Securing repositories in a service perimeter

VPC Service Controls improves your ability to mitigate the risk of unauthorized copying or transfer of data from Google-managed services.

With VPC Service Controls, you can configure security perimeters around the resources of your Google-managed services and control the movement of data across the perimeter boundary.

For general instructions to add Artifact Registry to a service perimeter, see Creating a service perimeter.

If you are using Artifact Registry with a Google Kubernetes Engine private cluster within a service perimeter, follow the Container Registry instructions to set up secure communication with Artifact Registry using a restricted virtual IP. Replace instances of gcr.io in the instructions with *.pkg.dev.