Ansible role for installing and configuring Zot

Jinja 100%

Find a file

Simon Cornet 3b19d370c0 docs: fix line length lint error		2026-05-08 17:22:38 +02:00
defaults	feat: use new datastructure for dockerhub auth and make cve scanning optional	2026-05-08 13:42:41 +02:00
handlers	feat: add handler	2026-05-08 09:12:17 +02:00
meta	feat: initial commit	2026-05-08 08:34:04 +02:00
roles	feat: add playbook and role	2026-05-08 08:45:11 +02:00
tasks	feat: use new datastructure for dockerhub auth and make cve scanning optional	2026-05-08 13:42:41 +02:00
templates/zot	feat: use new datastructure for dockerhub auth and make cve scanning optional	2026-05-08 13:42:41 +02:00
.ansible-lint	feat: initial commit	2026-05-08 08:34:04 +02:00
.gitignore	feat: initial commit	2026-05-08 08:34:04 +02:00
.gitlab-ci.yml	feat: initial commit	2026-05-08 08:34:04 +02:00
.markdownlint-cli2.jsonc	feat: initial commit	2026-05-08 08:34:04 +02:00
.yamllint	feat: initial commit	2026-05-08 08:34:04 +02:00
playbook.yaml	feat: add playbook and role	2026-05-08 08:45:11 +02:00
readme.md	docs: fix line length lint error	2026-05-08 17:22:38 +02:00
renovate.json	feat: initial commit	2026-05-08 08:34:04 +02:00

readme.md

Ansible Role: Zot

Install and configure Zot - an OCI-native container image registry.

Variables

Variable	Required	Default	Description
`zot_version`	No	`2.1.16`	Zot release version to install
`zot_cve_scanning`	No	`false`	Enable CVE scanning of images
`zot_sync_credentials`	No	undefined	List of sync registry credentials to avoid rate limits

Example

zot_sync_credentials:
  - name: "dockerhub"
    registry: "registry-1.docker.io"
    username: "your-dockerhub-username"
    password: "your-dockerhub-password"

Configuration

The role deploys Zot with the following defaults:

Bind address: 127.0.0.1:5000
Storage: /var/lib/zot
Config: /etc/zot/config.json
Extensions: UI and search (with CVE updates every 24h) enabled
Service: systemd unit on Debian-family systems