加载中
正在获取最新内容,请稍候...
Harbor - Trusted Cloud Native Container Registry with Security and Policy
Harbor is an open source trusted cloud native registry that stores, signs, and scans container images. It enhances security and management in cloud-native environments.
Go
Added on 2025年6月7日25,704
Stars4,883
ForksGo
LanguageProject Introduction
Summary
Harbor is an enterprise-grade, open source container registry that secures and manages artifacts with policies and role-based access control. It adds essential security features like vulnerability scanning, content signing, and immutability to cloud-native ecosystems like Kubernetes and Docker.
Problem Solved
Managing container images securely in cloud-native workflows (like CI/CD) across different environments (public cloud, private data centers, air-gapped) is challenging. Organizations need a reliable, secure, and easily manageable registry solution that goes beyond basic storage to include security and policy enforcement.
Core Features
Artifact Storage and Management
Securely store and manage container images and other cloud-native artifacts.
Vulnerability Scanning
Integrated vulnerability scanning using tools like Clair and Trivy to identify risks in images.
Content Trust (Image Signing)
Content Trust using Notary for image signing and verification.
Image Replication
Policy-based replication of images between Harbor instances or other registries.
Access Control and Identity Management
Robust role-based access control and integration with LDAP/AD and OIDC.
Tech Stack
Go
Docker
Kubernetes
Notary
Clair
Trivy
PostgreSQL
Redis
Nginx
使用场景
Harbor serves as a central artifact management platform for various cloud-native deployment scenarios and workflows.
场景一:CI/CD 安全集成
Details
Automatically scan new container images pushed to the registry as part of the CI/CD pipeline before deployment.
User Value
Shift security left by identifying vulnerabilities early in the development lifecycle.
场景二:离线/隔离环境部署
Details
Deploy Harbor in air-gapped or offline environments to provide a local, secure registry for container images.
User Value
Enable cloud-native deployments in restricted networks with local access to trusted artifacts.
场景三:多区域/跨云同步
Details
Replicate images between different Harbor instances or public/private registries to support multi-cloud or disaster recovery strategies.
User Value
Improve reliability and availability of artifacts across distributed infrastructure.
Recommended Projects
You might be interested in these projects
JanDeDobbeleeroh-my-posh
Discover Oh My Posh, the highly customizable and low-latency prompt engine for any shell and operating system. Enhance your terminal workflow with themes, segments, and personalized information.
Go
194152541
asterinasasterinas
Explore Asterinas, a cutting-edge OS kernel written in Rust, designed for high security and performance while offering seamless Linux-compatible ABI. Ideal for modern system development.
Rust
3285197
spring-projectsspring-boot
Spring Boot helps you create Spring-powered, production-grade applications and services with absolute minimum fuss, focusing on convention over configuration.
Java
7764841257