Skip to content

Use container image quarantine#

Security · Container Registry · Azure.ACR.Quarantine

Enable container image quarantine, scan, and mark images as verified.

Description#

Image quarantine is a configurable option for Azure Container Registry (ACR). When enabled, images pushed to the container registry are not available by default. Each image must be verified and marked as Passed before it is available to pull.

To verify container images, integrate with an external security tool that supports this feature.

Recommendation#

Consider configuring a security tool to implement the image quarantine pattern. Enable image quarantine on the container registry to ensure each image is verified before use.

Notes#

Image quarantine for Azure Container Registry is currently in preview.


Last update: 2021-09-24