// the find
cmliu/CF-Workers-docker.io
这个项目是一个基于 Cloudflare Workers 的 Docker 镜像代理工具。它能够中转对 Docker 官方镜像仓库的请求,解决一些访问限制和加速访问的问题。
A Cloudflare Workers script that proxies Docker Hub requests, primarily useful for users in regions with restricted access to Docker Hub. Deploy it to your own CF Worker domain and point your Docker daemon's registry-mirrors at it. The entire implementation is a single JS file.
The deployment story is genuinely frictionless — paste the JS into a Worker or fork-and-connect for Pages, done in two minutes. It supports multiple upstream registries (docker.io, ghcr.io, gcr.io, k8s registries) not just Docker Hub. The README includes ready-to-paste daemon.json, containerd, and Podman config blocks covering the three main container runtimes. 10k+ stars with a maintained fork count suggests the core proxy logic actually works in practice.
The README warns upfront that this likely violates Cloudflare's ToS (section 2.2.1j on proxy services), and that the hostname-routing deployment mode has gotten people flagged by Netcraft, marked as phishing by Google Safe Browsing, and served with legal threats — that's a meaningful operational risk, not a footnote. There's no authentication, rate limiting, or allow-list on the proxy, so if your Worker URL leaks, anyone can use your CF quota to pull images. The codebase is a single 200-line JS file with no tests, no CI beyond a sync workflow, and no error handling beyond what CF Workers provide by default.