You are viewing documentation for version 3 of the AWS SDK for Ruby. Version 2 documentation can be found here.

Class: Aws::ECR::Client

Inherits:

Seahorse::Client::Base

• Object
• Seahorse::Client::Base
• Aws::ECR::Client

Includes:

ClientStubs

Defined in:

gems/aws-sdk-ecr/lib/aws-sdk-ecr/client.rb

Instance Attribute Summary

Attributes inherited from Seahorse::Client::Base

#config, #handlers

API Operations

• #batch_check_layer_availability(params = {}) ⇒ Types::BatchCheckLayerAvailabilityResponse

  Check the availability of multiple image layers in a specified registry and repository.

• #batch_delete_image(params = {}) ⇒ Types::BatchDeleteImageResponse

  Deletes a list of specified images within a specified repository.

• #batch_get_image(params = {}) ⇒ Types::BatchGetImageResponse

  Gets detailed information for specified images within a specified repository.

• #complete_layer_upload(params = {}) ⇒ Types::CompleteLayerUploadResponse

  Informs Amazon ECR that the image layer upload has completed for a specified registry, repository name, and upload ID.

• #create_repository(params = {}) ⇒ Types::CreateRepositoryResponse

  Creates an Amazon Elastic Container Registry (Amazon ECR) repository, where users can push and pull Docker images.

• #delete_lifecycle_policy(params = {}) ⇒ Types::DeleteLifecyclePolicyResponse

  Deletes the specified lifecycle policy.

• #delete_repository(params = {}) ⇒ Types::DeleteRepositoryResponse

  Deletes an existing image repository.

• #delete_repository_policy(params = {}) ⇒ Types::DeleteRepositoryPolicyResponse

  Deletes the repository policy from a specified repository.

• #describe_image_scan_findings(params = {}) ⇒ Types::DescribeImageScanFindingsResponse

  Describes the image scan findings for the specified image.

• #describe_images(params = {}) ⇒ Types::DescribeImagesResponse

  Returns metadata about the images in a repository, including image size, image tags, and creation date.

• #describe_repositories(params = {}) ⇒ Types::DescribeRepositoriesResponse

  Describes image repositories in a registry.

• #get_authorization_token(params = {}) ⇒ Types::GetAuthorizationTokenResponse

  Retrieves a token that is valid for a specified registry for 12 hours.

• #get_download_url_for_layer(params = {}) ⇒ Types::GetDownloadUrlForLayerResponse

  Retrieves the pre-signed Amazon S3 download URL corresponding to an image layer.

• #get_lifecycle_policy(params = {}) ⇒ Types::GetLifecyclePolicyResponse

  Retrieves the specified lifecycle policy.

• #get_lifecycle_policy_preview(params = {}) ⇒ Types::GetLifecyclePolicyPreviewResponse

  Retrieves the results of the specified lifecycle policy preview request.

• #get_repository_policy(params = {}) ⇒ Types::GetRepositoryPolicyResponse

  Retrieves the repository policy for a specified repository.

• #initiate_layer_upload(params = {}) ⇒ Types::InitiateLayerUploadResponse

  Notify Amazon ECR that you intend to upload an image layer.

• #list_images(params = {}) ⇒ Types::ListImagesResponse

  Lists all the image IDs for a given repository.

• #list_tags_for_resource(params = {}) ⇒ Types::ListTagsForResourceResponse

  List the tags for an Amazon ECR resource.

• #put_image(params = {}) ⇒ Types::PutImageResponse

  Creates or updates the image manifest and tags associated with an image.

• #put_image_scanning_configuration(params = {}) ⇒ Types::PutImageScanningConfigurationResponse

  Updates the image scanning configuration for a repository.

• #put_image_tag_mutability(params = {}) ⇒ Types::PutImageTagMutabilityResponse

  Updates the image tag mutability settings for a repository.

• #put_lifecycle_policy(params = {}) ⇒ Types::PutLifecyclePolicyResponse

  Creates or updates a lifecycle policy.

• #set_repository_policy(params = {}) ⇒ Types::SetRepositoryPolicyResponse

  Applies a repository policy on a specified repository to control access permissions.

• #start_image_scan(params = {}) ⇒ Types::StartImageScanResponse

  Starts an image vulnerability scan.

• #start_lifecycle_policy_preview(params = {}) ⇒ Types::StartLifecyclePolicyPreviewResponse

  Starts a preview of the specified lifecycle policy.

• #tag_resource(params = {}) ⇒ Struct

  Adds specified tags to a resource with the specified ARN.

• #untag_resource(params = {}) ⇒ Struct

  Deletes specified tags from a resource.

• #upload_layer_part(params = {}) ⇒ Types::UploadLayerPartResponse

  Uploads an image layer part to Amazon ECR.

Instance Method Summary

• #initialize(options) ⇒ Client constructor

  A new instance of Client.

Methods included from ClientStubs

#api_requests, #stub_data, #stub_responses

Methods inherited from Seahorse::Client::Base

add_plugin, api, clear_plugins, define, new, #operation_names, plugins, remove_plugin, set_api, set_plugins

Methods included from Seahorse::Client::HandlerBuilder

#handle, #handle_request, #handle_response

Constructor Details

#initialize(options) ⇒ Client

Returns a new instance of Client

Parameters:

• options (Hash)

Options Hash (options):

• :credentials (required, Aws::CredentialProvider) —

  Your AWS credentials. This can be an instance of any one of the following classes:

  • Aws::Credentials - Used for configuring static, non-refreshing credentials.

  • Aws::InstanceProfileCredentials - Used for loading credentials from an EC2 IMDS on an EC2 instance.

  • Aws::SharedCredentials - Used for loading credentials from a shared file, such as ~/.aws/config.

  • Aws::AssumeRoleCredentials - Used when you need to assume a role.

  When :credentials are not configured directly, the following locations will be searched for credentials:

  • Aws.config[:credentials]
  • The :access_key_id, :secret_access_key, and :session_token options.
  • ENV['AWS_ACCESS_KEY_ID'], ENV['AWS_SECRET_ACCESS_KEY']
  • ~/.aws/credentials
  • ~/.aws/config
  • EC2 IMDS instance profile - When used by default, the timeouts are very aggressive. Construct and pass an instance of Aws::InstanceProfileCredentails to enable retries and extended timeouts.
• :region (required, String) —

  The AWS region to connect to. The configured :region is used to determine the service :endpoint. When not passed, a default :region is search for in the following locations:

  • Aws.config[:region]
  • ENV['AWS_REGION']
  • ENV['AMAZON_REGION']
  • ENV['AWS_DEFAULT_REGION']
  • ~/.aws/credentials
  • ~/.aws/config
• :access_key_id (String)
• :active_endpoint_cache (Boolean) — default: false —

  When set to true, a thread polling for endpoints will be running in the background every 60 secs (default). Defaults to false.

• :client_side_monitoring (Boolean) — default: false —

  When true, client-side metrics will be collected for all API requests from this client.

• :client_side_monitoring_client_id (String) — default: "" —

  Allows you to provide an identifier for this client which will be attached to all generated client side metrics. Defaults to an empty string.

• :client_side_monitoring_host (String) — default: "127.0.0.1" —

  Allows you to specify the DNS hostname or IPv4 or IPv6 address that the client side monitoring agent is running on, where client metrics will be published via UDP.

• :client_side_monitoring_port (Integer) — default: 31000 —

  Required for publishing client metrics. The port that the client side monitoring agent is running on, where client metrics will be published via UDP.

• :client_side_monitoring_publisher (Aws::ClientSideMonitoring::Publisher) — default: Aws::ClientSideMonitoring::Publisher —

  Allows you to provide a custom client-side monitoring publisher class. By default, will use the Client Side Monitoring Agent Publisher.

• :convert_params (Boolean) — default: true —

  When true, an attempt is made to coerce request parameters into the required types.

• :disable_host_prefix_injection (Boolean) — default: false —

  Set to true to disable SDK automatically adding host prefix to default service endpoint when available.

• :endpoint (String) —

  The client endpoint is normally constructed from the :region option. You should only configure an :endpoint when connecting to test endpoints. This should be avalid HTTP(S) URI.

• :endpoint_cache_max_entries (Integer) — default: 1000 —

  Used for the maximum size limit of the LRU cache storing endpoints data for endpoint discovery enabled operations. Defaults to 1000.

• :endpoint_cache_max_threads (Integer) — default: 10 —

  Used for the maximum threads in use for polling endpoints to be cached, defaults to 10.

• :endpoint_cache_poll_interval (Integer) — default: 60 —

  When :endpoint_discovery and :active_endpoint_cache is enabled, Use this option to config the time interval in seconds for making requests fetching endpoints information. Defaults to 60 sec.

