Red Hat Quay

Enterprise container registry with geo-replication, vulnerability scanning (Clair), build triggers, and fine-grained access control — available as Quay.io SaaS or self-managed

FluffyStack tools

Add to Service Builder Add to Compare Compare with equivalents Explore OpenShift in Treemap Explore containers in Honeycomb See OpenShift regions on the World Map See containers as a network Score jurisdiction exposure

Documentation Pricing OpenShift website

Jurisdictional exposure

Provider HQ

USRaleigh, USA

Subject to CLOUD Act, FISA-702, DPF

Sovereign option

No sovereign-flagged regions in the catalogue for this service.

Full scorecard for this service →US lens detail →Sovereign cloud coverage map →

Sub-services (3)

Clair Vulnerability Scanning

Continuous CVE scanning of pushed images

Geo-replication

Active-active image replication across regions

Build Triggers

Git-webhook-driven container builds

Compliance & Certifications

This service is attested for the following frameworks. Always verify with the provider before relying on a specific compliance posture.

GDPR SOC 2 ISO 27001 HIPAA PCI DSS FedRAMP

Equivalent services on other platforms

Alibaba Container RegistryAlibaba

Managed container registry supporting Docker and Helm chart artifacts with personal and enterprise editions, geo-replication, vulnerability scanning, P2P image acceleration, and integrated signing via cosign/Notary V2

Amazon ECRAWS

Fully managed container image registry supporting public and private repositories, OCI artefacts (Helm charts, SBOMs), automatic image scanning with Inspector integration, lifecycle policies, cross-region and cross-account replication, and pull-through caches for upstream registries

Azure Container RegistryAzure

Managed private Docker and OCI container registry service with geo-replication, image scanning, signed content trust, and integration with AKS and Azure DevOps

Artifact RegistryGCP

Universal package manager for Docker, Helm, Maven, npm, Python, APT, and Yum artifacts — successor to Container Registry, with IAM-scoped repositories, regional storage, and Cloud Build integration

Huawei Software Repository for ContainersHuawei

Managed container image registry compatible with Docker V2 and OCI Image specs, with organisations and image-access control, cross-region replication, trigger-based pipelines, and automatic CVE scanning

IBM Cloud Container RegistryIBM

Private container image registry for IBM Cloud with multi-tenant namespaces, automatic vulnerability scanning via Vulnerability Advisor, image-signing with Notary, quota management, and cross-region replication

OCI Container Registry (OCIR)Oracle

Managed OCI-native container registry compatible with OCI Image Format 1.1 and Docker v2, with IAM-scoped repositories, image signing via OCI Vault keys, automatic vulnerability scanning, and replication across OCI regions

Tencent Container RegistryTencent

Managed OCI-compatible container registry with Personal and Enterprise editions, namespace-level IAM, cross-region replication, P2P image pull acceleration, Helm chart hosting, and automatic CVE scanning integrated with Cloud Workload Protection Platform

Pricing

Pricing model:subscription-or-saas