Our great sponsors
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
There are some subtle differences between tools that generate Docker images.
As seen in this Dive issue[1], Google's Kaniko uses a different naming convention for the config files. Docker config files are called .json, Kaniko are "sha256:".
In addition to Dive, there's also Whaler https://github.com/P3GLEG/Whaler which will print out a Dockerfile from the image, based on the metadata in the image.
You can also use Portainer https://www.portainer.io/ which will show the image layer details in the images section.
Google forensic team also maintain an Docker introspection tool : https://github.com/google/Docker-Explorer
10 months ago /bin/sh -c #(nop) LABEL org.label-schema.vendor=tmknom org.label-schema.name=tmknom/prettier org.label-schema.description=Prettier is an opinionated code formatter. org.label-schema.build-date=2020-04-29T06:34:01Z org.label-schema.version=2.0.5 org.label-schema.vcs-ref=35d2587 org.label-schema.vcs-url=https://github.com/tmknom/prettier org.label-schema.usage=https://github.com/tmknom/prettier/blob/master/README.md#usage org.label-schema.docker.cmd=docker run --rm -v $PWD:/work tmknom/prettier --parser=markdown --write '**/*.md' org.label-schema.schema-version=1.0 0B
Obligatory self promotion: https://github.com/nanoscopic/mtsc
It is a tool I created myself for figuring out the contents of layered docker images.
It does these things:
1. Compares two docker images to see exact file differences
2. Diffs the contents of two directory structures
3. Views contents of a docker image without mounting it or using docker itself
4. Generates a standalone index of the contents of a docker image
5. Determines the resultant layer composition of a directory within a docker image
6. Extracts a specific pathed file from a layered docker image
It is extremely helpful when trying to determine the exact differences between two different builds of the same Dockerfile.
Related posts
- Scanning Millions Of Publicly Exposed Docker Containers - Thousands Of Secrets Leaked
- Here is VEDV, A tool for developing applications with virtual machines using a Docker-like workflow.
- Here is VEDV for kubernetes community, A tool for developing applications with virtual machines using a Docker-like workflow.
- Here is VEDV for Node.js developers, A tool for developing applications with virtual machines using a Docker-like workflow.
- Here is VEDV written in pure BASH, A tool for developing applications with virtual machines using a Docker-like workflow.