• :endpoint_discovery (Boolean) — default: false —

  When set to true, endpoint discovery will be enabled for operations when available. Defaults to false.

• :log_formatter (Aws::Log::Formatter) — default: Aws::Log::Formatter.default —

  The log formatter.

• :log_level (Symbol) — default: :info —

  The log level to send messages to the :logger at.

• :logger (Logger) —

  The Logger instance to send log messages to. If this option is not set, logging will be disabled.

• :profile (String) — default: "default" —

  Used when loading credentials from the shared credentials file at HOME/.aws/credentials. When not specified, 'default' is used.

• :retry_base_delay (Float) — default: 0.3 —

  The base delay in seconds used by the default backoff function.

• :retry_jitter (Symbol) — default: :none —

  A delay randomiser function used by the default backoff function. Some predefined functions can be referenced by name - :none, :equal, :full, otherwise a Proc that takes and returns a number.

  @see https://www.awsarchitectureblog.com/2015/03/backoff.html

• :retry_limit (Integer) — default: 3 —

  The maximum number of times to retry failed requests. Only ~ 500 level server errors and certain ~ 400 level client errors are retried. Generally, these are throttling errors, data checksum errors, networking errors, timeout errors and auth errors from expired credentials.

• :retry_max_delay (Integer) — default: 0 —

  The maximum number of seconds to delay between retries (0 for no limit) used by the default backoff function.

• :secret_access_key (String)
• :session_token (String)
• :simple_json (Boolean) — default: false —

  Disables request parameter conversion, validation, and formatting. Also disable response data type conversions. This option is useful when you want to ensure the highest level of performance by avoiding overhead of walking request parameters and response data structures.

  When :simple_json is enabled, the request parameters hash must be formatted exactly as the DynamoDB API expects.

• :stub_responses (Boolean) — default: false —

  Causes the client to return stubbed responses. By default fake responses are generated and returned. You can specify the response data to return or errors to raise by calling ClientStubs#stub_responses. See ClientStubs for more information.

  Please note When response stubbing is enabled, no HTTP requests are made, and retries are disabled.

• :validate_params (Boolean) — default: true —

  When true, request parameters are validated before sending the request.

• :http_proxy (URI::HTTP, String) —

  A proxy to send requests through. Formatted like 'http://proxy.com:123'.

• :http_open_timeout (Float) — default: 15 —

  The number of seconds to wait when opening a HTTP session before rasing a Timeout::Error.

• :http_read_timeout (Integer) — default: 60 —

  The default number of seconds to wait for response data. This value can safely be set per-request on the session yeidled by #session_for.

• :http_idle_timeout (Float) — default: 5 —

  The number of seconds a connection is allowed to sit idble before it is considered stale. Stale connections are closed and removed from the pool before making a request.

• :http_continue_timeout (Float) — default: 1 —

  The number of seconds to wait for a 100-continue response before sending the request body. This option has no effect unless the request has "Expect" header set to "100-continue". Defaults to nil which disables this behaviour. This value can safely be set per request on the session yeidled by #session_for.

• :http_wire_trace (Boolean) — default: false —

  When true, HTTP debug output will be sent to the :logger.

• :ssl_verify_peer (Boolean) — default: true —

  When true, SSL peer certificates are verified when establishing a connection.

• :ssl_ca_bundle (String) —

  Full path to the SSL certificate authority bundle file that should be used when verifying peer certificates. If you do not pass :ssl_ca_bundle or :ssl_ca_directory the the system default will be used if available.

• :ssl_ca_directory (String) —

  Full path of the directory that contains the unbundled SSL certificate authority files for verifying peer certificates. If you do not pass :ssl_ca_bundle or :ssl_ca_directory the the system default will be used if available.

# File 'gems/aws-sdk-ecr/lib/aws-sdk-ecr/client.rb', line 261

def initialize(*args)
  super
end

Instance Method Details

#batch_check_layer_availability(params = {}) ⇒ Types::BatchCheckLayerAvailabilityResponse

Check the availability of multiple image layers in a specified registry and repository.

This operation is used by the Amazon ECR proxy, and it is not intended for general use by customers for pulling and pushing images. In most cases, you should use the docker CLI to pull, tag, and push images.

Examples:

Request syntax with placeholder values

resp = client.batch_check_layer_availability({
  registry_id: "RegistryId",
  repository_name: "RepositoryName", # required
  layer_digests: ["BatchedOperationLayerDigest"], # required
})

Response structure

resp.layers #=> Array
resp.layers[0].layer_digest #=> String
resp.layers[0].layer_availability #=> String, one of "AVAILABLE", "UNAVAILABLE"
resp.layers[0].layer_size #=> Integer
resp.layers[0].media_type #=> String
resp.failures #=> Array
resp.failures[0].layer_digest #=> String
resp.failures[0].failure_code #=> String, one of "InvalidLayerDigest", "MissingLayerDigest"
resp.failures[0].failure_reason #=> String

Parameters:

• params (Hash) (defaults to: {}) —

  ({})

Options Hash (params):

• :registry_id (String) —

  The AWS account ID associated with the registry that contains the image layers to check. If you do not specify a registry, the default registry is assumed.

• :repository_name (required, String) —

  The name of the repository that is associated with the image layers to check.

• :layer_digests (required, Array<String>) —

  The digests of the image layers to check.

Returns:

• (Types::BatchCheckLayerAvailabilityResponse) —

  Returns a response object which responds to the following methods:

  • #layers => Array<Types::Layer>
  • #failures => Array<Types::LayerFailure>

See Also:

• AWS API Documentation

# File 'gems/aws-sdk-ecr/lib/aws-sdk-ecr/client.rb', line 317

def batch_check_layer_availability(params = {}, options = {})
  req = build_request(:batch_check_layer_availability, params)
  req.send_request(options)
end

#batch_delete_image(params = {}) ⇒ Types::BatchDeleteImageResponse

Deletes a list of specified images within a specified repository. Images are specified with either imageTag or imageDigest.

You can remove a tag from an image by specifying the image's tag in your request. When you remove the last tag from an image, the image is deleted from your repository.

You can completely delete an image (and all of its tags) by specifying the image's digest in your request.

Examples:

Example: To delete multiple images

# This example deletes images with the tags precise and trusty in a repository called ubuntu in the default registry for
# an account.

resp = client.batch_delete_image({
  image_ids: [
    {
      image_tag: "precise", 
    }, 
  ], 
  repository_name: "ubuntu", 
})

resp.to_h outputs the following:
{
  failures: [
  ], 
  image_ids: [
    {
      image_digest: "sha256:examplee6d1e504117a17000003d3753086354a38375961f2e665416ef4b1b2f", 
      image_tag: "precise", 
    }, 
  ], 
}

Request syntax with placeholder values

resp = client.batch_delete_image({
  registry_id: "RegistryId",
  repository_name: "RepositoryName", # required
  image_ids: [ # required
    {
      image_digest: "ImageDigest",
      image_tag: "ImageTag",
    },
  ],
})

Response structure

resp.image_ids #=> Array
resp.image_ids[0].image_digest #=> String
resp.image_ids[0].image_tag #=> String
resp.failures #=> Array
resp.failures[0].image_id.image_digest #=> String
resp.failures[0].image_id.image_tag #=> String
resp.failures[0].failure_code #=> String, one of "InvalidImageDigest", "InvalidImageTag", "ImageTagDoesNotMatchDigest", "ImageNotFound", "MissingDigestAndTag"
resp.failures[0].failure_reason #=> String

Parameters:

• params (Hash) (defaults to: {}) —

  ({})

Options Hash (params):

• :registry_id (String) —

  The AWS account ID associated with the registry that contains the image to delete. If you do not specify a registry, the default registry is assumed.

• :repository_name (required, String) —

  The repository that contains the image to delete.

• :image_ids (required, Array<Types::ImageIdentifier>) —

  A list of image ID references that correspond to images to delete. The format of the imageIds reference is imageTag=tag or imageDigest=digest.

Returns:

• (Types::BatchDeleteImageResponse) —

  Returns a response object which responds to the following methods:

  • #image_ids => Array<Types::ImageIdentifier>
  • #failures => Array<Types::ImageFailure>

See Also:

• AWS API Documentation

# File 'gems/aws-sdk-ecr/lib/aws-sdk-ecr/client.rb', line 405

def batch_delete_image(params = {}, options = {})
  req = build_request(:batch_delete_image, params)
  req.send_request(options)
end

#batch_get_image(params = {}) ⇒ Types::BatchGetImageResponse

Gets detailed information for specified images within a specified repository. Images are specified with either imageTag or imageDigest.

