composesync makes it simple to synchronize all the images used in a Docker Compose file to one or more destination Docker registries. All interaction with docker registries is done by regsync.
Using Docker Compose files as manifests of what to copy has the advantage of tools such as Renovate supporting update maintenance out of the box.
-
Populate a Docker Compose yaml file with services that reference images.
You can specify a name for the image to be synced to. By default, the target name will be the same as the source with the registry hostname removed.
services: service-name-does-not-matter: image: "gcr.io/distroless/python3-debian11:nonroot@sha256:cc7021d6bd5aae9cdd976ae4b185cc59d5792b18aa5e18345dbf9b34d6b3f5a0" x-composesync-name: "python3"
-
If any registry authentication configuration is required, create a regsync configuration file and specify it with the
--regsync-config=flag. Thecredssection will be copied from this file.creds: - registry: gcr.io repoAuth: true credHelper: docker-credential-gcr - registry: us-west1-docker.pkg.dev repoAuth: true credHelper: docker-credential-gcr
-
Run composesync as a container in a CICD workflow.
For local testing, you can mount in your Google Cloud configuration as a read-only volume to allow
docker-credential-gcrto find your "application default credentials" populated viagcloud auth login --update-adc.docker run -it --rm \ --volume $HOME/.config/gcloud:/home/appuser/.config/gcloud:ro \ --volume `pwd`/example:/example:ro \ ghcr.io/retailnext/composesync \ --regsync-config /example/regsync.yaml \ /example/compose.yaml \ us-west1-docker.pkg.dev/your-project/your-destination-artifact-registry
We use this internally. It may receive some publicly-visible maintenance, but it is not a priority for us. We may make breaking changes without warning.
Contributions considered, but be aware that this is mostly just something we needed. It's public because there's no reason anyone else should have to waste an afternoon (or more) building something similar, and we think the approach is good enough that others would benefit from adopting.
This project is licensed under the Apache License, Version 2.0.
Please include a Signed-off-by in all commits, per
Developer Certificate of Origin version 1.1.