Google Artifact Registry Brutally Automatic Garbage Eradicator (Garbage) deletes unused images from Google Artifact Registry (GAR).
Garbage periodically cross-references images in GAR with resources in Kubernetes and notes which images are in use. After a certain grace period, images no longer in use are deleted.
- Query the Google Artifact Registry (GAR) API to fetch all image metadata in a given project
- Store the image metadata (id, name, tag, shasum) in a database
- Query all Kubernetes clusters through nais/api to fetch all image references
- From
ReplicaSet,Job,CronJob,StatefulSet,DaemonSet.
- From
- Generate deletion candidates using the garbage collection approach (collect and sweep):
- Initialize empty hashmap with all images from GAR. Set
refcountto 0. - Cross-reference images from Kubernetes with GAR images. Increment
refcountby 1 for each match. - For each image with
refcount>0, recursively find parent references and incrementrefcountby 1 for each match. - All images with
refcount>0are marked as seen in the database with a timestamp.
- Initialize empty hashmap with all images from GAR. Set
- Delete images that haven't been seen recently (within a given threshold, e.g. 30 days)