Examples:

Example: To obtain multiple images in a single request

# This example obtains information for an image with a specified image digest ID from the repository named ubuntu in the
# current account.

resp = client.batch_get_image({
  image_ids: [
    {
      image_tag: "precise", 
    }, 
  ], 
  repository_name: "ubuntu", 
})

resp.to_h outputs the following:
{
  failures: [
  ], 
  images: [
    {
      image_id: {
        image_digest: "sha256:example76bdff6d83a09ba2a818f0d00000063724a9ac3ba5019c56f74ebf42a", 
        image_tag: "precise", 
      }, 
      image_manifest: "{\n \"schemaVersion\": 1,\n \"name\": \"ubuntu\",\n \"tag\": \"precise\",\n...", 
      registry_id: "244698725403", 
      repository_name: "ubuntu", 
    }, 
  ], 
}

Request syntax with placeholder values

resp = client.batch_get_image({
  registry_id: "RegistryId",
  repository_name: "RepositoryName", # required
  image_ids: [ # required
    {
      image_digest: "ImageDigest",
      image_tag: "ImageTag",
    },
  ],
  accepted_media_types: ["MediaType"],
})

Response structure

resp.images #=> Array
resp.images[0].registry_id #=> String
resp.images[0].repository_name #=> String
resp.images[0].image_id.image_digest #=> String
resp.images[0].image_id.image_tag #=> String
resp.images[0].image_manifest #=> String
resp.failures #=> Array
resp.failures[0].image_id.image_digest #=> String
resp.failures[0].image_id.image_tag #=> String
resp.failures[0].failure_code #=> String, one of "InvalidImageDigest", "InvalidImageTag", "ImageTagDoesNotMatchDigest", "ImageNotFound", "MissingDigestAndTag"
resp.failures[0].failure_reason #=> String

Parameters:

• params (Hash) (defaults to: {}) —

  ({})

Options Hash (params):

• :registry_id (String) —

  The AWS account ID associated with the registry that contains the images to describe. If you do not specify a registry, the default registry is assumed.

• :repository_name (required, String) —

  The repository that contains the images to describe.

• :image_ids (required, Array<Types::ImageIdentifier>) —

  A list of image ID references that correspond to images to describe. The format of the imageIds reference is imageTag=tag or imageDigest=digest.

• :accepted_media_types (Array<String>) —

  The accepted media types for the request.

  Valid values: application/vnd.docker.distribution.manifest.v1+json | application/vnd.docker.distribution.manifest.v2+json | application/vnd.oci.image.manifest.v1+json

Returns:

• (Types::BatchGetImageResponse) —

  Returns a response object which responds to the following methods:

  • #images => Array<Types::Image>
  • #failures => Array<Types::ImageFailure>

See Also:

• AWS API Documentation

# File 'gems/aws-sdk-ecr/lib/aws-sdk-ecr/client.rb', line 503

def batch_get_image(params = {}, options = {})
  req = build_request(:batch_get_image, params)
  req.send_request(options)
end

#complete_layer_upload(params = {}) ⇒ Types::CompleteLayerUploadResponse

Informs Amazon ECR that the image layer upload has completed for a specified registry, repository name, and upload ID. You can optionally provide a sha256 digest of the image layer for data validation purposes.

This operation is used by the Amazon ECR proxy, and it is not intended for general use by customers for pulling and pushing images. In most cases, you should use the docker CLI to pull, tag, and push images.

Examples:

Request syntax with placeholder values

resp = client.complete_layer_upload({
  registry_id: "RegistryId",
  repository_name: "RepositoryName", # required
  upload_id: "UploadId", # required
  layer_digests: ["LayerDigest"], # required
})

Response structure

resp.registry_id #=> String
resp.repository_name #=> String
resp.upload_id #=> String
resp.layer_digest #=> String

Parameters:

• params (Hash) (defaults to: {}) —

  ({})

Options Hash (params):

• :registry_id (String) —

  The AWS account ID associated with the registry to which to upload layers. If you do not specify a registry, the default registry is assumed.

• :repository_name (required, String) —

  The name of the repository to associate with the image layer.

• :upload_id (required, String) —

  The upload ID from a previous InitiateLayerUpload operation to associate with the image layer.

• :layer_digests (required, Array<String>) —

  The sha256 digest of the image layer.

Returns:

• (Types::CompleteLayerUploadResponse) —

  Returns a response object which responds to the following methods:

  • #registry_id => String
  • #repository_name => String
  • #upload_id => String
  • #layer_digest => String

See Also:

• AWS API Documentation

# File 'gems/aws-sdk-ecr/lib/aws-sdk-ecr/client.rb', line 561

def complete_layer_upload(params = {}, options = {})
  req = build_request(:complete_layer_upload, params)
  req.send_request(options)
end

#create_repository(params = {}) ⇒ Types::CreateRepositoryResponse

Creates an Amazon Elastic Container Registry (Amazon ECR) repository, where users can push and pull Docker images. For more information, see Amazon ECR Repositories in the Amazon Elastic Container Registry User Guide.

Examples:

Example: To create a new repository

# This example creates a repository called nginx-web-app inside the project-a namespace in the default registry for an
# account.

resp = client.create_repository({
  repository_name: "project-a/nginx-web-app", 
})

resp.to_h outputs the following:
{
  repository: {
    registry_id: "012345678901", 
    repository_arn: "arn:aws:ecr:us-west-2:012345678901:repository/project-a/nginx-web-app", 
    repository_name: "project-a/nginx-web-app", 
  }, 
}

Request syntax with placeholder values

resp = client.create_repository({
  repository_name: "RepositoryName", # required
  tags: [
    {
      key: "TagKey",
      value: "TagValue",
    },
  ],
  image_tag_mutability: "MUTABLE", # accepts MUTABLE, IMMUTABLE
  image_scanning_configuration: {
    scan_on_push: false,
  },
})

Response structure

resp.repository.repository_arn #=> String
resp.repository.registry_id #=> String
resp.repository.repository_name #=> String
resp.repository.repository_uri #=> String
resp.repository.created_at #=> Time
resp.repository.image_tag_mutability #=> String, one of "MUTABLE", "IMMUTABLE"
resp.repository.image_scanning_configuration.scan_on_push #=> Boolean

Parameters:

• params (Hash) (defaults to: {}) —

  ({})

Options Hash (params):

• :repository_name (required, String) —

  The name to use for the repository. The repository name may be specified on its own (such as nginx-web-app) or it can be prepended with a namespace to group the repository into a category (such as project-a/nginx-web-app).

• :tags (Array<Types::Tag>) —

  The metadata that you apply to the repository to help you categorize and organize them. Each tag consists of a key and an optional value, both of which you define. Tag keys can have a maximum character length of 128 characters, and tag values can have a maximum length of 256 characters.

• :image_tag_mutability (String) —

  The tag mutability setting for the repository. If this parameter is omitted, the default setting of MUTABLE will be used which will allow image tags to be overwritten. If IMMUTABLE is specified, all image tags within the repository will be immutable which will prevent them from being overwritten.

• :image_scanning_configuration (Types::ImageScanningConfiguration) —

  The image scanning configuration for the repository. This setting determines whether images are scanned for known vulnerabilities after being pushed to the repository.

Returns:

• (Types::CreateRepositoryResponse) —

  Returns a response object which responds to the following methods:

  • #repository => Types::Repository

See Also:

• AWS API Documentation

# File 'gems/aws-sdk-ecr/lib/aws-sdk-ecr/client.rb', line 653

def create_repository(params = {}, options = {})
  req = build_request(:create_repository, params)
  req.send_request(options)
end

#delete_lifecycle_policy(params = {}) ⇒ Types::DeleteLifecyclePolicyResponse

Deletes the specified lifecycle policy.

Examples:

Request syntax with placeholder values

resp = client.delete_lifecycle_policy({
  registry_id: "RegistryId",
  repository_name: "RepositoryName", # required
})

Response structure

resp.registry_id #=> String
resp.repository_name #=> String
resp.lifecycle_policy_text #=> String
resp.last_evaluated_at #=> Time

Parameters:

• params (Hash) (defaults to: {}) —

  ({})

Options Hash (params):

• :registry_id (String) —

  The AWS account ID associated with the registry that contains the repository. If you do not specify a registry, the default registry is assumed.

• :repository_name (required, String) —

  The name of the repository.

Returns:

• (Types::DeleteLifecyclePolicyResponse) —

  Returns a response object which responds to the following methods:

  • #registry_id => String
  • #repository_name => String
  • #lifecycle_policy_text => String
  • #last_evaluated_at => Time

See Also:

• AWS API Documentation

# File 'gems/aws-sdk-ecr/lib/aws-sdk-ecr/client.rb', line 693

def delete_lifecycle_policy(params = {}, options = {})
  req = build_request(:delete_lifecycle_policy, params)
  req.send_request(options)
end

#delete_repository(params = {}) ⇒ Types::DeleteRepositoryResponse

Deletes an existing image repository. If a repository contains images, you must use the force option to delete it.

