as of now it is not possible to pull docker images anonymously from the GitHub package registry even though they are absolutely public. This is the killer argument which makes me not going to use the package registry as I want to make sure all users can anonymously pull docker images, e. g. to:
Run services in Kubernetes, directly pulling from GitHub. This would require the annoying setup of image pull secrets and therefore people would likely workaround this by mirroring images to their own registry of choice
Run docker image locally. Most users and devs are probably not yet authenticated against the GH docker registry and therefore they can not pull images from it, until they figured out how to do so
TL;DR: Please make it possible to anonymously pull docker images from the docker registry for public repositories.
Note: I’ve seen a strong desire for this here as well, but it hasn’t get any attention from GitHub staff (maybe because of the lacking usecases?): https://github.community/t5/GitHub-Actions/docker-pull-from-public-GitHub-Package-Registry-fail-with-quot/td-p/32782