Hacker News with Generative AI: Docker

Good Docker Files (gooddockerfiles.com)
Not sure about your Dockerfile? Confused? Overwhelmed? Get expert guidance for production-ready containers that are faster, smaller and more secure.
Docker Desktop Broken on Mac OS Update for over a Week (dockerstatus.com)
Some users are seeing an issue starting Docker Desktop on macOS where macOS reports that either com.docker.vmnetd or com.docker.socket is malware.
Show HN: Simple Docker Hosting (sliplane.io)
With Sliplane, shipping containers becomes incredibly easy and affordable. Our "Pay-per-Server" model enables you to host unlimited containers on each server for one fixed price.
Malware detection prevents Docker Desktop to start on macOS (github.com/docker)
Tell HN: macOS is currently detecting Docker as malware (ycombinator.com)
I just finished porting my projects canonical build process to Docker a few days ago, and had a rude awakening today when MacOS declared Docker malware and deleted its executable.
macOS is detecting Docker as a malware and keeping it from starting (github.com/docker)
Malware Blocked. “com.docker.socket” was not opened because it contains malware. this action did not harm your Mac.
Unauthorized image of Kong Ingress Controller v3.4.0 (github.com/Kong)
On December 23, 2024, an unauthorized image of Kong Ingress Controller v.3.4.0 (hash: sha256:a00659df0771d076fc9d0baf1f2f45e81ec9f13179f499d4cd940f57afc75d43) was uploaded to DockerHub containing code that enabled cryptojacking in the form of calls to a crypto mining site pool.supportxmr.com.
Whalewall: Automate management of firewall rules for Docker containers (github.com/capnspacehook)
Automate management of firewall rules for Docker containers.
PHP Docker image just hit 1B pulls on Docker Hub (mydevmentor.com)
So, the official PHP Docker image just hit a mind-blowing milestone:
Install postmarketOS on Android phone and use Docker as a home server (crackoverflow.com)
In this tutorial, we will guide you through the process of installing Docker on your Android phone, specifically using a OnePlus 6T with postmarketOS. I also wrote another blog post explaining how you can run this phone without a battery, allowing it to run forever as long as it remains connected to a power source. If you’re interested, feel free to check it out!
Show HN: Checkmate, a server and infrastructure monitoring application (github.com/bluewave-labs)
Checkmate is an open source uptime manager, server & Docker monitoring tool used to track the operational status and performance of servers and websites.
Show HN: SQL Simulator – Create Subsetted Databases in Docker or K8s (tribalknowledge.tech)
In laymen's terms SQL Simulator uses SQL scripts to generate subsetted databases within a secure Sandbox environment.
Ask HN: Why did K8s win against Docker Swarm? (ycombinator.com)
Docker Swarm Classic (https://github.com/docker-archive/classicswarm) is dead. Docker Swarm Mode is alive, and I know some people use it, but it's very niche compared to k8s.
Bocker: Docker implemented in around 100 lines of Bash (2015) (github.com/p8952)
Docker implemented in around 100 lines of bash.
Deep Dive into Linux Networking and Docker – Bridge, VETH and IPTables (medium.com)
Linux Networking is a very interesting topic. In this series, my aim is to dig deep to understand the various ways in which these container orchestration platforms implement network internals underneath.
Docker Networking Internals: How Docker Uses Linux Iptables and Interfaces (securitynik.com)
I started playing with docker a while ago, and like most people I was instantly impressed with its power and ease of use.
Rust for AWS Lambda, the Docker Way (beeb.li)
Rust is a great language to consider when writing services for AWS Lambda, because of its extremely low start-up time, CPU usage and memory footprint.
Lazy Docker: The lazier way to manage everything Docker (github.com/jesseduffield)
A simple terminal UI for both docker and docker-compose, written in Go with the gocui library.
Docker and OCI Hardening Guide (wonderfall.dev)
Containers aren’t that new fancy thing anymore, but they were a big deal. And they still are. They are a concrete solution to the following problem:
Getting Docker to not suck for Development (taylormadetech.dev)
The short, sharp, and shiny of it all is docker containers usually run as root, so when you mount your local file system to it, it writes files as root to your machine. This bugs me and causes issues. The fix is to build your docker image with a non-root user that has your UID and GID. You can see my example in this zip file.
Run macOS in a Docker Container (github.com/dockur)
OSX (macOS) inside a Docker container.
Docker Compose Isn't Enough (tealok.tech)
Docker Compose creates problems as you scale a single server to many applications. We should learn from it and build something better.
OS X (macOS) inside a Docker container (github.com/dockur)
OSX (macOS) inside a Docker container.
Docker lays off 10% of its employees (layoffs.fyi)
Show HN: Monadic Chat – A Docker-Based Framework for AI Interaction (yohasebe.github.io)
Flox, a better alternative to Dev Containers (medium.com)
On paper, Dev Containers are great to define and share development environments easily. Actually using them is not that great: lack of reproducibility, integrating host files in containers, difference in implementations between various tools…
Fast Development with Zed and Dev Containers (medium.com)
Ever found yourself saying “but it works on my machine” or spent hours setting up a development environment for a new team member? Dev Containers might just be the solution you’re looking for, and now you can use them with the blazingly fast Zed editor.
Developing with Docker (danielquinn.org)
You'd think that this topic would have been done to death, but given that every job I've started in the past 10+ years has used Docker differently (if at all) to varying degrees of success, I feel like we need some sense of consensus around how to Do This Right™. And, as someone with an ego the size of a small moon, I'm here to decide what's right... on my own blog anyway.
PID 1 Bash script for Docker containers explained line by line (sirikon.me)
You wake up one morning, feeling bit spicy, daring to break rules, but you aren't the bravest one in town, so you choose something easy: "Let's break that rule about only running one process in a container".
Wayland Apps in WireGuard Docker Containers (procustodibus.com)
Running WireGuard in a Docker container can be a convenient way to isolate a WireGuard network from the rest of a system.