Examples:

Example: To force delete a repository

# This example force deletes a repository named ubuntu in the default registry for an account. The force parameter is
# required if the repository contains images.

resp = client.delete_repository({
  force: true, 
  repository_name: "ubuntu", 
})

resp.to_h outputs the following:
{
  repository: {
    registry_id: "012345678901", 
    repository_arn: "arn:aws:ecr:us-west-2:012345678901:repository/ubuntu", 
    repository_name: "ubuntu", 
  }, 
}

Request syntax with placeholder values

resp = client.delete_repository({
  registry_id: "RegistryId",
  repository_name: "RepositoryName", # required
  force: false,
})

Response structure

resp.repository.repository_arn #=> String
resp.repository.registry_id #=> String
resp.repository.repository_name #=> String
resp.repository.repository_uri #=> String
resp.repository.created_at #=> Time
resp.repository.image_tag_mutability #=> String, one of "MUTABLE", "IMMUTABLE"
resp.repository.image_scanning_configuration.scan_on_push #=> Boolean

Parameters:

• params (Hash) (defaults to: {}) —

  ({})

Options Hash (params):

• :registry_id (String) —

  The AWS account ID associated with the registry that contains the repository to delete. If you do not specify a registry, the default registry is assumed.

• :repository_name (required, String) —

  The name of the repository to delete.

• :force (Boolean) —

  If a repository contains images, forces the deletion.

Returns:

• (Types::DeleteRepositoryResponse) —

  Returns a response object which responds to the following methods:

  • #repository => Types::Repository

See Also:

• AWS API Documentation

# File 'gems/aws-sdk-ecr/lib/aws-sdk-ecr/client.rb', line 758

def delete_repository(params = {}, options = {})
  req = build_request(:delete_repository, params)
  req.send_request(options)
end

#delete_repository_policy(params = {}) ⇒ Types::DeleteRepositoryPolicyResponse

Deletes the repository policy from a specified repository.

Examples:

Example: To delete the policy associated with a repository

# This example deletes the policy associated with the repository named ubuntu in the current account.

resp = client.delete_repository_policy({
  repository_name: "ubuntu", 
})

resp.to_h outputs the following:
{
  policy_text: "{ ... }", 
  registry_id: "012345678901", 
  repository_name: "ubuntu", 
}

Request syntax with placeholder values

resp = client.delete_repository_policy({
  registry_id: "RegistryId",
  repository_name: "RepositoryName", # required
})

Response structure

resp.registry_id #=> String
resp.repository_name #=> String
resp.policy_text #=> String

Parameters:

• params (Hash) (defaults to: {}) —

  ({})

Options Hash (params):

• :registry_id (String) —

  The AWS account ID associated with the registry that contains the repository policy to delete. If you do not specify a registry, the default registry is assumed.

• :repository_name (required, String) —

  The name of the repository that is associated with the repository policy to delete.

Returns:

• (Types::DeleteRepositoryPolicyResponse) —

  Returns a response object which responds to the following methods:

  • #registry_id => String
  • #repository_name => String
  • #policy_text => String

See Also:

• AWS API Documentation

# File 'gems/aws-sdk-ecr/lib/aws-sdk-ecr/client.rb', line 813

def delete_repository_policy(params = {}, options = {})
  req = build_request(:delete_repository_policy, params)
  req.send_request(options)
end

#describe_image_scan_findings(params = {}) ⇒ Types::DescribeImageScanFindingsResponse

Describes the image scan findings for the specified image.

Examples:

Request syntax with placeholder values

resp = client.describe_image_scan_findings({
  registry_id: "RegistryId",
  repository_name: "RepositoryName", # required
  image_id: { # required
    image_digest: "ImageDigest",
    image_tag: "ImageTag",
  },
  next_token: "NextToken",
  max_results: 1,
})

Response structure

resp.registry_id #=> String
resp.repository_name #=> String
resp.image_id.image_digest #=> String
resp.image_id.image_tag #=> String
resp.image_scan_status.status #=> String, one of "IN_PROGRESS", "COMPLETE", "FAILED"
resp.image_scan_status.description #=> String
resp.image_scan_findings.image_scan_completed_at #=> Time
resp.image_scan_findings.vulnerability_source_updated_at #=> Time
resp.image_scan_findings.findings #=> Array
resp.image_scan_findings.findings[0].name #=> String
resp.image_scan_findings.findings[0].description #=> String
resp.image_scan_findings.findings[0].uri #=> String
resp.image_scan_findings.findings[0].severity #=> String, one of "INFORMATIONAL", "LOW", "MEDIUM", "HIGH", "CRITICAL", "UNDEFINED"
resp.image_scan_findings.findings[0].attributes #=> Array
resp.image_scan_findings.findings[0].attributes[0].key #=> String
resp.image_scan_findings.findings[0].attributes[0].value #=> <Hash,Array,String,Numeric,Boolean,IO,Set,nil>
resp.image_scan_findings.finding_severity_counts #=> Hash
resp.image_scan_findings.finding_severity_counts["FindingSeverity"] #=> Integer
resp.next_token #=> String

Parameters:

• params (Hash) (defaults to: {}) —

  ({})

Options Hash (params):

• :registry_id (String) —

  The AWS account ID associated with the registry that contains the repository in which to describe the image scan findings for. If you do not specify a registry, the default registry is assumed.

• :repository_name (required, String) —

  The repository for the image for which to describe the scan findings.

• :image_id (required, Types::ImageIdentifier) —

  An object with identifying information for an Amazon ECR image.

• :next_token (String) —

  The nextToken value returned from a previous paginated DescribeImageScanFindings request where maxResults was used and the results exceeded the value of that parameter. Pagination continues from the end of the previous results that returned the nextToken value. This value is null when there are no more results to return.

• :max_results (Integer) —

  The maximum number of image scan results returned by DescribeImageScanFindings in paginated output. When this parameter is used, DescribeImageScanFindings only returns maxResults results in a single page along with a nextToken response element. The remaining results of the initial request can be seen by sending another DescribeImageScanFindings request with the returned nextToken value. This value can be between 1 and 1000. If this parameter is not used, then DescribeImageScanFindings returns up to 100 results and a nextToken value, if applicable.

Returns:

• (Types::DescribeImageScanFindingsResponse) —

  Returns a response object which responds to the following methods:

  • #registry_id => String
  • #repository_name => String
  • #image_id => Types::ImageIdentifier
  • #image_scan_status => Types::ImageScanStatus
  • #image_scan_findings => Types::ImageScanFindings
  • #next_token => String

See Also:

• AWS API Documentation

# File 'gems/aws-sdk-ecr/lib/aws-sdk-ecr/client.rb', line 897

def describe_image_scan_findings(params = {}, options = {})
  req = build_request(:describe_image_scan_findings, params)
  req.send_request(options)
end

#describe_images(params = {}) ⇒ Types::DescribeImagesResponse

Returns metadata about the images in a repository, including image size, image tags, and creation date.

Beginning with Docker version 1.9, the Docker client compresses image layers before pushing them to a V2 Docker registry. The output of the docker images command shows the uncompressed image size, so it may return a larger image size than the image sizes returned by DescribeImages.

Examples:

Request syntax with placeholder values

resp = client.describe_images({
  registry_id: "RegistryId",
  repository_name: "RepositoryName", # required
  image_ids: [
    {
      image_digest: "ImageDigest",
      image_tag: "ImageTag",
    },
  ],
  next_token: "NextToken",
  max_results: 1,
  filter: {
    tag_status: "TAGGED", # accepts TAGGED, UNTAGGED, ANY
  },
})

Response structure

resp.image_details #=> Array
resp.image_details[0].registry_id #=> String
resp.image_details[0].repository_name #=> String
resp.image_details[0].image_digest #=> String
resp.image_details[0].image_tags #=> Array
resp.image_details[0].image_tags[0] #=> String
resp.image_details[0].image_size_in_bytes #=> Integer
resp.image_details[0].image_pushed_at #=> Time
resp.image_details[0].image_scan_status.status #=> String, one of "IN_PROGRESS", "COMPLETE", "FAILED"
resp.image_details[0].image_scan_status.description #=> String
resp.image_details[0].image_scan_findings_summary.image_scan_completed_at #=> Time
resp.image_details[0].image_scan_findings_summary.vulnerability_source_updated_at #=> Time
resp.image_details[0].image_scan_findings_summary.finding_severity_counts #=> Hash
resp.image_details[0].image_scan_findings_summary.finding_severity_counts["FindingSeverity"] #=> Integer
resp.next_token #=> String

Parameters:

• params (Hash) (defaults to: {}) —

  ({})

Options Hash (params):

• :registry_id (String) —

  The AWS account ID associated with the registry that contains the repository in which to describe images. If you do not specify a registry, the default registry is assumed.

