A Very Deep Dive Into Docker Builds

This page summarizes the projects mentioned and recommended in the original post on dev.to

SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com
featured
  1. Packer

    Packer is a tool for creating identical machine images for multiple platforms from a single source configuration.

    So performance cannot be said to be better with Docker, why choose Docker then? Better reasons are that you can strip down a Docker image much easier than an OS. This is critical for us due to security requirements. While Python requires a lot of OS features, the majority of the OS is still bloat. Every piece of bloat is a potential attack vector (each of these unused components might have one or more CVEs that we need to patch, even though we don't even use that software). Another reason is that the build process of Docker is much simpler to manage. There are tools such as Packer that allow similar processes for VMs, but these are not as standardized as the open container initiative (OCI - which Docker adheres to).

  2. SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo
  3. distribution-spec

    OCI Distribution Specification

    So performance cannot be said to be better with Docker, why choose Docker then? Better reasons are that you can strip down a Docker image much easier than an OS. This is critical for us due to security requirements. While Python requires a lot of OS features, the majority of the OS is still bloat. Every piece of bloat is a potential attack vector (each of these unused components might have one or more CVEs that we need to patch, even though we don't even use that software). Another reason is that the build process of Docker is much simpler to manage. There are tools such as Packer that allow similar processes for VMs, but these are not as standardized as the open container initiative (OCI - which Docker adheres to).

  4. k3s

    Lightweight Kubernetes

    Finally the main reason for us is the choice of runtime. We have very decent container runtimes (RKE, RHOS, K3s) available to deploy applications. We are very familiar with them, and they offer us a lot of functionality. These all support containers primarily.

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts

  • I spent more than a week chasing on-prem PLEG unhealthy and sandbox timeouts. What I learned: Avoid runc 1.0.0-rc93 on Centos 7

    3 projects | /r/kubernetes | 28 Apr 2021
  • Which Docker variant am I using and where is the daemon running?

    1 project | dev.to | 26 Dec 2024
  • You're probably not vulnerable to the CUPS CVE

    1 project | news.ycombinator.com | 27 Sep 2024
  • Top 5 Docker Alternatives for Software Developers in 2024

    6 projects | dev.to | 20 Jun 2024
  • Steve Wozniak is not boring

    2 projects | news.ycombinator.com | 11 Jun 2024