Harbor is an open-source registry that secures artifacts with policies and role-based access control, ensures images are scanned and free from vulnerabilities, and signs images as trusted.
Delivering compliance, performance, and interoperability to help you consistently and securely manage artifacts across cloud-native compute platforms like Kubernetes and Docker.
System admin can run garbage collection jobs so that images(dangling manifests and unreferenced blobs) can be deleted and their space can be freed up periodically.
Images and charts can be replicated (synchronized) between multiple registry instances based on policies with using filters (repository, tag and label).
Harbor can be deployed via Docker compose as well Helm Chart, and a Harbor Operator was added recently as well.
Harbor scans images regularly for vulnerabilities and has policy checks to prevent vulnerable images from being deployed.
Users access different repositories through 'projects' and a user can have different permission for images or Helm charts under a project.