Concepts | Regis

📄️Introduction

regis is a command-line tool designed to analyze container image registries, evaluate security playbooks, and generate comprehensive reports. It provides deep visibility into container image metadata and security posture, enabling automated policy enforcement in CI/CD environments.

📄️Analyzers

regis uses a pluggable architecture where separate Analyzers are responsible for extracting specific types of data from container images or their build artifacts.

📄️Playbooks

Playbooks are the core of the regis evaluation engine. They define the security and compliance rules that the tool evaluates against container image metadata.

📄️Rules and criteria

Rules are the evaluation heart of Regis. A rule is the policy decision your

📄️Scoring & Metrics

regis doesn't just provide raw data; it translates analysis results into actionable Scores and Metrics based on your security and operational policies. Scores are derived from rules and displayed in reports.

📄️Reports

One of the core missions of regis is to bridge the gap between automated tools and human review through Visual Excellence. Reports display the results of rule evaluation and the overall score.