A container registry that uses the AT Protocol for manifest storage and S3 for blob storage.
atcr.io
evan.jarrett.net
docker
container
atproto
go
1FROM docker.io/golang:1.25.2-trixie AS builder
2
3RUN apt-get update && \
4 apt-get install -y --no-install-recommends sqlite3 libsqlite3-dev && \
5 rm -rf /var/lib/apt/lists/*
6
7WORKDIR /build
8
9COPY go.mod go.sum ./
10RUN go mod download
11
12COPY . .
13
14RUN CGO_ENABLED=1 go build \
15 -ldflags="-s -w -linkmode external -extldflags '-static'" \
16 -tags sqlite_omit_load_extension \
17 -trimpath \
18 -o atcr-hold ./cmd/hold
19
20# ==========================================
21# Stage 2: Minimal FROM scratch runtime
22# ==========================================
23FROM scratch
24
25# Copy CA certificates for HTTPS (PDS connections)
26COPY --from=builder /etc/ssl/certs/ca-certificates.crt /etc/ssl/certs/
27# Copy timezone data for timestamp formatting
28COPY --from=builder /usr/share/zoneinfo /usr/share/zoneinfo
29# Copy optimized binary (SQLite embedded)
30COPY --from=builder /build/atcr-hold /atcr-hold
31
32# Expose default port
33EXPOSE 8080
34
35# OCI image annotations
36LABEL org.opencontainers.image.title="ATCR Hold Service" \
37 org.opencontainers.image.description="ATCR Hold Service - Bring Your Own Storage component for ATCR" \
38 org.opencontainers.image.authors="ATCR Contributors" \
39 org.opencontainers.image.source="https://tangled.org/@evan.jarrett.net/at-container-registry" \
40 org.opencontainers.image.documentation="https://tangled.org/@evan.jarrett.net/at-container-registry" \
41 org.opencontainers.image.licenses="MIT" \
42 org.opencontainers.image.version="0.1.0" \
43 io.atcr.icon="https://imgs.blue/evan.jarrett.net/1TpTOdtS60GdJWBYEqtK22y688jajbQ9a5kbYRFtwuqrkBAE" \
44 io.atcr.readme="https://tangled.org/@evan.jarrett.net/at-container-registry/raw/main/docs/hold.md"
45
46ENTRYPOINT ["/atcr-hold"]