Insecure Registries

Inspektor Gadget allows pulling, pushing and running Gadget images from insecure (plain-HTTP) only registries. This is controlled with the --insecure-registries flag:

kubectl gadget

For kubectl gadget, it can only be configured at deploy time. Start by creating a daemon config file:

cat <<EOF > daemon-config.yaml
operator:
  oci:
    insecure-registries:
    - 192.168.1.16:5000
    - localhost:5000
EOF

$ kubectl gadget deploy --daemon-config=daemon-config.yaml
...

$ kubectl gadget run 192.168.1.16:5000/trace_exec:latest
...

ig

$ sudo ig image pull 192.168.1.16:5000/trace_exec:latest --insecure-registries="192.168.1.16:5000"
...

$ sudo ig run 192.168.1.16:5000/trace_exec:latest --insecure-registries="192.168.1.16:5000"