Harbor

An open-source, CNCF Graduated registry that secures artifacts via role-based access control, vulnerability scanning, and image signing.

Harbor serves as a CNCF Graduated enterprise registry for storing and managing cloud-native artifacts. It integrates directly with OIDC and LDAP providers to enforce granular RBAC across private projects. Security is handled via built-in vulnerability scanning (using tools like Trivy) and content trust through Cosign or Notary. Operators use its replication capabilities to sync images across multi-cloud registries (Azure ACR, AWS ECR, or Google GCR) while maintaining a single source of truth.

https://goharbor.io