Alibaba Cloud Container Registry is a secure platform that allows you to manage and effectively distribute cloud-native artifacts that meet the standards of Open Container Initiative (OCI). The artifacts include container images and Helm charts. Container Registry Enterprise Edition provides end-to-end acceleration capabilities such as accelerating global image synchronization, accelerating the large-scale distribution of large images, and accelerating image building based on multiple code sources. It seamlessly integrates with Container Service for Kubernetes (ACK) to help enterprises reduce delivery complexity and provide a one-stop solution for cloud-native applications.

Editions

Container Registry Personal Edition

Container Registry Personal Edition provides basic container image features for individual developers. It allows you to manage application images with security, scan your images, stably build images in and outside China, and conveniently authorize access to your images. These features allow you to manage images throughout the entire lifecycle.

Container Registry Enterprise Edition

Container Registry Enterprise Edition is a platform designed to manage the lifecycle of cloud-native application artifacts that meet the standards of OCI, including container images and Helm charts. Container Registry Enterprise Edition efficiently distributes large-scale application artifacts across multiple regions in different scenarios. Container Registry Enterprise Edition seamlessly integrates with ACK, which simplifies the application delivery for enterprises.

Features

Features of Container Registry Personal Edition

  • Multiple-architecture container images

    Container Registry Personal Edition supports multiple-architecture container images, including Linux, Windows, and ARM.

  • Flexible region selection
    • You can create and delete image repositories in different regions based on business needs.
    • Each image repository has three endpoints, which can be accessed over the Internet, internal network, and a virtual private cloud (VPC).
  • Image security scans
    • Container Registry Personal Edition allows you to conveniently scan your images and displays detailed information about image layers.
    • After an image is scanned, Container Registry Personal Edition provides a vulnerability report for the image. The report includes vulnerability information in multiple dimensions, such as the vulnerability number, the vulnerability severity, and the version in which the vulnerability is fixed.

Features of Container Registry Enterprise Edition

  • OCI artifact management

    Container Registry Enterprise Edition can manage multiple types of OCI artifacts, such as container images for multiple architectures including Linux, Windows, and ARM, and charts of Helm v2 and Helm v3.

  • Multi-dimensional security protection

    Container Registry Enterprise Edition ensures storage and content security by storing encrypted cloud-native application artifacts, scanning container images for vulnerabilities, and generating vulnerability reports in multiple dimensions. Container Registry Enterprise Edition ensures secure access by providing network access control and fine-grained operation audit for container images and Helm charts.

  • Accelerated application distribution

    Container Registry Enterprise Edition can synchronize container images among different regions around the world to improve distribution efficiency. Container Registry Enterprise Edition supports P2P image distribution to accelerate application deployment and scaling.

  • Efficient and secure cloud-native application delivery

    Container Registry Enterprise Edition allows you to create cloud-native application delivery chains that are observable, traceable, and configurable. Container Registry Enterprise Edition can automatically deliver applications all over the world upon source code changes in multiple scenarios based on delivery chains and blocking rules. This improves the efficiency and security of cloud-native application delivery.

Specifications of different editions

The following table describes the specifications of Container Registry Personal Edition and Enterprise Edition. In the following table, ticks (✔️) indicate that a feature is supported and crosses (❌) indicate that a feature is not supported.
Module Feature Container Registry Personal Edition Container Registry Enterprise Edition
Basic Edition Advanced Edition
Artifact management Container images Image management ✔️ ✔️ ✔️
Namespace quota 3 15 50
Public repository quota 300 1000 5000
Private repository quota
Image building ✔️ ✔️ ✔️
Webhooks ✔️ ✔️ ✔️
Helm charts Helm chart management × ✔️ ✔️
Namespace quota × 15 50
Public repository quota × 1000 5000
Private repository quota
Security enhancement Container images Vulnerability scan ✔️ ✔️ ✔️
Network access control × ✔️ ✔️
Helm charts Network access control × ✔️ ✔️
Operation audit × ✔️ ✔️
Application distribution Large-scale image distribution × × ✔️
Global image synchronization × × ✔️
Application delivery Cloud-native application delivery chains × × ✔️
Other services Integration with ACK The aliyun-acr-credential-helper component that allows you to pull private images without a password ✔️ ✔️ ✔️
Migration guidance Efficient image import × ✔️ ✔️