Pushing & Pulling Container ImagesΒΆ

wf2wf can push OCI images it builds via --auto-env build to a registry.

Common registriesΒΆ

Registry

Push URL

Auth method

GitHub Container Registry (GHCR)

ghcr.io/<org>/<image>

`echo $CR_PAT

Docker Hub

docker.io/<user>/<image>

docker login

Amazon ECR

<aws_account>.dkr.ecr.<region>.amazonaws.com/<repo>

`aws ecr get-login-password

Google Artifact Registry

us-central1-docker.pkg.dev/<proj>/<repo>/<image>

gcloud auth configure-docker

CLI flagsΒΆ

wf2wf convert … --auto-env build --push-registry ghcr.io/myorg

If --push-registry is omitted, images stay in the local daemon.

Private registriesΒΆ

Set username/password via standard Docker config or use:

docker login <registry>
export WF2WF_REGISTRIES=<registry>

wf2wf will probe all registries listed in the env var for existing images before building anew.

Troubleshooting pushesΒΆ

  • 403 Forbidden – token lacks write:packages (GHCR) β†’ regenerate PAT.

  • connection timeout – corporate firewall β†’ use proxy or mirror registry.

  • manifest invalid – disable experimental features if using rootless Docker.