Remix.run Logo
Remix clone Hacker News
new | show | ask | jobsGithub
nodesocket a day ago

Nice to know, though I wonder how many companies are really using all private images? I've certainly had a client running their own Harbor instance, but almost all others pulled from Docker Hub or Github (ghcr.io).

wvh a day ago | parent | next [-]

Lots of medical and governmental organisations are not allowed to run in public cloud environments. It's part of my job to help them get set up. However, in reality that often boils down to devs wining about adding a registry to Harbor to cache; nobody is going to recompile base images and read through millions of lines of third party code.

A lot of security is posturing and posing to legally cover your ass by following an almost arbitrary set of regulations. In practice, most end up running the same code as the rest of us anyway. People need to get stuff done.

redrove a day ago | parent | prev | next [-]

Pretty much all enterprises are using their own ECR/GCR/ACR.

j-scott a day ago | parent | prev | next [-]

I work on the container registry team at my current company running a custom container registry service!

hanikesn a day ago | parent | next [-]

How does this require a whole team? Unless you're working at a hyperscaler

j-scott 20 hours ago | parent | next [-]

Not a hyperscaler, but we’re multi-cloud and probably one to two steps down.

My team’s service implements a number of performance and functionality improvements on top of your typical registry to support the company’s needs.

I can’t say much more than that sadly.

hshdhdhehd a day ago | parent | prev | next [-]

Maybe they work for docker

fragmede 20 hours ago | parent | prev [-]

Please describe their system for us, including system throughput, the hardware they're on, networking constraints, and how many people are allowed to be needed to operate it.

a day ago | parent | prev [-]
[deleted]
rcbdev a day ago | parent | prev | next [-]

The Public Sector and anyone concerned with compliance under the Cyber Resilience Act should really use their own private image store. Some do, some don't.

arccy a day ago | parent | prev | next [-]

I think once your eng org > 300 people and you have a dedicated infra and security team, it's going to be on their radar to do at some point.

philipallstar a day ago | parent | prev [-]

Some people run Artifactory as a cache in front of Docker Hub etc, which allows some governance