README
¶
go-imageinspect
Go library for accessing container images with their associated objects and typed metadata.
Experimental 🧪
This repository is considered EXPERIMENTAL and under active development until further notice. It is subject to non-backward compatible changes or removal in any future version.
Rationale
Image authors are increasingly distributing associated metadata and artifacts alongside their images, such as OCI annotations, SLSA Provenance, SBOMs, signatures, and more. The exact method of storage can differ across the ecosystem, making this information difficult to consume.
This library provides a unified interface for accessing this metadata and ensuring that it can be consumed consistently.
Support
This library supports pulling metadata from the following formats:
Usage
go-imageinspect is intended to be used as a library. However, for development purposes, a simple command line tool is provided for prototyping:
$ docker buildx bake bin
$ ./bin/imageinspect moby/buildkit:latest
Contributing
Want to contribute? Awesome! You can find information about contributing to this project in the CONTRIBUTING.md
Documentation
¶
Index ¶
Constants ¶
const ( AnnotationReference = "vnd.docker.reference.digest" AnnotationImageTitle = "org.opencontainers.image.title" )
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type Image ¶
type Image struct {
Title string
Platform string
Author string
Vendor string
URL string
Source string
Revision string
Documentation string
ShortDescription string
Description string
License string
Size int64
Signatures []Signature
SBOM *SBOM `json:",omitempty"`
Provenance *Provenance `json:",omitempty"`
}
type PackageCreator ¶
type Provenance ¶
type Result ¶
type Result struct {
Digest digest.Digest
ResultType ResultType
Platforms []string
Images map[string]Image
}
type ResultType ¶
type ResultType string
const ( Manifest ResultType = "manifest" Index ResultType = "index" Unknown ResultType = "unknown" )
Source Files
Directories