Skip to main content

zot OCI registry

v0.1.2

Read-only inspection of a zot OCI registry over its HTTP API: the OCI distribution endpoints (version check, catalog, tags, manifests) plus the zot extensions — registry config/health (mgmt), Prometheus metrics, and a GraphQL search query that returns per-repo size and a newest-image vulnerability summary. Optional basic-auth credentials are streamed over curl stdin; many zot deployments allow anonymous read.

7 allowed by default
Pack ID
zot
Vendor
emisar
OS
linux
Actions
7
Required binaries. Install these on the host before relying on the pack — an action that calls a missing one fails at run time.
curl

Install

emisar pack install validates the pack and verifies its content hash before copying it into /etc/emisar/packs. The --hash below pins the install to the exact bytes on this page — a tampered copy is rejected. After install, reload the runner; it re-reads the catalog and advertises every action.

content hash: sha256:430b71e9d8e51bd20e2cf2914c82e76bd77a58ce5a7fb3a6c1aaa14780c05190

on the runner host
sudo emisar pack install zot \
  --hash sha256:430b71e9d8e51bd20e2cf2914c82e76bd77a58ce5a7fb3a6c1aaa14780c05190 \
  --dest /etc/emisar/packs

# Reload so the runner re-reads the catalog:
sudo systemctl reload emisar

Actions 7 total

View on GitHub