• :repository_name (required, String) —

  The repository that contains the images to describe.

• :image_ids (Array<Types::ImageIdentifier>) —

  The list of image IDs for the requested repository.

• :next_token (String) —

  The nextToken value returned from a previous paginated DescribeImages request where maxResults was used and the results exceeded the value of that parameter. Pagination continues from the end of the previous results that returned the nextToken value. This value is null when there are no more results to return. This option cannot be used when you specify images with imageIds.

• :max_results (Integer) —

  The maximum number of repository results returned by DescribeImages in paginated output. When this parameter is used, DescribeImages only returns maxResults results in a single page along with a nextToken response element. The remaining results of the initial request can be seen by sending another DescribeImages request with the returned nextToken value. This value can be between 1 and 1000. If this parameter is not used, then DescribeImages returns up to 100 results and a nextToken value, if applicable. This option cannot be used when you specify images with imageIds.

• :filter (Types::DescribeImagesFilter) —

  The filter key and value with which to filter your DescribeImages results.

Returns:

• (Types::DescribeImagesResponse) —

  Returns a response object which responds to the following methods:

  • #image_details => Array<Types::ImageDetail>
  • #next_token => String

See Also:

• AWS API Documentation

# File 'gems/aws-sdk-ecr/lib/aws-sdk-ecr/client.rb', line 992

def describe_images(params = {}, options = {})
  req = build_request(:describe_images, params)
  req.send_request(options)
end

#describe_repositories(params = {}) ⇒ Types::DescribeRepositoriesResponse

Describes image repositories in a registry.

Examples:

Example: To describe all repositories in the current account

# The following example obtains a list and description of all repositories in the default registry to which the current
# user has access.

resp = client.describe_repositories({
})

resp.to_h outputs the following:
{
  repositories: [
    {
      registry_id: "012345678910", 
      repository_arn: "arn:aws:ecr:us-west-2:012345678910:repository/ubuntu", 
      repository_name: "ubuntu", 
    }, 
    {
      registry_id: "012345678910", 
      repository_arn: "arn:aws:ecr:us-west-2:012345678910:repository/test", 
      repository_name: "test", 
    }, 
  ], 
}

Request syntax with placeholder values

resp = client.describe_repositories({
  registry_id: "RegistryId",
  repository_names: ["RepositoryName"],
  next_token: "NextToken",
  max_results: 1,
})

Response structure

resp.repositories #=> Array
resp.repositories[0].repository_arn #=> String
resp.repositories[0].registry_id #=> String
resp.repositories[0].repository_name #=> String
resp.repositories[0].repository_uri #=> String
resp.repositories[0].created_at #=> Time
resp.repositories[0].image_tag_mutability #=> String, one of "MUTABLE", "IMMUTABLE"
resp.repositories[0].image_scanning_configuration.scan_on_push #=> Boolean
resp.next_token #=> String

Parameters:

• params (Hash) (defaults to: {}) —

  ({})

Options Hash (params):

• :registry_id (String) —

  The AWS account ID associated with the registry that contains the repositories to be described. If you do not specify a registry, the default registry is assumed.

• :repository_names (Array<String>) —

  A list of repositories to describe. If this parameter is omitted, then all repositories in a registry are described.

• :next_token (String) —

  The nextToken value returned from a previous paginated DescribeRepositories request where maxResults was used and the results exceeded the value of that parameter. Pagination continues from the end of the previous results that returned the nextToken value. This value is null when there are no more results to return. This option cannot be used when you specify repositories with repositoryNames.

  This token should be treated as an opaque identifier that is only used to retrieve the next items in a list and not for other programmatic purposes.

• :max_results (Integer) —

  The maximum number of repository results returned by DescribeRepositories in paginated output. When this parameter is used, DescribeRepositories only returns maxResults results in a single page along with a nextToken response element. The remaining results of the initial request can be seen by sending another DescribeRepositories request with the returned nextToken value. This value can be between 1 and 1000. If this parameter is not used, then DescribeRepositories returns up to 100 results and a nextToken value, if applicable. This option cannot be used when you specify repositories with repositoryNames.

Returns:

• (Types::DescribeRepositoriesResponse) —

  Returns a response object which responds to the following methods:

  • #repositories => Array<Types::Repository>
  • #next_token => String

See Also:

• AWS API Documentation

# File 'gems/aws-sdk-ecr/lib/aws-sdk-ecr/client.rb', line 1090

def describe_repositories(params = {}, options = {})
  req = build_request(:describe_repositories, params)
  req.send_request(options)
end

#get_authorization_token(params = {}) ⇒ Types::GetAuthorizationTokenResponse

Retrieves a token that is valid for a specified registry for 12 hours. This command allows you to use the docker CLI to push and pull images with Amazon ECR. If you do not specify a registry, the default registry is assumed.

The authorizationToken returned for each registry specified is a base64 encoded string that can be decoded and used in a docker login command to authenticate to a registry. The AWS CLI offers an aws ecr get-login command that simplifies the login process.

Examples:

Example: To obtain an authorization token

# This example gets an authorization token for your default registry.

resp = client.get_authorization_token({
})

resp.to_h outputs the following:
{
  authorization_data: [
    {
      authorization_token: "QVdTOkN...", 
      expires_at: Time.parse("1470951892432"), 
      proxy_endpoint: "https://012345678901.dkr.ecr.us-west-2.amazonaws.com", 
    }, 
  ], 
}

Request syntax with placeholder values

resp = client.get_authorization_token({
  registry_ids: ["RegistryId"],
})

Response structure

resp.authorization_data #=> Array
resp.authorization_data[0].authorization_token #=> String
resp.authorization_data[0].expires_at #=> Time
resp.authorization_data[0].proxy_endpoint #=> String

Parameters:

• params (Hash) (defaults to: {}) —

  ({})

Options Hash (params):

• :registry_ids (Array<String>) —

  A list of AWS account IDs that are associated with the registries for which to get authorization tokens. If you do not specify a registry, the default registry is assumed.

Returns:

• (Types::GetAuthorizationTokenResponse) —

  Returns a response object which responds to the following methods:

  • #authorization_data => Array<Types::AuthorizationData>

See Also:

• AWS API Documentation

# File 'gems/aws-sdk-ecr/lib/aws-sdk-ecr/client.rb', line 1150

def get_authorization_token(params = {}, options = {})
  req = build_request(:get_authorization_token, params)
  req.send_request(options)
end

#get_download_url_for_layer(params = {}) ⇒ Types::GetDownloadUrlForLayerResponse

Retrieves the pre-signed Amazon S3 download URL corresponding to an image layer. You can only get URLs for image layers that are referenced in an image.

This operation is used by the Amazon ECR proxy, and it is not intended for general use by customers for pulling and pushing images. In most cases, you should use the docker CLI to pull, tag, and push images.

Examples:

Request syntax with placeholder values

resp = client.get_download_url_for_layer({
  registry_id: "RegistryId",
  repository_name: "RepositoryName", # required
  layer_digest: "LayerDigest", # required
})

Response structure

resp.download_url #=> String
resp.layer_digest #=> String

Parameters:

• params (Hash) (defaults to: {}) —

  ({})

Options Hash (params):

• :registry_id (String) —

  The AWS account ID associated with the registry that contains the image layer to download. If you do not specify a registry, the default registry is assumed.

• :repository_name (required, String) —

  The name of the repository that is associated with the image layer to download.

• :layer_digest (required, String) —

  The digest of the image layer to download.

Returns:

• (Types::GetDownloadUrlForLayerResponse) —

  Returns a response object which responds to the following methods:

  • #download_url => String
  • #layer_digest => String

See Also:

• AWS API Documentation

# File 'gems/aws-sdk-ecr/lib/aws-sdk-ecr/client.rb', line 1199

def get_download_url_for_layer(params = {}, options = {})
  req = build_request(:get_download_url_for_layer, params)
  req.send_request(options)
end

#get_lifecycle_policy(params = {}) ⇒ Types::GetLifecyclePolicyResponse

Retrieves the specified lifecycle policy.

Examples:

Request syntax with placeholder values

resp = client.get_lifecycle_policy({
  registry_id: "RegistryId",
  repository_name: "RepositoryName", # required
})

Response structure

resp.registry_id #=> String
resp.repository_name #=> String
resp.lifecycle_policy_text #=> String
resp.last_evaluated_at #=> Time

Parameters:

• params (Hash) (defaults to: {}) —

  ({})

Options Hash (params):

• :registry_id (String) —

  The AWS account ID associated with the registry that contains the repository. If you do not specify a registry, the default registry is assumed.

• :repository_name (required, String) —

  The name of the repository.

