k8s-apps/kaniko/README.md

🏗️ Kaniko

Description

Kaniko is a container image builder designed to run inside containers and Kubernetes.
It allows building Docker images without requiring a Docker daemon, making it ideal for secure, cloud-native environments.

Kaniko executes Dockerfile instructions in userspace and pushes the resulting image directly to a container registry.

Website

https://github.com/GoogleContainerTools/kaniko

Kubernetes Notes

• Does not require privileged containers (unlike Docker-in-Docker)
• Typically runs as:
  • Kubernetes Job
  • CI/CD pipeline step (e.g. ArgoCD, GitLab CI)
• Requires access to:
  • build context (Git repo, PVC, or object storage)
  • container registry (push credentials)