10 comments

[ 2.9 ms ] story [ 34.6 ms ] thread
Great tool, used it before. Simple and straightforward. I'd like to use it for internal image repos, upcoming feature?
I'm not submitting my running cluster images to a rando website, sorry.
ya, this doesn't install anything in the cluster, you run the command on your cluster, sanitize the private image info out of it, then paste in the public image names & SHAs
(comment deleted)
Still no.
No-one is forcing you to. I hope you have implemented a similar mechanism to check your images.
Can you explain your rationale here further?
That's a great idea. We've tried to keep this current version of ClusterScope as transparent as possible, and not require any secrets. It works by using the http registry api to get a list of tags, and then sorting them to determine how current your image is. To support private registries, we'd want to run this on your laptop or cluster to avoid having to collect any registry secrets. That's definitely an option, we could make this run locally so that you wouldn't have to share credentials with us. (I contributed to the ClusterScope tool)
(comment deleted)
Nice tool. I get it's mostly a way to promote the company, but I could see my company paying a small fee for an API endpoint (so we could just pipe the command to curl and get a formatted report).

Small bug: If the image is not in the official registry and doesn't have a version tag, it's reported as "Up to date" (try just inserting a random string).