Advice about encrypting docker images before pushing to container registry?

I’ve been thinking, private container registries are cool but I kind of don’t completely trust GitHub and their free container registries that almost let me store infinite data (can’t recall the TOS rn sry), and kubernetes is pretty good about managing secrets, so why shouldn’t I have k8s decrypt docker images so that I can push them encrypted to any free tier container registry. Is what I’m saying making sense?