Working with container images

Artifact Registry can store Docker and OCI container images in a Docker repository.

To get familiar with container images in Artifact Registry, you can try the quickstart.

When you are ready to learn more, read the following information:

  1. Create a Docker repository for your images.
  2. Grant permissions to the account that will connect with the repository.
    • The Cloud Build default service account has permissions to push to and pull from Artifact Registry repositories in the same Google Cloud project.
    • The default service account for Compute Engine, Cloud Run, and Google Kubernetes Engine has permissions to pull from Artifact Registry repositories in the same Google Cloud project.
  3. If you are using a Docker client to push and pull images, configure authentication to Artifact Registry.
  4. Learn about pushing and pulling images.
  5. Learn about managing images.
  6. Set up Pub/Sub notifications for changes to your repository.
  7. Set up Container Analysis to manage image metadata and scan for vulnerabilities.