artifact-registry
Safeguard articles tagged "artifact-registry" — guides, analysis, and best practices for software supply chain and application security.
4 articles
Automating Security Controls on Google Cloud
Binary Authorization can block every unsigned container from reaching GKE or Cloud Run — but only if your pipeline is wired to sign images the moment they pass scanning.
GCP Artifact Analysis API for Vulnerability Triage
GCP's Artifact Analysis API is the most direct way to get scan results into your triage tooling. Here is how to use it without drowning your team.
GCP Artifact Registry Vulnerability Scanning: Integrating the Findings
Artifact Analysis on Artifact Registry produces a steady stream of findings. The discipline is in what you do with them. We map the workflows that actually reduce risk.
Securing GCP Artifact Registry: A Complete Guide
How to configure GCP Artifact Registry for security-first container and package management, from IAM policies to vulnerability scanning.