zot OCI registry

v0.1.0

Read-only inspection of a zot OCI registry over its HTTP API: the OCI distribution endpoints (version check, catalog, tags, manifests) plus the zot extensions — registry config/health (mgmt), Prometheus metrics, and a GraphQL search query that returns per-repo size and a newest-image vulnerability summary. Optional basic-auth credentials are streamed over curl stdin; many zot deployments allow anonymous read.

Pack ID

zot

Vendor

emisar

linux

Actions

Required binaries: curl. Actions that call a missing binary fail at run time — install these on the host before relying on the pack.

Install

emisar pack install validates the pack and verifies its content hash before copying it into /etc/emisar/packs. The --hash below pins the install to the exact bytes on this page — a tampered copy is rejected. After install, reload the runner; it re-reads the catalog and advertises every action.

content hash: sha256:acea53c0e5546c6d80d5950d795e742f6490b5eccd447c0cdc092633612ca20e

on the runner host

sudo emisar pack install zot \
  --hash sha256:acea53c0e5546c6d80d5950d795e742f6490b5eccd447c0cdc092633612ca20e \
  --dest /etc/emisar/packs

# Reload so the runner re-reads the catalog:
sudo systemctl reload emisar

Actions 7 total

View on GitHub

zot.catalog script low

GET /v2/_catalog
zot.manifest script low

GET /v2/{repo}/manifests/{reference}
zot.metrics script low

GET /metrics
zot.mgmt script low

GET /v2/_zot/ext/mgmt
zot.search script low

POST /v2/_zot/ext/search (repo inventory + vuln summary)
zot.tags script low

GET /v2/{repo}/tags/list
zot.v2_base script low

GET /v2/

← Back to registry

Pack reference Publish your own →