Container image registry analyzer with cleanup policies and vulnerability scanning

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for sanjaysundarmurthy from gravatar.com sanjaysundarmurthy

Unverified details

These details have not been verified by PyPI
Meta
  • License: MIT
  • Requires: Python >=3.9
Report project as malware

Project description

container-registry-cli

Container image registry analyzer with cleanup policies and vulnerability scanning.

Scan container registries, identify cleanup candidates based on tag policies, and audit images for security vulnerabilities — all from YAML manifests.

Features

  • Registry Scanning — Parse image manifests with tags, layers, and vulnerability data
  • Cleanup Policy Engine — Evaluate images against configurable retention rules
  • Security Auditing — 10 rules (REG-001 to REG-010) for image security
  • Multi-Registry Support — ACR, ECR, GCR, Docker Hub, GHCR detection
  • Rich Terminal Output — Color-coded tables with severity indicators
  • CI/CD Integration--fail-on flag for pipeline security gates

Installation

pip install -e .

Quick Start

container-registry-cli demo
container-registry-cli scan demo-registry/registry-manifest.yaml
container-registry-cli cleanup demo-registry/registry-manifest.yaml -p demo-registry/cleanup-policy.yaml
container-registry-cli audit demo-registry/registry-manifest.yaml --fail-on critical
container-registry-cli rules

Security Rules

Rule Description
REG-001 Critical vulnerabilities found
REG-002 High vulns with available fixes
REG-003 Deprecated base image
REG-004 No vulnerability scan data
REG-005 Running as root
REG-006 Excessive layers (>15)
REG-007 Image size exceeds threshold
REG-008 Untagged manifests
REG-009 Latest tag in production
REG-010 Stale tags (>180 days)

Testing

python -m pytest tests/ -v

License

MIT

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for sanjaysundarmurthy from gravatar.com sanjaysundarmurthy

Unverified details

These details have not been verified by PyPI
Meta
  • License: MIT
  • Requires: Python >=3.9

Release history Release notifications | RSS feed

This version

1.0.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

container_registry_cli-1.0.0.tar.gz (15.4 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

container_registry_cli-1.0.0-py3-none-any.whl (16.4 kB view details)

Uploaded Python 3

File details

Details for the file container_registry_cli-1.0.0.tar.gz.

File metadata

  • Download URL: container_registry_cli-1.0.0.tar.gz
  • Upload date:
  • Size: 15.4 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.2.0 CPython/3.11.7

File hashes

Hashes for container_registry_cli-1.0.0.tar.gz
Algorithm Hash digest
SHA256 e7773f0256297260a4ca5aa80784646eaae1221b639e49011842f9d470722fdc
MD5 3ad97b0b8acfba056780f654d5d96061
BLAKE2b-256 fdf5217727f801cdfdaaac44893aa91b1d72c01306bc2730aa6fca95bb27ed40

See more details on using hashes here.

File details

Details for the file container_registry_cli-1.0.0-py3-none-any.whl.

File metadata

File hashes

Hashes for container_registry_cli-1.0.0-py3-none-any.whl
Algorithm Hash digest
SHA256 1050f697dc5df7963a7fd825dfd1b527e42cad51ab815e19aa5a290b19a29f2f
MD5 f236b3ea8a98066f8aa55d1f1bb6e3a5
BLAKE2b-256 cc97b46b6c1be0b6a637f73c7a8a1c62be531a80994ce4388dbd6d5dda502122

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page