Top 23 Go Docker Projects
Moby Project - a collaborative project for the container ecosystem to assemble container-based systemsProject mention: Deep Dive into Docker Internals - Union Filesystem | dev.to | 2021-03-01
// https://github.com/moby/moby/blob/1ef1cc8388165b2b848f9b3f53ec91c87de09f63/daemon/graphdriver/overlay2/overlay.go#L580 opts := fmt.Sprintf("lowerdir=%s,upperdir=%s,workdir=%s", strings.Join(absLowers, ":"), path.Join(dir, "diff"), path.Join(dir, "work")) mountData := label.FormatMountLabel(opts, mountLabel) mount := unix.Mount mountTarget := mergedDir rootUID, rootGID, err := idtools.GetRootUIDGID(d.uidMaps, d.gidMaps) // ...
The Cloud Native Application ProxyProject mention: Traefik and Boreale for auth in Docker. Help needed. | reddit.com/r/docker | 2021-02-26
Hi, just trying to set up Boreale with Traffik, for auth.
Get performance insights in less than 4 minutes. Scout APM uses tracing logic that ties bottlenecks to source code so you know the exact line of code causing performance issues and can get back to building a great product faster.
A tool for exploring each layer in a docker imageProject mention: diff tags? | reddit.com/r/docker | 2021-02-08
have a look at dive
Drone is a Container-Native, Continuous Delivery PlatformProject mention: Best option for docker continual deployment on local server | reddit.com/r/selfhosted | 2021-03-05
My CI server is TeamCity which offers docker Image for the main CI and docker images for agents. It is less modern / sleek then drone.io, but a good fall back if drone.io does not meet your needs.
OpenFaaS - Serverless Functions Made SimpleProject mention: My Ruby on Rails stack for side projects in 2021 | dev.to | 2021-03-01
Complete container management platformProject mention: RIP Flynn.io | news.ycombinator.com | 2021-02-28
Sad news, but I'm not surprised with this. The complete ecosystem was "killed" (if that can be said) with K8s buzz and hipsterism (sorry guys, but I see K8s as Hadoop/BigData of modern days - a solution from a huge company that has no place in 90% setups). Alternatives like Deis  moved to K8s a long time ago. My favorite tool for some time, Rancher , did that as well.
I've been using Dokku  for a few years on a small setup, surprisingly without a single problem, taking into account it was written in "not-so-cool" bash. And I was considering Flynn as the next step if I need to scale it because Dokku doesn't have clustering support (added: looks like clustering support for Dokku is in work ).
After many checks, I got the impression Flynn simply wasn't there yet. Either because of low development pace, low number of supported appliances, or something else, I'm not sure. In the end, I picked up Ansible for more distributed setups.
An open source trusted cloud native registry project that stores, signs, and scans content.Project mention: How would you setup a private docker registry that can "mirror" dockerhub? | reddit.com/r/docker | 2021-02-28
Harbor has this through its proxy cache feature https://goharbor.io
Top-like interface for container metricsProject mention: something similar to k9s but for Docker | reddit.com/r/docker | 2021-03-02
I like ctop
Application Kernel for ContainersProject mention: Building a secure/sandboxed environment for executing untrusted code | dev.to | 2021-01-16
gVisor by Google is a userspace application kernel written in Go. Userspace kernel is a software that runs completely in user-mode and has less privilege (since it runs in user-mode). It also acts as a kernel emulation layer, that means, it can act as a fake kernel and can receive and process system-calls, thus hiding the host kernel. gVisor is compatible with OCI and provides a OCI runtime called runsc that can be used by container management tool like docker as the underlying runtime. (docker uses runc as the default runtime).
