://awesome-repositories.com/f/devops-infrastructure/container-images/content-trust-mechanisms.md) — Signs container images to guarantee origin and enforces policies preventing the deployment of unsigned artifacts. ([source](https://cdn.jsdelivr.net/gh/goharbor/harbor@main/README.md)) - [Governance Policies](https://awesome-repositories.com/f/devops-infrastructure/kubernetes-cluster-management/governance-policies.md) — Manages access controls, storage quotas, and audit logs for container artifacts within a cluster-based delivery pipeline. ### Data & Databases - [Registry Replication](https://awesome-repositories.com/f/data-databases/data-integration-synchronization/replication-control-policy/registry-replication.md) — Automates the synchronization of container images across geographically distributed registry instances to ensure high availability. - [Storage Drivers](https://awesome-repositories.com/f/data-databases/storage-abstraction/storage-provider-drivers/storage-drivers.md) — Implements pluggable storage drivers to support diverse local and cloud-based object storage backends. - [Relational Metadata Storage](https://awesome-repositories.com/f/data-databases/data-engineering-infrastructure/data-persistence-storage/data-storage-layers/relational-metadata-storage.md) — Uses relational database schemas to maintain consistent storage of artifact manifests, permissions, and audit logs. ### Security & Cryptography - [Container Security](https://awesome-repositories.com/f/security-cryptography/container-security.md) — Enforces container security through vulnerability scanning and digital signature verification for image authenticity. - [Container Security](https://awesome-repositories.com/f/security-cryptography/container-security-scanners/container-security.md) — Performs automated vulnerability scanning and enforces image integrity through content signing and authenticity verification. - [Role-Based Access Control](https://awesome-repositories.com/f/security-cryptography/role-based-access-control.md) — Enforces granular security by evaluating user permissions against project-level policies for all registry operations. ([source](https://goharbor.io/docs/)) - [Vulnerability Scanning](https://awesome-repositories.com/f/security-cryptography/vulnerability-scanning.md) — Integrates modular security engines to perform automated vulnerability scanning on container images. ([source](https://github.com/goharbor/harbor/wiki/Architecture-Overview-of-Harbor)) - [Enterprise Identity Providers](https://awesome-repositories.com/f/security-cryptography/enterprise-identity-providers.md) — Integrates with enterprise identity providers using OIDC to manage role-based access control for registry users. - [OIDC Authentication Plugins](https://awesome-repositories.com/f/security-cryptography/oidc-authentication-plugins.md) — Delegates user authentication to external identity providers using the OpenID Connect protocol. ([source](https://goharbor.io/docs/edge/install-config/harbor-compatibility-list/)) - [Authentication and Authorization](https://awesome-repositories.com/f/security-cryptography/authentication-and-authorization.md) — Validates user identity through local or external databases to secure registry operations and data. ([source](https://github.com/goharbor/harbor/wiki/Architecture-Overview-of-Harbor)) - [OIDC Identity Integrations](https://awesome-repositories.com/f/security-cryptography/oidc-identity-integrations.md) — Supports secure authentication by integrating with external identity providers using OIDC protocols. - [Audit Logs](https://awesome-repositories.com/f/security-cryptography/audit-logs.md) — Tracks and records all repository activities to provide a comprehensive history for security and compliance. ([source](https://cdn.jsdelivr.net/gh/goharbor/harbor@main/README.md)) ### Development Tools & Productivity - [Administrative APIs](https://awesome-repositories.com/f/development-tools-productivity/administrative-apis.md) — Provides RESTful interfaces for programmatic management of registry resources and infrastructure configurations. ([source](https://cdn.jsdelivr.net/gh/goharbor/harbor@main/README.md)) - [Artifact Repositories](https://awesome-repositories.com/f/development-tools-productivity/dependency-managers/artifact-distribution-systems/artifact-repositories.md) — Acts as a centralized storage solution for container images that integrates with Kubernetes to manage software lifecycles. - [Webhook Notifications](https://awesome-repositories.com/f/development-tools-productivity/webhook-notifications.md) — Delivers automated event-driven updates to external services via webhooks when artifact statuses change. ([source](https://github.com/goharbor/harbor/wiki/Architecture-Overview-of-Harbor)) ### Software Engineering & Architecture - [Project Organization](https://awesome-repositories.com/f/software-engineering-architecture/project-management-governance/repository-maintenance/project-organization.md) — Groups container images into isolated, project-based workspaces with dedicated access controls and lifecycle rules. ([source](https://goharbor.io/docs/)) - [Webhook Event Notifications](https://awesome-repositories.com/f/software-engineering-architecture/integration-extensibility/programmatic-interfaces/webhook-event-notifications.md) — Triggers asynchronous callbacks to external services upon artifact lifecycle events to facilitate CI/CD pipeline integration. - [Microservices Architectures](https://awesome-repositories.com/f/software-engineering-architecture/microservices-architectures.md) — Decomposes registry functions into independent, containerized services to ensure modularity and scalability. - [Project Quotas](https://awesome-repositories.com/f/software-engineering-architecture/project-configuration-management/project-quotas.md) — Monitors and validates project storage usage to ensure uploads do not exceed defined capacity limits. ([source](https://github.com/goharbor/harbor/wiki/Architecture-Overview-of-Harbor))