This topic describes the release notes of Container Registry.

July 2021

Feature Description Applicable scope Regions References
Manual image synchronization and synchronization retry Container Registry Enterprise Edition allows you to manually synchronize images and retry synchronization. This improves the customer experience in global image synchronization. Container Registry Enterprise Edition instances All regions

June 2021

Feature Description Applicable scope Regions References
Event notification Container Registry Enterprise Edition allows you to subscribe to events throughout the lifecycle of artifacts and notifies you by using EventBridge-based notification methods, such as DingTalk and text messages. For example, you can subscribe to events about security scanning, delivery chain, image signing, image synchronization, and image building. Container Registry Enterprise Edition instances China (Shanghai),China (Shenzhen), China (Hong Kong) N/A

May 2021

Feature Description Applicable scope Regions References
Built-in security scan engines Container Registry Enterprise Edition provides built-in security scan engines that expand the detection scope. Built-in security scan engines can help you detect system vulnerabilities, middleware vulnerabilities, baseline risks, and malicious samples in container images. Container Registry Enterprise Edition instances China (Hangzhou), China (Beijing), China (Shanghai), China (Shenzhen), China (Hong Kong), China (Singapore), China (Zhangjiakou), and Japan (Tokyo) Scan container images
Vulnerability fix for images To ensure image security, Container Registry Enterprise Edition allows you to fix system vulnerabilities in container images with a few clicks. Container Registry Enterprise Edition instances China (Hangzhou), China (Beijing), China (Shanghai), China (Shenzhen), China (Hong Kong), China (Singapore), China (Zhangjiakou), and Japan (Tokyo) Fix system vulnerabilities in container images

April 2021

Feature Description Applicable scope Regions References
OCI artifact management Container Registry Enterprise Edition allows you to manage more types of Open Container Initiative (OCI) artifacts throughout the lifecycle. The OCI artifacts include container images, Helm charts, and Cloud Native Application Bundles (CNAB). You can store and distribute different types of OCI artifacts and manage the versions of the OCI artifacts. This allows you to use different types of OCI artifacts in a more convenient way. Container Registry Enterprise Edition instances All regions What is Container Registry?

March 2021

Feature Description Applicable scope Regions References
The P2P acceleration feature V2.0 The P2P acceleration feature is updated to V2.0. The following capabilities are provided by the updated feature:
  • Allows you to install the P2P component on the Add-ons page in the Container Service for Kubernetes (ACK) console or in on-premises Kubernetes clusters, and allows you to use the P2P acceleration feature in the cluster without the need to deploy accelerated images.
  • Supports accelerating the image distribution among more than 1,000 nodes in P2P mode. V2.0 can speed up the image download by 100%.
  • Supports image distribution in P2P mode among the nodes of the clusters that use both Elastic Compute Service (ECS) instances and elastic container instances. This improves the response speed in elastic scaling scenarios.
  • Supports image distribution in P2P mode among multiple clusters that are deployed in different virtual private clouds (VPCs). This improves the flexibility of image distribution.
Container Registry Enterprise Edition instances All regions Use the P2P acceleration feature in ASK and ACK clusters

February 2021

Feature Description Applicable scope Regions References
Update of the image building feature Container Registry Enterprise Edition updates the image building feature from multiple dimensions, such as the diversity of source code repositories, building speed, and user experience. The following capabilities are provided by the updated feature:
  • Accesses the source code repositories of Apsara DevOps Codeup and Gitee and automatically triggers image building when the code in the source code repositories changes. This improves the efficiency of R&D and iteration.
  • Accelerates image building based on multi-level cache policies and data centers outside mainland China. This improves the image building speed by 30%.
  • Supports build rules that are based on image tags and build settings that allow you to build images as needed. This improves the user experience and efficiency in implementing cloud-native DevOps solutions.
Container Registry Enterprise Edition instances All regions Use Container Registry Enterprise Edition to build images

December 2020

Feature Description Applicable scope Regions References
Image version management and instance-level image deletion The number of image versions increases as the container-based business develops and iterates. The increasing number leads to complex image maintenance and high cost. Container Registry allows you to configure retention policies to delete image versions for an instance as needed. You can retain a specific number of recent images or images that match the specified regular expression. Other expired image versions are automatically deleted. Container Registry Enterprise Edition instances China (Beijing), China (Hangzhou), and China (Shanghai)

November 2020

Feature Description Applicable scope Regions References
On-demand image loading Container Registry provides this feature to accelerate image loading in elastic scaling scenarios that require short cold start time and AI-based scenarios where large images slow the distribution. Container Registry can convert a standard container image to an accelerated image. Then, you can install the aliyun-acr-acceleration-suite component on worker nodes of an ACK cluster. Pods that are scheduled to the worker nodes load resources of images on demand and decompress image packages online. This feature reduces the average time to start a container by 60% and quadruples the speed of application distribution. This ensures that images are run with high efficiency. Container Registry Enterprise Edition instances China (Hangzhou), China (Shanghai), US (Virginia), and US (Silicon Valley) Load resources of a container image on demand

October 2020

Feature Description Applicable scope Regions References
Custom domain names You can bind a custom domain name that has a Secure Sockets Layer (SSL) certificate to an instance. Then, you can use the custom domain name to access the instance over HTTPS. Container Registry Enterprise Edition instances All regions Use a custom domain name to access a Container Registry Enterprise Edition instance
Migration from a self-managed Harbor instance to a Container Registry Enterprise Edition instance You can migrate images from a self-managed Harbor instance to a Container Registry Enterprise Edition instance. This helps you save the cost of creating and maintaining an image registry by yourself. Container Registry Enterprise Edition instances All regions Migrate images from a self-managed Harbor instance to Container Registry Enterprise Edition in 10 minutes

June 2020

Feature Description Applicable scope Regions References
Update of global image synchronization links The global image synchronization links are updated to support automatic image synchronization across major regions around the world. Container Registry provides a synchronization success rate higher than 99% and ensures efficient image distribution and iteration on a global scale. You can configure sync rules for Container Registry Enterprise Edition instances to synchronize images by namespace or repository. In addition, Internet access is not required for synchronizing images in Container Registry Enterprise Edition instances. This improves the convenience and security of image synchronization. Container Registry Enterprise Edition instances All regions N/A

April 2020

Feature Description Applicable scope Regions References
Image signing Container Registry Enterprise Edition supports image signing. This prevents man-in-the-middle (MITM) attacks and unauthorized image updates or deployments. This way, image consistency and security from distribution to deployment are ensured. Container Registry supports automatic image signing by namespace. Every time an image is pushed to Container Registry, Container Registry automatically signs the image based on the matched signature rule. This ensures that your container images are trustworthy. Container Registry Enterprise Edition instances All regions Sign container images