Erich Blume
278f231563
- Remove aliases from all zk cards to prevent them from capturing wiki-links - Convert all wiki-links from [[filename|Title]] to [[Title]] format - Replace doc-filenames task with doc-titles for duplicate detection - Update pre-commit hook to use doc-titles Wiki-links now resolve to reference docs by their frontmatter title, which is more readable and maintainable than filename-based links. Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
1 KiB
1 KiB
| title | tags | ||
|---|---|---|---|
| Zot |
|
Zot
OCI-native container registry providing pull-through cache and private image storage.
Quick Reference
| Property | Value |
|---|---|
| URL | https://registry.ops.eblu.me |
| Local Port | 5050 |
| Data | ~/zot |
| Config | ~/.config/zot/config.json |
| LaunchAgent | mcquack |
Namespace Convention
| Path | Source |
|---|---|
registry.ops.eblu.me/docker.io/* |
Cached from Docker Hub |
registry.ops.eblu.me/ghcr.io/* |
Cached from GHCR |
registry.ops.eblu.me/quay.io/* |
Cached from Quay |
registry.ops.eblu.me/blumeops/* |
Private images |
Pull-Through Cache
When Kubernetes Cluster pulls an image, containerd checks zot first. If cached, returns immediately. If not, zot fetches from upstream, caches it, then returns.
Security Model
Network access only (no authentication). Defense is the Tailscale ACL boundary.
Related
- Forgejo - Container build CI
- Kubernetes Cluster - Registry consumer