AWS SOCI Index Builder

This AWS solution automates the generation of Seekable OCI (SOCI) index artifacts and stores them in Amazon ECR. It provides an easy way for customers to try SOCI technology to lazily load container images.

Overview

The AWS SOCI Index Builder solution consists of the following components:

EventBridge Rule: Triggers when an image is pushed to ECR
ECR Image Action Event Filtering Lambda: Filters ECR image push events based on repository and tag patterns
SOCI Index Generator Lambda: Generates SOCI index artifacts for the image and pushes them back to ECR

SOCI Index Versions

The solution supports two versions of SOCI index:

V1: The original SOCI index format based on the OCI referrers API
V2: An improved format that attaches the SOCI index to an image directly

Configuration Parameters

SociRepositoryImageTagFilters

Comma-separated list of SOCI repository image tag filters. Each filter is a repository name followed by a colon, ":" and followed by a tag. Both repository names and tags may contain wildcards denoted by an asterisk, "*".

Examples:

prod*:latest: Matches all images tagged with "latest" that are pushed to any repositories that start with "prod"
dev:*: Matches all images pushed to the "dev" repository
*:*: Matches all images pushed to all repositories in your private registry

SociIndexVersion

The version of SOCI index to generate:

V1: Original SOCI Index format
V2: Latest SOCI Index format (Recommended)

Taskcat Configuration

The solution uses taskcat for testing CloudFormation deployments across multiple regions. The .taskcat.yml file configurable options:

Regions: List of AWS regions where you want to deploy the stack
SociRepositoryImageTagFilters: Filter pattern for ECR repositories and image tags

Example configuration:

regions:
  - us-east-1
  - us-west-2
  - eu-west-1

parameters:
  SociRepositoryImageTagFilters: "*:*"

How It Works

When an image is pushed to ECR, an EventBridge rule triggers the ECR Image Action Event Filtering Lambda
The Lambda checks if the image matches the configured filters
If there's a match, it invokes the SOCI Index Generator Lambda
The SOCI Index Generator Lambda:
- Pulls the image from ECR
- Generates SOCI index artifacts using the specified version (V1 or V2)
- Pushes the SOCI index artifacts back to ECR

Name		Name	Last commit message	Last commit date
Latest commit History 89 Commits
.github		.github
functions/source		functions/source
templates		templates
.gitignore		.gitignore
.metadata		.metadata
.taskcat.yml		.taskcat.yml
CODEOWNERS		CODEOWNERS
CONTRIBUTING.md		CONTRIBUTING.md
LICENSE		LICENSE
NOTICE.txt		NOTICE.txt
README.md		README.md
THIRD_PARTY_LICENSES		THIRD_PARTY_LICENSES
dependency-licenses.sh		dependency-licenses.sh
highpoint.yml		highpoint.yml

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Repository files navigation

AWS SOCI Index Builder

Overview

SOCI Index Versions

Configuration Parameters

SociRepositoryImageTagFilters

SociIndexVersion

Taskcat Configuration

How It Works

About

Uh oh!

Releases

Packages

Uh oh!

Contributors 18

Uh oh!

Languages

License

awslabs/cfn-ecr-aws-soci-index-builder

Folders and files

Latest commit

History

Repository files navigation

AWS SOCI Index Builder

Overview

SOCI Index Versions

Configuration Parameters

SociRepositoryImageTagFilters

SociIndexVersion

Taskcat Configuration

How It Works

About

Resources

License

Code of conduct

Security policy

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Uh oh!

Contributors 18

Uh oh!

Languages

Packages