2025-03-30 –, The Waterloo
This session explores the extended capabilities of OCI registries beyond traditional container images distribution, focusing on migrating a wide range of artifacts (SBOMs, Helm charts, GitOps, AI/ML models, WASM modules) to RegistryOps practices.
Leveraging OCI registries to distribute new type or artifacts presents a new approach to managing deployments. The discussion will cover the key features and capabilities of tools such as FluxCD, ORAS, Notary and Kubewarden, highlighting their role in enhancing the use of OCI registries.
Elaborating on practical use cases, such as deploying signed artifacts in secure environments, delivering signed GitOps artifacts, I will showcase the versatility of OCI registries and their central role in the secure supply chain.
Traditionally, container registries have been primarily used to distribute container images. However, the potential extends far beyond this conventional use. This extended functionality needs to be better known.
This talk will expand practitioners’ understanding of OCI registries beyond container images distribution, showcasing their role in storing signed artifacts to enhance supply chain security. It will demonstrate how using OCI registries for diverse artifact types can streamline workflows, consolidate management efforts, and optimise resources in cloud-native environments.
By integrating CNCF projects such as FluxCD, ORAS, Notary and Kubewarden with OCI registries, the talk highlights the potential for a more cohesive ecosystem and encourages innovation through approaches that could be called RegistryOps. It also promotes the adoption of OCI standards, ensuring interoperability and fostering a stronger, more efficient cloud-native landscape.
As an advocate for open-source software, I promote innovation and collaboration. With expertise in cloud-native technologies, I help teams overcome challenges, identify improvements, and develop strategies. Committed to continuous learning, I foster collaboration both with external customers and internal teams. As a Cloud Native Ambassador, I inspire others to join the movement and support the growth of open-source software.