5 个仓库
Adding and managing custom key-value pairs within container images for organization and licensing.
Distinct from Image and Metadata Analysis: Candidates were focused on analyzing or stripping metadata from graphical image files, not container manifests.
Explore 5 awesome GitHub repositories matching devops & infrastructure · Container Image Metadata. Refine with filters or upvote what's useful.
dockerlabs is a collection of educational labs and technical tutorials designed to teach the fundamentals of containerization and microservice architecture. It provides instructional material and hands-on exercises covering image optimization, security training, infrastructure setup, and cluster orchestration. The project features specific courses and guides focused on reducing image size through multi-stage builds, securing workloads via vulnerability scanning and encrypted networks, and deploying multi-node clusters with high availability using Swarm orchestration. The materials cover a br
Explains how to attach custom key-value pairs to images for organization and licensing.
This project is a collection of curated and standardized Docker base images that serve as reliable starting points for building containerized applications. It functions as an OCI container image repository and a build template library, providing a central source of truth for images that adhere to Open Container Initiative standards for portability. The project utilizes an automated image lifecycle pipeline to build, tag, and push images, ensuring that dependencies remain current and security patches are applied. It specifically supports cross-platform distribution by providing a multi-archite
Provides a way to attach custom key-value labels for licensing, ownership, and automation metadata to images.
LXD is a unified platform for managing both system containers and virtual machines through a single REST API and command-line interface. It provides a programmatic HTTP interface for controlling the full lifecycle of instances, enabling automation and integration with external tools. The system runs unprivileged containers with per-instance UID/GID mappings, seccomp filters, and AppArmor profiles for kernel-level isolation, while supporting multiple storage backends including directory, Btrfs, LVM, ZFS, Ceph, LINSTOR, and TrueNAS through a unified driver interface. The platform distinguishes
Modifies container metadata.yaml and templates through the API before publishing an image.
OCI Container Image Specification 是一个标准化的容器镜像格式,确保了不同构建工具和运行时之间的互操作性。它作为一种分发标准,用于构建镜像 Blob 和清单(manifests),为在注册表和客户端之间传输数据提供了一致的方式。 该规范采用内容可寻址存储标准,使用加密摘要标识镜像层和清单,以确保数据完整性。它包括一个用于定义执行元数据(如入口点和环境变量)的基于 JSON 的配置模式,并提供了一种灵活的打包格式,以使用自定义媒体类型捆绑非容器工件。 该项目涵盖了高级能力,包括通过将引用映射到特定操作系统和架构的索引进行多平台镜像分发。它还定义了文件系统层组合、通过清单进行资源映射以及将镜像配置转换为运行时规范的机制。
Allows the attachment of custom key-value pairs for authorship and licensing within image manifests.
Container-diff 是一个命令行工具,旨在检查和比较容器镜像的内部组成。它作为容器化环境的审计器,提供对文件系统结构、已安装软件包和单个镜像或两个不同构建之间配置元数据的可见性。 该工具通过其跨容器层执行细粒度分析的能力脱颖而出,允许用户追踪构建历史并识别特定的配置漂移。通过支持注册表无关的镜像获取和模块化分析驱动程序,它集成到各种工作流中,以验证软件供应链的一致性并排查构建时错误。 除了基础检查外,该工具还提供全面的报告功能,包括为自动化监控和性能审计生成结构化输出的能力。它支持远程注册表身份验证,以促进对私有镜像的安全访问,确保可以在各种部署环境中执行审计。
Tracks updates and configuration drift by contrasting the filesystems, metadata, and packages of two container images.