Update: Microsoft will be moving away from UserVoice sites on a product-by-product basis throughout the 2021 calendar year. We will leverage 1st party solutions for customer feedback. Learn more here.

Azure Container Registry

Have feedback for the Azure Container Registry? Submit your idea or vote up an idea submitted by others. All of the feedback you share here will be monitored and reviewed by the Azure Container Registry team. Remember that this site is only for feature suggestions and ideas. If you have technical questions or issues, please submit them to our GitHub issues page or on StackOverflow

  1. Add a Powershell cmdlet to get ACR image list and their sizes

    Since ACR is billed by size of images pushed, I'd like a way to programmatically check the capacity I'm using at any time

    Give us some cmdlet like

    Get-AzContainerRegistryImages resulting in array of acrimage details (created, last updated, ... and MOST IMPORTANT SIZE TAKEN IN ACR)

    so that I can do my computation and filtering with where-object / select-object

    az cli has some commands
    az acr repository list and show
    but not giving size and then I don't like it beacuse it's not programmable like powershell

    Thanks

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  2. Tool gated import workflows

    As described here in this OCI Blog, Consuming Public Content (https://opencontainers.org/posts/blog/2020-10-30-consuming-public-content/), a gated import workflow enables a host of reliability, stability and security scenarios by importing and maintaining public content in your private registry.

    Once imported, you can use:
    - Customer Managed Keys: https://aka.ms/acr/cmk
    - Private Link (VNet): https://aka.ms/acr/privatelink
    - Geo-replication: https://aka.ms/acr/geo-replication
    - Audit logs: https://aka.ms/acr/audit-logs
    - Dedicated data endpoints: http://aka.ms/acr/dedicated-data-endpoints
    - ...

    We have provided the raw capabilities through the az cli: https://aka.ms/acr/tasks/gated-import

    Voting here is for tooling the gated-import workflow through an az-cli, vs-code or Azure portal.

    Comments are very helpful here

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  3. Folder based filtering of Github triggers

    Triggers setup that specify a folder in a Github repo should only trigger the ACR task on changes to files within the specified folder.

    Is it possible to only trigger on a push for the contents of the folder? Otherwise it looks like we can only have one task per repo to avoid triggerring for all pushed conents.

    In the example below I'd expect that a Task run only to occur when the contents of "Folder" is changed.

    az acr task create -t hello-world:{{.Run.ID}} -n hello-world -r MyRegistry -c https://msazure.visualstudio.com/DefaultCollection/Project/_git/Repo#Branch:Folder -f Dockerfile --git-access-token <Personal Access Token> --platform linux/arm/v7

    3 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  4. Filter to purge images not used/pulled in last n days.

    The option of purging older than n days does not satisfy our needs. We have many images as result of Build process but not all end up being used.

    3 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  5. Add Windows image compatibility in scanning for vulnerabilities

    For now, only Linux images are scanned for vulnerabilities when pushed in ACR. The Windows images are not scanned. It would be a great improvement to have such capability.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  6. ACR - Key rotation with notary cli fails with authorization error (401)

    In case of key compromise, DCT supports key rotation via notary cli:
    $ notary -s https://notary.docker.io -d ~/.docker/trust key rotate prash1990/helloworld targets
    Enter passphrase for new targets key with ID 3cc535f:
    Repeat passphrase for new targets key with ID 3cc535f:
    Enter username: prash1990
    Enter password:
    Enter passphrase for root key with ID e8f29fb:
    Successfully rotated targets key for repository prash1990/helloworld

    But when similar opration is not supported by ACR:
    $ notary -s https://pradockerdemo.azurecr.io -d ~/.docker/trust key rotate pradockerdemo.azurecr.io/helloworld targets
    Enter passphrase for new targets key with ID dfa5606:
    Repeat passphrase for new targets key with ID dfa5606:
    Enter username: admin …

    3 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  7. with safari

    pipe embed

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  8. Allow token scope to be at the namespace level

    Please allow a token scope to be configured at the namespace level as opposed to the repository level.

    5 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  9. ACR - Creation wizard should not fail when using CMK from Keyvault with firewall enabled

    During the creating wizard for ACR the deployment will fail if the encryption key specified exists in a keyvault which has the network firewall enabled.
    To complete the deployment you must initially use a key from a keyvault with no firewall enabled. Enable a system identity then grant this access to the keyvault with the firewall enabled. Then change the key from the temporary key vault to the keyvault with network firewall as a workaround.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  10. Show Dockerfile LABELs in ACR

    Was asked to elevate this idea here from https://github.com/Azure/acr/issues/247

    Put simply, it would be really nice if the ACR showed the LABEL data that was set in the Dockerfiles.

    33 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  11. Docker Push Fails when ACR name is in Capital

    Azure Container Registry fails to push a docker image when uppercase is used. All the characters are to be lowercase, add support for the names to include uppercase characters.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  12. Allow to configure repositories allowing an anonymous access

    We want to use ACR to host our corporate images and also public images from gcr and Docker hub.
    Some Helm charts allow to change URL of image repository to install but not to provide credentials to authenticate to the alternate repository. So it will be nice if some repositories of our ACR could be defined to authorize an anonymous access (by default repositories stay private).
    It would be great if anonymous repositories could be defined using some rules scoping several repositories : for example patterns like library/**.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  13. Support GitHub Enterprise for ACR Task triggers

    Currently Azure Container Registry does not support commit or pull request triggers in GitHub Enterprise repositories.

    I have several clients that use GitHub Enterprise that cannot make use of the ACR Task commit or PR triggers. Please add the support for GitHub Enterprise.

    3 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  14. Security Center show alerts and recommendations on deleted ACR resources

    Security Centre continues to show alerts and recommendations for Azure Container Registry resources with identified vulnerabilities even after the resources are deleted. Security Centre should not be showing alerts for the ACR resources that are deleted.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  15. 1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  16. Allow access at repository level in generic/masked manner.

    New feature https://feedback.azure.com/forums/903958-azure-container-registry/suggestions/31655977-configure-permissions-at-a-repository-level is wonderful. But access is given in a very detailed manner.

    Please add a generic/masked manner as


    • image -> registry-url/group-repo/image:tag

    • access level -> registry-url/group-repo/*

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  17. Support bitbucket repositories

    Hi,

    We use bitbucket and whenever we try to submit a task with our bitbucket repo (https://username@bitbucket.org/org/repo.git) it says Invalid repository URL.

    Can you support bitbucket as well?

    9 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  18. Need built-in role for `az acr build`

    Need a ACR's remote build capability role that is similar to Contributor role but without Delete Registry and Manage Policies permissions.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  19. Private Helm repository has no interface in portal

    While using ACR for our private helm repository I realized there is no interface in the portal for working with/ viewing helm charts. It would be nice if I could at least see the results of helm search {acrname} in the portal somehow.

    30 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Flag idea as inappropriate…  ·  Admin →
  20. Allow push from Azure DevOps Hosted agents in locked down environments

    We have a locked down environment where we are planning to use Azure DevOps pipelines for application deployment and it would be very useful if in some way It was possible to identify DevOps hosted pipeline agent(s) as Azure Service when restricting network access to an ACR instance.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Azure Container Registry

Categories

Feedback and Knowledge Base