Bioshadock provides a private Docker container registry. It is based on Docker registry. However base registry from Docker does not provide any authentication nor access control.
Our server works with the Docker registry to add such features. Authenticated users can push containers to private or public repositories and share their access with other users. It also adds meta-data information (description, tags, etc.) and search capabilities in the registry.
It also adds automatic builds based on a Dockerfile or a git repository
Anonymous users can pull public containers
Containers and registry focus on the capacity to make experiments reproductible.
A container contains all the software pre-installed and make it easy to use and share a software without the installation burden and constraints. A tagged container will also make possible to re-use a specific version of a tool.
However, many publicly available containers are build and provided without documentation or a way to recreate them. Bioshadock focuses on reproductible containers ie. based on a Dockerfile to rebuild containers on demand and to clearly show what is installed in the container, and how.
The team in charge of the registry will make sure that provided containers contain such a Dockerfile and all associated files (possibly in a git repository). Indeed many containers are provided with a Dockerfile using files not available to the end-user.
When a container is build from a Dockerfile (possibly a git repository), the owner can add some tests to be done against the container after it is built. This prevents building a container.... that does not work!
For all automatic builds, we scan the containers against known vulnerabilities using Clair, and regular scans update their status. Developper, but also the end user, can see what are the known issues within the container and decide if container is a risk or not. No more container pulls without knowing if a container is secure or not for your computer or infrastructure....
Feel free to email us to provide some feedback on our containers, request new tools, or support.