|
|
|
|
|
|
by fancyremarker
4432 days ago
|
|
|
There are already private Docker registries out there. My company uses https://quay.io , for example, and Docker has its own private registry. How does Gandalf compare to these existing offerings, besides on price? Security for Docker images is just as important, and in some cases more important than it is for code assets. What protection does Gandalf offer against unauthorized downloading of images/layers, and tampering with images stored in the repository? Does Gandalf plan to support features like building images from a Dockerfile, ideally sent via GitHub repo hook? This is a great workflow convenience offered by both Quay and Docker. |
|
|
Gandalf.io went live yesterday and still very much in early beta and we're still improving the functionality and experience. The reason we decided to set up Gandalf was because we think this is a huge potential market with space for at least 3-4 players. We also think docker containerisation is more than just enterprise devops preserve and want to lower the threshold for startups and individual developers to get started.
Gandalf.io has an auth layer wrapped around the standard docker registry and you can access it via SSL using the docker api (this includes the docker CLI). We're still examining ways in which we can strengthen the security of the system and are open to suggestions and insights.
Github based builds are in the upcoming release slated for next week. Sign up for the free plan and you'll be notified by email when that happens.