Sign in Subscribe

Docker

Validating Docker Builds with .rego Policies: Because "It Works on My Machine" Isn't a Security Strategy

Validating Docker Builds with .rego Policies: Because "It Works on My Machine" Isn't a Security Strategy

We've all been there. It's 2 AM, the CI pipeline is green, and you ship your container to production feeling like a DevOps rockstar. Then Monday morning rolls around and someone discovers that your Dockerfile pulled a base image from some-dude-on-the-internet/totally-legit-node:latest. Oops. In the
Julius Lisauskas
DHI Customizations - building base Docker Images without a Dockerfile

DHI Customizations - building base Docker Images without a Dockerfile

Because sometimes the best Dockerfile is no Dockerfile at all. The Never-Ending Quest for Smaller Attack Surfaces One of the biggest challenges in modern infrastructure is minimizing the attack surface. In the container world, that essentially means picking the right base image with the smallest imaginable attack vector. If your
Julius Lisauskas
Monitoring Applications with OpenTelemetry, Grafana Alloy, Loki, Tempo & Mimir — A Complete Self-Hosted Observability Stack

Monitoring Applications with OpenTelemetry, Grafana Alloy, Loki, Tempo & Mimir — A Complete Self-Hosted Observability Stack

Modern observability tooling makes big promises. Deploy your .NET services into Azure App Services, tick the right boxes, and the platform conveniently hands you metrics, logs, and traces. Azure Monitor, Application Insights, Log Analytics – they all integrate neatly as long as you never leave the hyperscaler's garden. Move
Julius Lisauskas
We Are Developers: Docker Offload, Docker Model Runner & more...

We Are Developers: Docker Offload, Docker Model Runner & more...

Today, At We Are Developers conference in Berlin, Docker Inc. announced a lot of news, which should be interesting for developers building AI based apps. (and not only them) In short * Docker Offload - A single command to switch between your local development environment and cloud resources, granting you access
Julius Lisauskas
Your personal offline coding assistant with Docker Model Runner and Zed Editor

Your personal offline coding assistant with Docker Model Runner and Zed Editor

Docker has just released a new build of Docker Desktop for Mac users, featuring an exciting new AI capability called "Docker Model Runner". This feature allows you to run large language models (LLMs) directly on your MacBook as easily as running a Docker container. As someone who isn’
Julius Lisauskas
Docker Bake is here!

Docker Bake is here!

Docker just announced that Docker Bake has reached the GA. And that is huge news! As a docker captain and containers fan in general, I've already experimented with it in the past, and in my personal view, it's amazing. In this blog post, I'm
Julius Lisauskas
Deploying Docker Registry with Granular Access Control, TLS & S3

Deploying Docker Registry with Granular Access Control, TLS & S3

Deploying a self-hosted Docker registry might seem like a simple task, and there are many guides available on how to do it. However, most of these guides cover only the basics. One of the biggest limitations I encountered was the inability to configure different access rights for each user. This
Julius Lisauskas