Artifact Registry

Google Artifact Registry is the next-generation managed repository service for storing and managing build artifacts and dependencies. It is the recommended successor to Container Registry, supporting multiple artifact formats in one place.

Supported Formats:

1. Docker - Store and manage Docker container images.

2. Maven - Java artifact repository for Maven and Gradle builds.

3. npm - Node.js package registry for npm and Yarn.

4. PyPI - Python package index for pip.

5. Helm - Kubernetes Helm chart repository.

6. APT/YUM - Linux package repositories for Debian and RPM packages.

The below example shows how to create repositories and push artifacts to Artifact Registry.

It gives the following output,

Created repository [my-docker-repo].
Created repository [my-maven-repo].

gcloud artifacts docker images list us-central1-docker.pkg.dev/my-project/my-docker-repo
IMAGE                                                          DIGEST        TAGS   CREATE_TIME
us-central1-docker.pkg.dev/my-project/my-docker-repo/my-app  sha256:abc123  v1.0   2024-01-15

Key Advantages over Container Registry:

Multi-format - One service for Docker, Maven, npm, PyPI, Helm, and OS packages.

Regional repositories - Store artifacts in specific GCP regions for compliance and low latency.

CMEK support - Encrypt repositories with Customer-Managed Encryption Keys for enhanced security.

VPC Service Controls - Integrate with VPC-SC perimeters to prevent data exfiltration.