Diun
docker-socket-proxy
Our great sponsors
Diun | docker-socket-proxy | |
---|---|---|
72 | 23 | |
2,609 | 1,200 | |
- | 6.8% | |
9.0 | 5.3 | |
8 days ago | 12 days ago | |
Go | Python | |
MIT License | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Diun
- Is there a tool to monitor container images version locally and notify if there are updates?
-
PSA - Run "docker image prune" once in a while.
Thanks, I used to use it. I moved to using diun to just notify of updates but not apply them though.
-
How you guys update your docker images? Noob here
https://crazymax.dev/diun/ and docker compose
-
Update containers/images to latest version in Docker Desktop (windows)
Similar to Watchtower but without the option to auto-update containers, just notifying is diun. But imo it does that better and more reliable than Watchtower does. You can get notified by Email, Discord, Pushover, Telegram and many more options.
-
Seatch for apps updates notifier app
If your apps are container images, then there are tools like diun, watchtower and whatsupdocker, those can watch the image repository (like Docker Hub) and notify you if a new/updated image has been found. Some can even download and auto-update for you, but that comes at some risk of course.
-
Watchtower Notify Only
You might want to have a look at https://crazymax.dev/diun/ which is purpose built for what you're trying to do (notify when an update is available, but not install).
- [Self Hosted] Existe-t-il un service montrant des mises à jour Docker Container dans la page Visual Fashion / Web Splash?
-
Unable to pull latest image
Watchtower is inferior to a project like DIUN this way. Because with double you can actually be notified by newer image versions and act accordingly. But automatic updates (which latest is aswell) are bad practice.
-
Is there a centralized Docker Container Management for updating containers?
diun is very similar to that, but it doesnt auto-update, just notifies but does that very well imo.
-
Docker Swarm: automatically update service when new image is released
I use https://crazymax.dev/diun/ to send notifications of new images. I also hook it into webbooks with CI for mirroring images, but you should be able to use something like portainer webhooks to auto pull images.
docker-socket-proxy
-
Security for your Homeserver
I just found this the other day. You might be interested I haven't done myself yet https://github.com/Tecnativa/docker-socket-proxy
-
Gitea 1.19.0 released - now with support for Actions
I think you could provide access to the socket using a "docker-socket-proxy" container. It allows other containers to access the docker socket, you can even control which actions are allowed and which are not. You can use a bridge network for the communication to the socket-proxy container, so the socket-proxy container does not need to map/expose any ports. In the other container you need to set the "DOCKER_HOST" env variable accordingly, e.g. "DOCKER_HOST=tcp://mydockersockerproxycontainer:2375". https://github.com/Tecnativa/docker-socket-proxy
-
Unraid Remotely Access Docker Daemon
I use the container docker socket proxy
- Why does next cloud docker installation require access to /var/run/docker.sock (albeit read-only)? Is there a way to circumvent that?
-
Docker socket security
There are Docker socket proxys (like docker-socket-proxy 😉) that are made exactly for this. You can pass only read access to the socket and even restrict what resources can be read.
-
VM with multiple staging hosts GitLab CI?
So far I have Traefik set up and tested (along with some security lockdowns https://github.com/Tecnativa/docker-socket-proxy). This is working well: I can manually create containers, get a cert, dynamic hostnames, etc.
-
Is there any docker dashboard that auto detect the services ?
May be not necessarily: https://github.com/Tecnativa/docker-socket-proxy
-
[How-to] Securing access to your `docker.sock` file.
Many of you might already be familiar with Tecnativa's docker-socket-proxy which says:
-
Basic Traefik configuration tutorial
version: "3.7" services: traefik: image: traefik:v2.6 command: # Entrypoints configuration - --entrypoints.web.address=:80 # Docker provider configuration - --providers.docker=true # Makes sure that services have to explicitly direct Traefik to expose them - --providers.docker.exposedbydefault=false # Use the secure docker socket proxy - --providers.docker.endpoint=tcp://socket_proxy:2375 # Default docker network to use for connections to all containers - --providers.docker.network=traefik_public # Logging levels are DEBUG, PANIC, FATAL, ERROR, WARN, and INFO. - --log.level=info ports: - 80:80 networks: - traefik_public - socket_proxy restart: unless-stopped depends_on: - socket_proxy # https://github.com/traefik/whoami whoami: image: traefik/whoami:v1.7.1 labels: # Explicitly instruct Traefik to expose this service - traefik.enable=true # Router configuration ## Listen to the `web` entrypoint - traefik.http.routers.whoami_route.entrypoints=web ## Rule based on the Host of the request - traefik.http.routers.whoami_route.rule=Host(`whoami.karvounis.tutorial`) - traefik.http.routers.whoami_route.service=whoami_service # Service configuration ## 80 is the port that the whoami container is listening to - traefik.http.services.whoami_service.loadbalancer.server.port=80 networks: - traefik_public # https://github.com/Tecnativa/docker-socket-proxy # Security-enhanced proxy for the Docker Socket socket_proxy: image: tecnativa/docker-socket-proxy:latest restart: unless-stopped environment: NETWORKS: 1 SERVICES: 1 CONTAINERS: 1 TASKS: 1 volumes: - /var/run/docker.sock:/var/run/docker.sock:ro networks: - socket_proxy networks: traefik_public: external: true socket_proxy: external: true
- docker-socket-proxy - Proxy over your Docker socket to restrict which requests it accepts
What are some alternatives?
watchtower - A process for automating Docker container base image updates.
whats-up-docker - What's up Docker ( aka WUD ) gets you notified when a new version of your Docker Container is available.
wireguard-ui - Wireguard web interface
discord-image-downloader-go - A simple tool which downloads pictures posted in discord channels of your choice to a local folder.
cadvisor - Analyzes resource usage and performance characteristics of running containers.
shepherd - Docker swarm service for automatically updating your services whenever their image is refreshed
flap
swarm-cronjob - Create jobs on a time-based schedule on Docker Swarm
docker - ⛴ Docker image of Nextcloud
notify - File system event notification library on steroids.
docker-socket-protector - Protected the Docker Daemon from forbidden requests