Registries

You are viewing documentation for a release that is no longer supported. The latest supported version of version 3 is [3.11]. For the most recent version 4, see

There are tools you can use to scan and track the contents of your downloaded and deployed container images. However, there are many public sources of container images. When using public container registries, you can add a layer of protection by using trusted sources.

Consuming security updates is particularly important when managing immutable containers. Immutable containers are containers that will never be changed while running. When you deploy immutable containers, you do not step into the running container to replace one or more binaries; you rebuild and redeploy an updated container image.

• Free of known vulnerabilities in the platform components or layers.

• Compatible across the RHEL platforms, from bare metal to cloud.

Further Reading

• More on immutable containers in OKD:

  • OKD Architecture:

  • OKD Developer Guide: Referencing Images in Image Streams

OKD also supports integration with other private registries you may already be using.

Further Reading