Start the clock on removing dockershim in a subsequent release. We already have dockerless tag and CI jobs to ensure that we don't break anything when we eventually drop the built-in dockershim...
Docker has enabled download rate limits for pull requests on Docker Hub. Limits are determined based on the account type.
Sysbox is an open-source container runtime (aka runc), originally developed by Nestybox, that enables Docker containers to act as virtual servers capable of running software such as Systemd, Docker, and Kubernetes in them, easily and with proper isolation. This allows you to use containers in new ways, and provides a faster, more efficient, and more portable alternative to virtual machines in many scenarios.
Dockle - Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start
A simple terminal UI for both docker and docker-compose, written in Go with the gocui library.
slim will build a micro-vm from a Dockerfile. Slim works by building and extracting a rootfs from a Dockerfile, and then merging that filesystem with a small minimal kernel that runs in RAM.
This results in a real VM that can boot instantly, while using very limited resources. If done properly, slim can allow you to design and build immutable unikernels for running services, or build tiny and embedded development environments.
Talos is a modern operating system for Kubernetes that provides a number of capabilities. A few are:
Security: reduce your attack surface by practicing the Principle of Least Privilege (PoLP) and enforcing mutual TLS (mTLS).
Predictability: remove needless variables and reduce unknown factors from your environment using immutable infrastructure.
Evolvability: simplify and increase your ability to easily accommodate future changes to your architecture.
a vault client, but for servers and containers. Contribute to cruise-automation/daytona development by creating an account on GitHub.
A lightweight kubernetes development setup
Portus is an open source authorization service and user interface for the next generation Docker Registry.
It is an on-premise application that allows users to administrate and secure their Docker registries.
A tool for exploring a docker image, layer contents, and discovering ways to shrink your Docker image size.
Fast and flexible Docker image building tool, works on OSX and in containerized environments like Kubernetes
Run containers like a boss
cbi - Container Builder Interface for Kubernetes with support for several backends (Docker, BuildKit, Buildah, kaniko, img, Google Cloud Container Builder, OpenShift Source-to-Image...)
openshift-clair-controller - Openshift Controller for Clair
liman - Basic docker monitoring web application.
kaniko - Build Container Images In Kubernetes
Tern is a software package inspection tool for containers. It's written in Python3 with a smattering of shell scripts