Returns:

• (Types::GetLifecyclePolicyResponse) —

  Returns a response object which responds to the following methods:

  • #registry_id => String
  • #repository_name => String
  • #lifecycle_policy_text => String
  • #last_evaluated_at => Time

See Also:

• AWS API Documentation

# File 'gems/aws-sdk-ecr/lib/aws-sdk-ecr/client.rb', line 1239

def get_lifecycle_policy(params = {}, options = {})
  req = build_request(:get_lifecycle_policy, params)
  req.send_request(options)
end

#get_lifecycle_policy_preview(params = {}) ⇒ Types::GetLifecyclePolicyPreviewResponse

Retrieves the results of the specified lifecycle policy preview request.

Examples:

Request syntax with placeholder values

resp = client.get_lifecycle_policy_preview({
  registry_id: "RegistryId",
  repository_name: "RepositoryName", # required
  image_ids: [
    {
      image_digest: "ImageDigest",
      image_tag: "ImageTag",
    },
  ],
  next_token: "NextToken",
  max_results: 1,
  filter: {
    tag_status: "TAGGED", # accepts TAGGED, UNTAGGED, ANY
  },
})

Response structure

resp.registry_id #=> String
resp.repository_name #=> String
resp.lifecycle_policy_text #=> String
resp.status #=> String, one of "IN_PROGRESS", "COMPLETE", "EXPIRED", "FAILED"
resp.next_token #=> String
resp.preview_results #=> Array
resp.preview_results[0].image_tags #=> Array
resp.preview_results[0].image_tags[0] #=> String
resp.preview_results[0].image_digest #=> String
resp.preview_results[0].image_pushed_at #=> Time
resp.preview_results[0].action.type #=> String, one of "EXPIRE"
resp.preview_results[0].applied_rule_priority #=> Integer
resp.summary.expiring_image_total_count #=> Integer

Parameters:

• params (Hash) (defaults to: {}) —

  ({})

Options Hash (params):

• :registry_id (String) —

  The AWS account ID associated with the registry that contains the repository. If you do not specify a registry, the default registry is assumed.

• :repository_name (required, String) —

  The name of the repository.

• :image_ids (Array<Types::ImageIdentifier>) —

  The list of imageIDs to be included.

• :next_token (String) —

  The nextToken value returned from a previous paginated
 GetLifecyclePolicyPreviewRequest request where maxResults was used and the
 results exceeded the value of that parameter. Pagination continues from the end of the
 previous results that returned the nextToken value. This value is
 null when there are no more results to return. This option cannot be used when you specify images with imageIds.

• :max_results (Integer) —

  The maximum number of repository results returned by GetLifecyclePolicyPreviewRequest in
 paginated output. When this parameter is used, GetLifecyclePolicyPreviewRequest only returns
 maxResults results in a single page along with a nextToken
 response element. The remaining results of the initial request can be seen by sending
 another GetLifecyclePolicyPreviewRequest request with the returned nextToken
 value. This value can be between 1 and 1000. If this
 parameter is not used, then GetLifecyclePolicyPreviewRequest returns up to
 100 results and a nextToken value, if
 applicable. This option cannot be used when you specify images with imageIds.

• :filter (Types::LifecyclePolicyPreviewFilter) —

  An optional parameter that filters results based on image tag status and all tags, if tagged.

Returns:

• (Types::GetLifecyclePolicyPreviewResponse) —

  Returns a response object which responds to the following methods:

  • #registry_id => String
  • #repository_name => String
  • #lifecycle_policy_text => String
  • #status => String
  • #next_token => String
  • #preview_results => Array<Types::LifecyclePolicyPreviewResult>
  • #summary => Types::LifecyclePolicyPreviewSummary

See Also:

• AWS API Documentation

# File 'gems/aws-sdk-ecr/lib/aws-sdk-ecr/client.rb', line 1332

def get_lifecycle_policy_preview(params = {}, options = {})
  req = build_request(:get_lifecycle_policy_preview, params)
  req.send_request(options)
end

#get_repository_policy(params = {}) ⇒ Types::GetRepositoryPolicyResponse

Retrieves the repository policy for a specified repository.

Examples:

Example: To get the current policy for a repository

# This example obtains the repository policy for the repository named ubuntu.

resp = client.get_repository_policy({
  repository_name: "ubuntu", 
})

resp.to_h outputs the following:
{
  policy_text: "{\n  \"Version\" : \"2008-10-17\",\n  \"Statement\" : [ {\n    \"Sid\" : \"new statement\",\n    \"Effect\" : \"Allow\",\n    \"Principal\" : {\n     \"AWS\" : \"arn:aws:iam::012345678901:role/CodeDeployDemo\"\n    },\n\"Action\" : [ \"ecr:GetDownloadUrlForLayer\", \"ecr:BatchGetImage\", \"ecr:BatchCheckLayerAvailability\" ]\n } ]\n}", 
  registry_id: "012345678901", 
  repository_name: "ubuntu", 
}

Request syntax with placeholder values

resp = client.get_repository_policy({
  registry_id: "RegistryId",
  repository_name: "RepositoryName", # required
})

Response structure

resp.registry_id #=> String
resp.repository_name #=> String
resp.policy_text #=> String

Parameters:

• params (Hash) (defaults to: {}) —

  ({})

Options Hash (params):

• :registry_id (String) —

  The AWS account ID associated with the registry that contains the repository. If you do not specify a registry, the default registry is assumed.

• :repository_name (required, String) —

  The name of the repository with the policy to retrieve.

Returns:

• (Types::GetRepositoryPolicyResponse) —

  Returns a response object which responds to the following methods:

  • #registry_id => String
  • #repository_name => String
  • #policy_text => String

See Also:

• AWS API Documentation

# File 'gems/aws-sdk-ecr/lib/aws-sdk-ecr/client.rb', line 1386

def get_repository_policy(params = {}, options = {})
  req = build_request(:get_repository_policy, params)
  req.send_request(options)
end

#initiate_layer_upload(params = {}) ⇒ Types::InitiateLayerUploadResponse

Notify Amazon ECR that you intend to upload an image layer.

This operation is used by the Amazon ECR proxy, and it is not intended for general use by customers for pulling and pushing images. In most cases, you should use the docker CLI to pull, tag, and push images.

Examples:

Request syntax with placeholder values

resp = client.initiate_layer_upload({
  registry_id: "RegistryId",
  repository_name: "RepositoryName", # required
})

Response structure

resp.upload_id #=> String
resp.part_size #=> Integer

Parameters:

• params (Hash) (defaults to: {}) —

  ({})

Options Hash (params):

• :registry_id (String) —

  The AWS account ID associated with the registry to which you intend to upload layers. If you do not specify a registry, the default registry is assumed.

• :repository_name (required, String) —

  The name of the repository to which you intend to upload layers.

Returns:

• (Types::InitiateLayerUploadResponse) —

  Returns a response object which responds to the following methods:

  • #upload_id => String
  • #part_size => Integer

See Also:

• AWS API Documentation

# File 'gems/aws-sdk-ecr/lib/aws-sdk-ecr/client.rb', line 1428

def initiate_layer_upload(params = {}, options = {})
  req = build_request(:initiate_layer_upload, params)
  req.send_request(options)
end

#list_images(params = {}) ⇒ Types::ListImagesResponse

Lists all the image IDs for a given repository.

You can filter images based on whether or not they are tagged by setting the tagStatus parameter to TAGGED or UNTAGGED. For example, you can filter your results to return only UNTAGGED images and then pipe that result to a BatchDeleteImage operation to delete them. Or, you can filter your results to return only TAGGED images to list all of the tags in your repository.

Examples:

Example: To list all images in a repository

# This example lists all of the images in the repository named ubuntu in the default registry in the current account. 

resp = client.list_images({
  repository_name: "ubuntu", 
})

resp.to_h outputs the following:
{
  image_ids: [
    {
      image_digest: "sha256:764f63476bdff6d83a09ba2a818f0d35757063724a9ac3ba5019c56f74ebf42a", 
      image_tag: "precise", 
    }, 
  ], 
}

Request syntax with placeholder values

resp = client.list_images({
  registry_id: "RegistryId",
  repository_name: "RepositoryName", # required
  next_token: "NextToken",
  max_results: 1,
  filter: {
    tag_status: "TAGGED", # accepts TAGGED, UNTAGGED, ANY
  },
})

Response structure

resp.image_ids #=> Array
resp.image_ids[0].image_digest #=> String
resp.image_ids[0].image_tag #=> String
resp.next_token #=> String

Parameters:

• params (Hash) (defaults to: {}) —

  ({})

Options Hash (params):

• :registry_id (String) —

  The AWS account ID associated with the registry that contains the repository in which to list images. If you do not specify a registry, the default registry is assumed.

• :repository_name (required, String) —

  The repository with image IDs to be listed.

• :next_token (String) —

  The nextToken value returned from a previous paginated ListImages request where maxResults was used and the results exceeded the value of that parameter. Pagination continues from the end of the previous results that returned the nextToken value. This value is null when there are no more results to return.

