GitHub Container Registry link to a repo

wei · September 3, 2020, 1:33am

The help page says

The GitHub Container Registry supersedes the existing Packages Docker registry

I have two questions regarding Migrating to GitHub Container Registry for Docker images:

Can I link a container in the new container registry to a repo, and will it show up under packages? If not currently, what is the roadmap and expected behavior once implemented?
Now that I’m pushing to the new Container Registry, How can I delete a docker image in the old Packages Docker registry to prevent old images being used by mistake? :latest tag

Thanks!

clarkbw · September 3, 2020, 3:14am

Yes! You can link to a repository via the OCI source label, here are 2 ways to do that. (Apologies as I thought this was in the docs)

The preferred method is via the Dockerfile like so:

# repo URL
LABEL org.opencontainers.image.source = "https://github.com/github/super-linter/"

Alternatively you can add this at build time like so:

docker build --label "org.opencontainers.image.source=https://github.com/github/super-linter/"

We’re going to turn on delete for the old Docker images soon. Private images can be deleted immediately, public image deletion is coming. With the new service you’ll always be able to delete images and tags on your own.

wei · September 3, 2020, 3:34am

Thanks! I tagged my images now it’s showing up on my user’s Packages tab. and the right repo is being displayed underneath both GCR and GPR versions.

However, only one being displayed under my repo’s packages page and it shows the GPR image.

I presume this won’t be a problem after the public image deletion feature is in : )

wei · September 4, 2020, 2:16am

Hi @clarkbw, When you say “You can link to a repository”, Do you mean the image will show up under the repo’s packages tab?

I published a public image for my repo and it’s showing correctly under repository source as follows:

However, it’s not showing under repo’s packages tab or anywhere on the repo page. Do we need to do anything else to get it to show up?

clarkbw · September 4, 2020, 10:12pm

@wei Yes! That’s the correct way to link the repo and the container. However right now it won’t show up in the repository page view yet. We’re waiting on some other fixes to go in and then it will start to appear as planned.

MaximeAubanel · September 7, 2020, 11:52pm

Hello !

Is there a way to push images as public directly ? On my end everytime I push an image even linked (as mentioned above) to a public project, it still publish the image as private.

clarkbw · September 8, 2020, 8:29am

Not at this time. Images initially start as private and need to be switched. This should only need to be done once.

Can you explain a bit more about how you’re using this?

MaximeAubanel · September 8, 2020, 10:33am

Well, I have a public repository: https://github.com/MaximeAubanel/GoGame

Initially I was releasing packages using docker.pkg.github.com. But I realized I couldn’t pull them without logging. Then I saw the new Docker Container Registry and tried it. It worked and I can pull images anonymously if they are public - but they were not so I had to move them to public manually. Then I came here to figure out how to link this image to a repo because images were not appearing on the project packages profile.

That’s basically it. I’m just thinking it is a bit odd to do it manually - but I guess it’s an upcoming feature. Maybe could be nice to default publish the image as public if it’s linked with a public repository.

clarkbw · September 8, 2020, 11:26pm

Yeah, its a little bit of a manual process right now. We’ll optimize it more soon so it’s easier to get the right defaults for new containers. Thanks for the feedback!

aptalca · September 15, 2020, 4:00pm

Is there an api call to switch the package from private to public?

We at linuxserver.io are updating our ci to push images to the new container registry but having a lot of issues with this default private marking.

Currently, only the user whose pat was used to upload the image can manage these images/packages. The other users of the organization (including the owners) cannot even see the packages listed as they are not listed in access management. This forces a manual interaction on a single member of the team for each image (we have hundreds) which is not ideal for an org with ci/cd.

Thanks

clarkbw · September 15, 2020, 7:38pm

Hello @aptalca! Can you email me? clarkbw @github.com We’ve got a system that solves for this very issue that we’re using internally but its not yet ready to roll out. Happy to have you try it and get your feedback. Thanks!

lukaszstolarczuk · October 21, 2020, 1:43pm

I just encountered the same issue. I mean, our org’s admins couldn’t see our docker images on packages page, because these images were pushed by a CI account (a bot). If I didn’t encounter this comment here I just wouldn’t know where to look for.

@clarkbw, shouldn’t it be described in documentation (e.g. here) or perhaps please put it in bold, if the info is there (and I’m blind ).

Thanks!

jef · November 5, 2020, 11:12pm

I’ve had no problem linking a repository via the UI, but now I’d like to unlink. Is that a possibility? Either through UI or API?