Docker compose supports the use of profiles to start services conditionally or on-demand. This is useful to mark some services as optional. The use of required: false depends_on relationships allows to retain the startup ordering if needed. Continue reading →
The post Optional Docker services and dependencies first appeared on Narf.
ソースコードや設定ファイルに含まれるAPIトークンやパスワードなどの機密情報を見つけるSecretlintのv12.0.0をリリースしました。
このバージョンでは、次のように追加で検知できるようになったサービスが10個あります。
あわせて、@secretlint/secretlint-rule-preset-recommendのパッケージサイズを約80%削減しています。
##…
On May 21, 2026, GitLab 19.0 was released with the following features.
We’d also like to announce this month’s Notable Contributor: Norman Debald!
We are excited to recognize Norman, a Level 3 contributor with more than 40 merged improvements across GitLab since joining in May 2022.
A modern web server and reverse proxy written in Go that provisions and renews TLS certificates automatically — the simplest path to HTTPS for self-hosted services.
Traefik (pronounced "traffic") is a reverse proxy built for dynamic environments. Where Nginx requires you to restart the process after every config change, Traefik watches your Docker socket or Kubernetes API and reconfigures itself in real time as containers start and stop. This makes it the natural choice for containerized microservices.
Core Concepts
OpenHands (formerly OpenDevin) is an open-source platform for AI software engineering agents. Unlike Cursor or Windsurf which are IDEs with AI assistance, OpenHands is a platform where AI agents operate autonomously, writing code, executing shell commands, browsing the web, and iterating until a task is complete.
How OpenHands Works
OpenHands runs agents inside isolated Docker containers. The…
Debian 13.5 bundles a huge collection of security updates and bug fixes, reminding Linux users why stable, reliable distributions still matter.
So bringst du deine Webseite ins Fediverse: GoToSocial auf einem VPS installieren, Nginx konfigurieren und Blogbeiträge automatisch per RSS veröffentlichen.
Unraid 7.3 erfüllt einen lange gehegten Anwenderwunsch. Die Installation kann jetzt auch auf internen Medien wie SSD, NVMe oder eMMC vorgenommen werden.
Helm is the package manager for Kubernetes. It packages a set of Kubernetes manifests into a chart, parameterised by values, that can be installed, upgraded, rolled back, and shared via repositories. Helm charts are the standard distribution format for installable Kubernetes applications.
Core concepts
A container runtime is the software component that actually creates and runs containers from an OCI image. It manages namespaces, cgroups, mount points, capabilities, and the container process lifecycle. Higher-level tools (Docker, Kubernetes) delegate the final "run this container" step to a runtime.
Two levels of runtime
An image layer is one immutable filesystem diff that, when stacked with the layers above and below it, forms a complete container image. Each Dockerfile instruction (FROM, COPY, RUN, ADD) typically produces one layer. Layers are content-addressable: identical layers are stored once and shared across images.
How layers compose
An image is described by a manifest: an ordered list of layer…
Podman is an open-source container engine compatible with the Docker CLI but architected without a long-running root daemon. Containers run as a regular user, in a rootless namespace, with a pod abstraction borrowed from Kubernetes. Podman is the default container engine on Red Hat Enterprise Linux and Fedora.
How it differs from Docker
Docker Compose is a tool for defining and running multi-container applications on a single host using a declarative YAML file. It is the standard way to spin up a local development environment with a database, a cache, the application server, and any other supporting services in one command.
How it works
A docker-compose.yml (or compose.yaml) file declares services, networks, volumes, and…
BuildKit is the modern build backend for Docker and the OCI ecosystem. It replaces the original Docker builder with a concurrent, cache-aware engine that builds OCI images from Dockerfiles much faster and with finer control.
Key capabilities
The Open Container Initiative (OCI) is an open governance body, hosted by the Linux Foundation, that maintains the standard specifications for container images, runtimes, and distribution. OCI specs are why a container built with one tool runs on another, and why Docker, Podman, Kubernetes, and cloud platforms can interoperate.
The three specs
containerd is an industry-standard container runtime daemon that manages the complete container lifecycle on a host: image pull and storage, container execution, snapshotting, and networking. It is the runtime that Kubernetes, Docker, and most container platforms call underneath.
How it fits
Container tooling is typically layered. Docker and Kubernetes are high-level interfaces; they delegate…
Welcome to our April 2026 report from the Reproducible Builds project!
Our reports outline what we’ve been up to over the past month, highlighting items of news from elsewhere in the increasingly-important area of software supply-chain security. As ever, if you are interested in contributing to the Reproducible Builds project, please see the Contribute page on our website.
In this month’s…
Technology is evolving faster than the language we use to describe it. As a result, people are often talking past each other about what software, AI and automation are. These are treated as single categories when in reality they contain several fundamentally different disciplines and economic models. And when reality changes faster than our language, confusion follows.
That’s roughly where we…
Since the early 1950s, software has slowly moved from an obscure technical discipline to something that touches almost every person’s life every day. The transition was gradual at first. Most people didn’t have direct access to computers, but the businesses they interacted with did. Computers sat in back rooms quietly changing how companies handled inventory, accounting and customer…
Podman is a drop-in replacement for Docker. I chose it because Justus suggested me to look into it while I was interviewing him for the DWeb blog, and other friends encouraged me to try it in multiple occasions.
By learning more about it, I found its advantages and its architecture to be very interesting, while remaining relatively simple, and (to the extent of my usage so far) completely…
Finally publishing to my cluster using Gitea Actions
Erinnerungen führen uns zurück in erlebte Situationen. Google dokumentiert unsere bewegten Erinnerungen in seiner Timeline. Mit Dawarich gelingt das auch ohne Google und es gibt sogar einen Mehrwert obendrauf.
Step-by-step setup for linking CodeBuild and CodePipeline: IAM roles, buildspec, artefacts, permissions and troubleshooting.
All the Steps I took to get my Gitea server ready for Gitea Actions
Compare 10 leading API documentation tools by features, pricing, interactivity, and ideal use cases.
submitted by fishinthecalculator to docker
1 points | 0 comments
https://codeberg.org/fishinthecalculator/guix-compose
The job description is thorough and well-considered, and the pay is excellent, as are the benefits (among which are 100% company-paid for employees and dependents!). This is a high-ranking Eh, It's Probably Fine.
最近話題の MCP (Model Context Protocol)、皆さんはもう使っていますか? Claude DesktopやCursor、そして最近登場したClaude Codeなど、MCP対応のAIツールが増える中で、「結局どのサーバーを入れればいいの?」と迷っている方も多いはず。 この記事では、最近の注目ツール(Draw.ioなど)から、開発効率を爆上げする...
Mit Journiv stellt sich ein selbst gehostetes Tagebuch vor. Die noch in der Beta-Phase befindliche Anwendung hat kürzlich eine Integration der Fotodatenbank Immich erhalten.