  This token should be treated as an opaque identifier that is only used to retrieve the next items in a list and not for other programmatic purposes.

• :max_results (Integer) —

  The maximum number of image results returned by ListImages in paginated output. When this parameter is used, ListImages only returns maxResults results in a single page along with a nextToken response element. The remaining results of the initial request can be seen by sending another ListImages request with the returned nextToken value. This value can be between 1 and 1000. If this parameter is not used, then ListImages returns up to 100 results and a nextToken value, if applicable.

• :filter (Types::ListImagesFilter) —

  The filter key and value with which to filter your ListImages results.

Returns:

• (Types::ListImagesResponse) —

  Returns a response object which responds to the following methods:

  • #image_ids => Array<Types::ImageIdentifier>
  • #next_token => String

See Also:

• AWS API Documentation

# File 'gems/aws-sdk-ecr/lib/aws-sdk-ecr/client.rb', line 1524

def list_images(params = {}, options = {})
  req = build_request(:list_images, params)
  req.send_request(options)
end

#list_tags_for_resource(params = {}) ⇒ Types::ListTagsForResourceResponse

List the tags for an Amazon ECR resource.

Examples:

Request syntax with placeholder values

resp = client.list_tags_for_resource({
  resource_arn: "Arn", # required
})

Response structure

resp.tags #=> Array
resp.tags[0].key #=> String
resp.tags[0].value #=> String

Parameters:

• params (Hash) (defaults to: {}) —

  ({})

Options Hash (params):

• :resource_arn (required, String) —

  The Amazon Resource Name (ARN) that identifies the resource for which to list the tags. Currently, the only supported resource is an Amazon ECR repository.

Returns:

• (Types::ListTagsForResourceResponse) —

  Returns a response object which responds to the following methods:

  • #tags => Array<Types::Tag>

See Also:

• AWS API Documentation

# File 'gems/aws-sdk-ecr/lib/aws-sdk-ecr/client.rb', line 1556

def list_tags_for_resource(params = {}, options = {})
  req = build_request(:list_tags_for_resource, params)
  req.send_request(options)
end

#put_image(params = {}) ⇒ Types::PutImageResponse

Creates or updates the image manifest and tags associated with an image.

This operation is used by the Amazon ECR proxy, and it is not intended for general use by customers for pulling and pushing images. In most cases, you should use the docker CLI to pull, tag, and push images.

Examples:

Request syntax with placeholder values

resp = client.put_image({
  registry_id: "RegistryId",
  repository_name: "RepositoryName", # required
  image_manifest: "ImageManifest", # required
  image_tag: "ImageTag",
})

Response structure

resp.image.registry_id #=> String
resp.image.repository_name #=> String
resp.image.image_id.image_digest #=> String
resp.image.image_id.image_tag #=> String
resp.image.image_manifest #=> String

Parameters:

• params (Hash) (defaults to: {}) —

  ({})

Options Hash (params):

• :registry_id (String) —

  The AWS account ID associated with the registry that contains the repository in which to put the image. If you do not specify a registry, the default registry is assumed.

• :repository_name (required, String) —

  The name of the repository in which to put the image.

• :image_manifest (required, String) —

  The image manifest corresponding to the image to be uploaded.

• :image_tag (String) —

  The tag to associate with the image. This parameter is required for images that use the Docker Image Manifest V2 Schema 2 or OCI formats.

Returns:

• (Types::PutImageResponse) —

  Returns a response object which responds to the following methods:

  • #image => Types::Image

See Also:

• AWS API Documentation

# File 'gems/aws-sdk-ecr/lib/aws-sdk-ecr/client.rb', line 1610

def put_image(params = {}, options = {})
  req = build_request(:put_image, params)
  req.send_request(options)
end

#put_image_scanning_configuration(params = {}) ⇒ Types::PutImageScanningConfigurationResponse

Updates the image scanning configuration for a repository.

Examples:

Request syntax with placeholder values

resp = client.put_image_scanning_configuration({
  registry_id: "RegistryId",
  repository_name: "RepositoryName", # required
  image_scanning_configuration: { # required
    scan_on_push: false,
  },
})

Response structure

resp.registry_id #=> String
resp.repository_name #=> String
resp.image_scanning_configuration.scan_on_push #=> Boolean

Parameters:

• params (Hash) (defaults to: {}) —

  ({})

Options Hash (params):

• :registry_id (String) —

  The AWS account ID associated with the registry that contains the repository in which to update the image scanning configuration setting. If you do not specify a registry, the default registry is assumed.

• :repository_name (required, String) —

  The name of the repository in which to update the image scanning configuration setting.

• :image_scanning_configuration (required, Types::ImageScanningConfiguration) —

  The image scanning configuration for the repository. This setting determines whether images are scanned for known vulnerabilities after being pushed to the repository.

Returns:

• (Types::PutImageScanningConfigurationResponse) —

  Returns a response object which responds to the following methods:

  • #registry_id => String
  • #repository_name => String
  • #image_scanning_configuration => Types::ImageScanningConfiguration

See Also:

• AWS API Documentation

# File 'gems/aws-sdk-ecr/lib/aws-sdk-ecr/client.rb', line 1658

def put_image_scanning_configuration(params = {}, options = {})
  req = build_request(:put_image_scanning_configuration, params)
  req.send_request(options)
end

#put_image_tag_mutability(params = {}) ⇒ Types::PutImageTagMutabilityResponse

Updates the image tag mutability settings for a repository. When a repository is configured with tag immutability, all image tags within the repository will be prevented them from being overwritten. For more information, see Image Tag Mutability in the Amazon Elastic Container Registry User Guide.

Examples:

Request syntax with placeholder values

resp = client.put_image_tag_mutability({
  registry_id: "RegistryId",
  repository_name: "RepositoryName", # required
  image_tag_mutability: "MUTABLE", # required, accepts MUTABLE, IMMUTABLE
})

Response structure

resp.registry_id #=> String
resp.repository_name #=> String
resp.image_tag_mutability #=> String, one of "MUTABLE", "IMMUTABLE"

Parameters:

• params (Hash) (defaults to: {}) —

  ({})

Options Hash (params):

• :registry_id (String) —

  The AWS account ID associated with the registry that contains the repository in which to update the image tag mutability settings. If you do not specify a registry, the default registry is assumed.

• :repository_name (required, String) —

  The name of the repository in which to update the image tag mutability settings.

• :image_tag_mutability (required, String) —

  The tag mutability setting for the repository. If MUTABLE is specified, image tags can be overwritten. If IMMUTABLE is specified, all image tags within the repository will be immutable which will prevent them from being overwritten.

Returns:

• (Types::PutImageTagMutabilityResponse) —

  Returns a response object which responds to the following methods:

  • #registry_id => String
  • #repository_name => String
  • #image_tag_mutability => String

See Also:

• AWS API Documentation

# File 'gems/aws-sdk-ecr/lib/aws-sdk-ecr/client.rb', line 1712

def put_image_tag_mutability(params = {}, options = {})
  req = build_request(:put_image_tag_mutability, params)
  req.send_request(options)
end

#put_lifecycle_policy(params = {}) ⇒ Types::PutLifecyclePolicyResponse

Creates or updates a lifecycle policy. For information about lifecycle policy syntax, see Lifecycle Policy Template.

Examples:

Request syntax with placeholder values

resp = client.put_lifecycle_policy({
  registry_id: "RegistryId",
  repository_name: "RepositoryName", # required
  lifecycle_policy_text: "LifecyclePolicyText", # required
})

Response structure

resp.registry_id #=> String
resp.repository_name #=> String
resp.lifecycle_policy_text #=> String

Parameters:

• params (Hash) (defaults to: {}) —

  ({})

Options Hash (params):

• :registry_id (String) —

  The AWS account ID associated with the registry that contains the repository. If you do
 not specify a registry, the default registry is assumed.

• :repository_name (required, String) —

  The name of the repository to receive the policy.

• :lifecycle_policy_text (required, String) —

  The JSON repository policy text to apply to the repository.

Returns:

• (Types::PutLifecyclePolicyResponse) —

  Returns a response object which responds to the following methods:

  • #registry_id => String
  • #repository_name => String
  • #lifecycle_policy_text => String

See Also:

• AWS API Documentation

# File 'gems/aws-sdk-ecr/lib/aws-sdk-ecr/client.rb', line 1759

def put_lifecycle_policy(params = {}, options = {})
  req = build_request(:put_lifecycle_policy, params)
  req.send_request(options)
end

#set_repository_policy(params = {}) ⇒ Types::SetRepositoryPolicyResponse

Applies a repository policy on a specified repository to control access permissions. For more information, see Amazon ECR Repository Policies in the Amazon Elastic Container Registry User Guide.