Easy and Repeatable Kubernetes DevelopmentProject mention: What do you use for local development? | reddit.com/r/kubernetes | 2021-02-20
skaffold (https://skaffold.dev/) for automating both of the above into a repeatable development workflow with live code reloading when something moves past playing around
OpenID Certified™ OpenID Connect and OAuth Provider written in Go - cloud native, security-first, open source API security for your infrastructure. SDKs for any language. Compatible with MITREid.Project mention: Ory Hydra 1.9: Open-source Golang OAuth2 provider | reddit.com/r/patient_hackernews | 2021-01-13
Easy and fast file sharing from the command-line.Project mention: CSS Deep | dev.to | 2021-02-26
dutchcoders/transfer.sh - Easy and fast file sharing from the command-line.
DockerSlim (docker-slim): Don't change anything in your Docker container image and minify it by up to 30x (and for compiled languages even more) making it secure too! (free and open source)Project mention: Minimal base images roundup | reddit.com/r/kubernetes | 2021-02-21
Yeah in the end distroless is likely always going to be the smallest image, as it really cuts out everything that's not necessary to run your app. You might experiment with taking a debian-slim or minideb image and running it through docker-slim to see if it gets closer to the distroless output: https://github.com/docker-slim/docker-slim
Storage Orchestration for KubernetesProject mention: Deploying a Ceph cluster with Kubernetes and Rook | dev.to | 2021-03-05
git clone https://github.com/rook/rook.git
An open and reliable container runtimeProject mention: How to switch container runtime in a Kubernetes cluster | dev.to | 2021-03-02
Ok now that you are ready to apply the container runtime switch, let's proceed with the changes. I will use containerd as container runtime in this post but the steps below can be adapted to any container runtime (like CRI-O)
CLI tool for spawning and running containers according to the OCI specificationProject mention: Podman: A Daemonless Container Engine | news.ycombinator.com | 2021-02-11
Remember that runc contains quite a few lines of C:
Deliver Go binaries as fast and easily as possibleProject mention: Changie - Automated Changelog Tool | dev.to | 2021-02-20
Probably the most common option, or at least most readily available, is to pull your commit messages since the last release and package it all up. You have tools and formats such as conventional commits combined with standard version can auto-generate changelogs for you. NodeJS's changelog maker does the same thing in one package. GoReleaser has a built-in release notes tool that acts very similarly.
Vulnerability Static Analysis for ContainersProject mention: Architecting your Cloud Native Infrastructure | dev.to | 2021-02-13
Harbor is an OCI compliant registry which is made of various components which includes Docker registry V2, Harbor UI, Clair, Notary, backed by a cache like Redis and a database like Postgres.
A process for automating Docker container base image updates.Project mention: Update Docker containers quickly | reddit.com/r/docker | 2021-02-28
Take a look at watchtower https://github.com/containrrr/watchtower
Kubernetes IN Docker - local clusters for testing KubernetesProject mention: Kubernetes Development Environments - A Comparison by Daniel Thiry | dev.to | 2021-02-24
Local Kubernetes clusters are clusters that are running on the individual computer of the developer. There are many tools that provide such an environment, such as Minikube, microk8s, k3s, or kind. While they are not all the same, their use as a development environment is quite comparable.
A Simple and Comprehensive Vulnerability Scanner for Container Images, Github Repositories and Filesystems. Suitable for CIProject mention: Trivy: scanning your containers for vulnerabilities | dev.to | 2021-02-21
Shift left security refers to moving security sooner in the development process. It aims at having security in mind from the get-go and not when "sh*t hits the fan". One tool that can help us with securing our systems is Trivy.
flannel is a network fabric for containers, designed for KubernetesProject mention: Is it possible to setup Kubernetes without private network | reddit.com/r/kubernetes | 2021-01-19
However, a private VLAN is only one implementation of that. Take a look at Calico's overlay networking or Flannel, using either VXLAN or IPIP. Both wrap your cluster-level communication (private IP to private IP) in a node-level communication packet (public IP to public IP).
Declarative continuous deployment for Kubernetes.Project mention: Helm vs Kustomize - The Fight Between Templating and Patching in Kubernetes | reddit.com/r/kubernetes | 2021-01-26
I think this can be bested summed up by this quote by some of the maintainers of ArgoCD.
What are some of the best open-source Docker projects in Go? This list will help you:
|13||Lean and Mean Docker containers||9,725|