Skip to main content
Version: 1.1.0

blobber pull

Download an image from an OCI registry to a local directory.

Synopsis

blobber pull <reference> <directory> [flags]

Description

Downloads all files from an OCI registry image and extracts them to a local directory. By default, fails if any files already exist in the destination.

Arguments

ArgumentRequiredDescription
referenceYesOCI image reference (e.g., ghcr.io/org/repo:tag)
directoryYesDestination directory path

Flags

FlagTypeDefaultDescription
--overwriteboolfalseReplace existing files instead of failing
--insecureboolfalseAllow connections without TLS
-v, --verboseboolfalseEnable debug logging

Verification Flags

FlagTypeDefaultDescription
--verifyboolfalseVerify artifact signature before pulling
--verify-issuerstringRequired OIDC issuer URL (e.g., https://accounts.google.com)
--verify-subjectstringRequired signer identity (e.g., user@example.com)
--verify-unsafeboolfalseAccept any valid signature (unsafe, for development only)
--trusted-rootstringPath to custom trusted root JSON file

Output

Silent on success. Errors are printed to stderr.

Exit Codes

CodeDescription
0Success
1Error (not found, auth failed, conflicts, etc.)

Examples

Pull to a new directory:

blobber pull ghcr.io/myorg/config:v1 ./config

Pull and overwrite existing files:

blobber pull --overwrite ghcr.io/myorg/config:v1 ./config

Pull from an insecure registry:

blobber pull --insecure localhost:5000/test:v1 ./output

Pull with signature verification (production):

blobber pull --verify \
  --verify-issuer https://accounts.google.com \
  --verify-subject developer@company.com \
  ghcr.io/myorg/config:v1 ./config

Pull with verification for GitHub Actions signatures:

blobber pull --verify \
  --verify-issuer https://token.actions.githubusercontent.com \
  --verify-subject https://github.com/org/repo/.github/workflows/release.yml@refs/heads/main \
  ghcr.io/myorg/config:v1 ./config

Pull with verification using custom trusted root:

blobber pull --verify \
  --trusted-root ./custom-root.json \
  --verify-issuer https://auth.internal \
  --verify-subject ci@internal \
  ghcr.io/myorg/config:v1 ./config

Pull with verification accepting any signer (development only):

blobber pull --verify --verify-unsafe ghcr.io/myorg/config:v1 ./config

Conflict Detection

Before downloading, blobber checks for file conflicts. If files would be overwritten:

Error: 3 files already exist (use --overwrite to replace)

With --overwrite, conflicting files are removed before extraction.

Notes

  • Creates the destination directory if it doesn't exist
  • Preserves file permissions from the archive
  • Preserves symbolic links
  • Applies extraction safety limits (see below)

Extraction Limits

Blobber enforces safety limits to prevent resource exhaustion:

LimitValue
Maximum files100,000
Maximum total size10 GB
Maximum file size1 GB

Signature Verification

When --verify is specified:

  1. Signature is checked before downloading the blob
  2. If verification fails, no content is downloaded
  3. Returns ErrNoSignature if no signature exists
  4. Returns ErrSignatureInvalid if verification fails

Note: --verify requires either --verify-issuer + --verify-subject or --verify-unsafe.

Configuration

Verification options can be configured via config file or environment variables:

Config file (~/.config/blobber/config.yaml):

verify:
  enabled: true
  issuer: https://accounts.google.com
  subject: developer@company.com
  trusted-root: /path/to/trusted-root.json

Environment variables:

VariableDescription
BLOBBER_VERIFY_ENABLEDEnable signature verification
BLOBBER_VERIFY_ISSUERRequired OIDC issuer URL
BLOBBER_VERIFY_SUBJECTRequired signer identity
BLOBBER_VERIFY_UNSAFEAccept any valid signature
BLOBBER_VERIFY_TRUSTED_ROOTPath to custom trusted root

See How to Configure Blobber for details.

See Also