FEATURES
OCI-Compliant
Full OCI Distribution Specification v1.1 support. Works with Docker, Podman, containerd, and any OCI-compatible tooling.
Pull-Through Cache
Mirror Docker Hub, ghcr.io, or any registry. Intelligent caching with immutable tag optimization.
CEL Policies
Fine-grained access control using Common Expression Language. Define who can push, pull, or delete.
OIDC Authentication
Native support for GitHub Actions, Google, Okta, and any OIDC provider. Passwordless CI/CD.
Retention Policies
Automated cleanup with flexible rules. Keep latest, semver tags, or top-k most used images.
Web UI
Browse repositories with clear manifest hierarchy, ORAS artifact downloads, and automatic detection of signatures, SBOMs, and SLSA attestations.
QUICK START
# Download
curl -LO https://github.com/project-angos/angos/releases/latest/download/angos-linux-amd64
chmod +x angos-linux-amd64
# Configure
cat > config.toml << EOF
[server]
bind_address = "0.0.0.0"
port = 5000
[blob_store.fs]
root_dir = "./data"
[global.access_policy]
default_allow = true
[repository."myrepo"]
EOF
# Run
./angos-linux-amd64 -c config.toml server