Examples:

Request syntax with placeholder values

resp = client.set_repository_policy({
  registry_id: "RegistryId",
  repository_name: "RepositoryName", # required
  policy_text: "RepositoryPolicyText", # required
  force: false,
})

Response structure

resp.registry_id #=> String
resp.repository_name #=> String
resp.policy_text #=> String

Parameters:

• params (Hash) (defaults to: {}) —

  ({})

Options Hash (params):

• :registry_id (String) —

  The AWS account ID associated with the registry that contains the repository. If you do not specify a registry, the default registry is assumed.

• :repository_name (required, String) —

  The name of the repository to receive the policy.

• :policy_text (required, String) —

  The JSON repository policy text to apply to the repository. For more information, see Amazon ECR Repository Policy Examples in the Amazon Elastic Container Registry User Guide.

• :force (Boolean) —

  If the policy you are attempting to set on a repository policy would prevent you from setting another policy in the future, you must force the SetRepositoryPolicy operation. This is intended to prevent accidental repository lock outs.

Returns:

• (Types::SetRepositoryPolicyResponse) —

  Returns a response object which responds to the following methods:

  • #registry_id => String
  • #repository_name => String
  • #policy_text => String

See Also:

• AWS API Documentation

# File 'gems/aws-sdk-ecr/lib/aws-sdk-ecr/client.rb', line 1820

def set_repository_policy(params = {}, options = {})
  req = build_request(:set_repository_policy, params)
  req.send_request(options)
end

#start_image_scan(params = {}) ⇒ Types::StartImageScanResponse

Starts an image vulnerability scan. An image scan can only be started once per day on an individual image. This limit includes if an image was scanned on initial push. For more information, see Image Scanning in the Amazon Elastic Container Registry User Guide.

Examples:

Request syntax with placeholder values

resp = client.start_image_scan({
  registry_id: "RegistryId",
  repository_name: "RepositoryName", # required
  image_id: { # required
    image_digest: "ImageDigest",
    image_tag: "ImageTag",
  },
})

Response structure

resp.registry_id #=> String
resp.repository_name #=> String
resp.image_id.image_digest #=> String
resp.image_id.image_tag #=> String
resp.image_scan_status.status #=> String, one of "IN_PROGRESS", "COMPLETE", "FAILED"
resp.image_scan_status.description #=> String

Parameters:

• params (Hash) (defaults to: {}) —

  ({})

Options Hash (params):

• :registry_id (String) —

  The AWS account ID associated with the registry that contains the repository in which to start an image scan request. If you do not specify a registry, the default registry is assumed.

• :repository_name (required, String) —

  The name of the repository that contains the images to scan.

• :image_id (required, Types::ImageIdentifier) —

  An object with identifying information for an Amazon ECR image.

Returns:

• (Types::StartImageScanResponse) —

  Returns a response object which responds to the following methods:

  • #registry_id => String
  • #repository_name => String
  • #image_id => Types::ImageIdentifier
  • #image_scan_status => Types::ImageScanStatus

See Also:

• AWS API Documentation

# File 'gems/aws-sdk-ecr/lib/aws-sdk-ecr/client.rb', line 1876

def start_image_scan(params = {}, options = {})
  req = build_request(:start_image_scan, params)
  req.send_request(options)
end

#start_lifecycle_policy_preview(params = {}) ⇒ Types::StartLifecyclePolicyPreviewResponse

Starts a preview of the specified lifecycle policy. This allows you to see the results before creating the lifecycle policy.

Examples:

Request syntax with placeholder values

resp = client.start_lifecycle_policy_preview({
  registry_id: "RegistryId",
  repository_name: "RepositoryName", # required
  lifecycle_policy_text: "LifecyclePolicyText",
})

Response structure

resp.registry_id #=> String
resp.repository_name #=> String
resp.lifecycle_policy_text #=> String
resp.status #=> String, one of "IN_PROGRESS", "COMPLETE", "EXPIRED", "FAILED"

Parameters:

• params (Hash) (defaults to: {}) —

  ({})

Options Hash (params):

• :registry_id (String) —

  The AWS account ID associated with the registry that contains the repository. If you do not specify a registry, the default registry is assumed.

• :repository_name (required, String) —

  The name of the repository to be evaluated.

• :lifecycle_policy_text (String) —

  The policy to be evaluated against. If you do not specify a policy, the current policy for the repository is used.

Returns:

• (Types::StartLifecyclePolicyPreviewResponse) —

  Returns a response object which responds to the following methods:

  • #registry_id => String
  • #repository_name => String
  • #lifecycle_policy_text => String
  • #status => String

See Also:

• AWS API Documentation

# File 'gems/aws-sdk-ecr/lib/aws-sdk-ecr/client.rb', line 1922

def start_lifecycle_policy_preview(params = {}, options = {})
  req = build_request(:start_lifecycle_policy_preview, params)
  req.send_request(options)
end

#tag_resource(params = {}) ⇒ Struct

Adds specified tags to a resource with the specified ARN. Existing tags on a resource are not changed if they are not specified in the request parameters.

Examples:

Request syntax with placeholder values

resp = client.tag_resource({
  resource_arn: "Arn", # required
  tags: [ # required
    {
      key: "TagKey",
      value: "TagValue",
    },
  ],
})

Parameters:

• params (Hash) (defaults to: {}) —

  ({})

Options Hash (params):

• :resource_arn (required, String) —

  The Amazon Resource Name (ARN) of the the resource to which to add tags. Currently, the only supported resource is an Amazon ECR repository.

• :tags (required, Array<Types::Tag>) —

  The tags to add to the resource. A tag is an array of key-value pairs. Tag keys can have a maximum character length of 128 characters, and tag values can have a maximum length of 256 characters.

Returns:

• (Struct) —

  Returns an empty response.

See Also:

• AWS API Documentation

# File 'gems/aws-sdk-ecr/lib/aws-sdk-ecr/client.rb', line 1959

def tag_resource(params = {}, options = {})
  req = build_request(:tag_resource, params)
  req.send_request(options)
end

#untag_resource(params = {}) ⇒ Struct

Deletes specified tags from a resource.

Examples:

Request syntax with placeholder values

resp = client.untag_resource({
  resource_arn: "Arn", # required
  tag_keys: ["TagKey"], # required
})

Parameters:

• params (Hash) (defaults to: {}) —

  ({})

Options Hash (params):

• :resource_arn (required, String) —

  The Amazon Resource Name (ARN) of the resource from which to remove tags. Currently, the only supported resource is an Amazon ECR repository.

• :tag_keys (required, Array<String>) —

  The keys of the tags to be removed.

Returns:

• (Struct) —

  Returns an empty response.

See Also:

• AWS API Documentation

# File 'gems/aws-sdk-ecr/lib/aws-sdk-ecr/client.rb', line 1987

def untag_resource(params = {}, options = {})
  req = build_request(:untag_resource, params)
  req.send_request(options)
end

#upload_layer_part(params = {}) ⇒ Types::UploadLayerPartResponse

Uploads an image layer part to Amazon ECR.

This operation is used by the Amazon ECR proxy, and it is not intended for general use by customers for pulling and pushing images. In most cases, you should use the docker CLI to pull, tag, and push images.

Examples:

Request syntax with placeholder values

resp = client.upload_layer_part({
  registry_id: "RegistryId",
  repository_name: "RepositoryName", # required
  upload_id: "UploadId", # required
  part_first_byte: 1, # required
  part_last_byte: 1, # required
  layer_part_blob: "data", # required
})

Response structure

resp.registry_id #=> String
resp.repository_name #=> String
resp.upload_id #=> String
resp.last_byte_received #=> Integer

Parameters:

• params (Hash) (defaults to: {}) —

  ({})

Options Hash (params):

• :registry_id (String) —

  The AWS account ID associated with the registry to which you are uploading layer parts. If you do not specify a registry, the default registry is assumed.

• :repository_name (required, String) —

  The name of the repository to which you are uploading layer parts.

• :upload_id (required, String) —

  The upload ID from a previous InitiateLayerUpload operation to associate with the layer part upload.

• :part_first_byte (required, Integer) —

  The integer value of the first byte of the layer part.

• :part_last_byte (required, Integer) —

  The integer value of the last byte of the layer part.

• :layer_part_blob (required, String, IO) —

  The base64-encoded layer part payload.

Returns:

• (Types::UploadLayerPartResponse) —

  Returns a response object which responds to the following methods:

  • #registry_id => String
  • #repository_name => String
  • #upload_id => String
  • #last_byte_received => Integer

See Also:

• AWS API Documentation

# File 'gems/aws-sdk-ecr/lib/aws-sdk-ecr/client.rb', line 2050

def upload_layer_part(params = {}, options = {})
  req = build_request(:upload_layer_part, params)
  req.send_request(options)
end