Enterprise Registry Security
Vulnerability scanning for container images
Binary analysis for detecting malware
Policy-based image promotion across registries
Image signing and verification with Notary
CVE database integration for vulnerability detection
Configurable vulnerability thresholds for deployment blocking
Artifact Management
Support for OCI artifacts (container images, Helm charts, OPAs)
Immutable tags for enhanced security
Image retention policies for lifecycle management
Garbage collection for unused artifacts
Tag replication across registry instances
Metadata management for artifacts
Enterprise Access Control
Role-based access control (RBAC)
LDAP/AD integration for authentication
OIDC support for single sign-on
Project-based resource isolation
Fine-grained permissions per project
Robot accounts for automation
Multi-Tenancy Architecture
Project-based isolation of resources
Quotas for storage and artifacts
User self-service project creation
Custom project metadata
Resource usage monitoring
Activity auditing per project
Replication and Distribution
Cross-registry replication (pull and push modes)
Scheduled and event-driven replication
Replication filtering by tags and labels
Cross-cloud and cross-datacenter distribution
P2P replication for improved efficiency
Registry proxying for upstream caching
Kubernetes Integration
Native integration with Kubernetes deployments
Harbor Operator for Kubernetes
Helm chart repository capabilities
Container Network Interface (CNI) compatible
Integration with Kubernetes admission controllers
Seamless deployment with common Kubernetes tools
Observability and Audit
Comprehensive audit logging
Operation tracing for troubleshooting
Prometheus metrics integration
Customizable webhook notifications
System health monitoring
Activity logs with detailed user actions
Enterprise Scalability
Horizontal scaling for high availability
Redis caching for enhanced performance
External storage support (S3, Swift, Azure)
Database high availability options
Load balancing for distributed deployments
Multi-instance architecture
Developer Experience
Intuitive web interface for management
RESTful API for automation
Swagger documentation for API exploration
CLI tools for command-line operations
Label-based organization of artifacts
Search capabilities across projects
Cloud Native Architecture
Designed for containerized environments
Kubernetes-native deployment options
Microservices-based components
Cloud-friendly storage integrations
Stateless design for resiliency
CNCF graduated project with community governance