Fixing Dockerfile Smells: An Empirical Study (ICSME 2022)

•

0 likes•92 views

Background. Containerization technologies are widely adopted in the DevOps workflow. The most commonly used one is Docker, which requires developers to define a specification file (Dockerfile) to build the image used for creating containers. There are several best practice rules for writing Dockerfiles, but the developers do not always follow them. Violations of such practices, known as Dockerfile smells, can negatively impact the reliability and the performance of Docker images. Previous studies showed that Dockerfile smells are widely diffused, and there is a lack of automatic tools that support developers in fixing them. However, it is still unclear what Dockerfile smells get fixed by developers and to what extent developers would be willing to fix smells in the first place. Objective. The aim of our exploratory study is twofold. First, we want to understand what Dockerfiles smells receive more attention from developers, i.e., are fixed more frequently in the history of open-source projects. Second, we want to check if developers are willing to accept changes aimed at fixing Dockerfile smells (e.g., generated by an automated tool), to understand if they care about them. Method. In the first part of the study, we will evaluate the survivability of Dockerfile smells on a state-of-the-art dataset composed of 9.4M unique Dockerfiles. We rely on a state-of-the-art tool (hadolint) for detecting which Dockerfile smells disappear during the evolution of Dockerfiles, and we will manually analyze a large sample of such cases to understand if developers fixed them and if they were aware of the smell. In the second part, we will detect smelly Dockerfiles on a set of GitHub projects, and we will use a rule-based tool to automatically fix them. Finally, we will open pull requests proposing the modifications to developers, and we will quantitatively and qualitatively evaluate their outcomes. Giovanni Rosa, Simone Scalabrino, and Rocco Oliveto (University of Molise) https://arxiv.org/abs/2208.09097

Software

Fixing Dockerfile Smells:
An Empirical Study
Giovanni Rosa, Simone Scalabrino and Rocco Oliveto
University of Molise, Italy
ICSME ’22 Registered Reports - Oct 6th 2022
Limassol, Cyprus

Containers in production environments
2020 2023 2025
85%
of organizations
will adopt
containers

Why Docker?
#1 Most-Wanted
and
#1 Most Loved
tool

Docker in a nutshell
Dockerfile Image Container
Registry
“hub”
push
pull
run
build
base image

How to measure Dockerfile quality?
I’M
FLAWLESS!

Haskell
Dockerfile Linter
How to measure Dockerfile quality?

Smells can negatively affect Docker images
Image size
Build
reliability
Security
vulnerabilities

84%
of 70000 Dockerfiles
contain smells
2017
Cito et. al

“Version pinning smell
is the biggest quality issue
[…]
there is a declining trend of
Dockerfile smells”
Eng et. al 2021

It is not clear what smells are
relevant and need to be fixed

Lack of advanced supporting
tools for developers
It is not clear what smells are
relevant and need to be fixed

Smell survivability
Fix
recommendations
Empirical
Study

How do developers fix
Dockerfile smells?
RQ 1

RQ1
9.4M
unique Dockerfiles
from 2013 to 2020
Dockerfile
snapshots
over time

Smell
survivability
RQ1
Extraction of
smell-fixing
commits
Dockerfile
snapshots
over time

RQ1
Extraction of
smell-fixing
commits
Dockerfile
snapshots
over time
Manual
validation
(1000 commits)

Manual validation
smelly not smelly
smelly not smelly

Extraction of
smell-fixing
commits
Dockerfile
snapshots
over time
Manual
validation
(1000 commits)
Smell
survivability
RQ1

Which Dockerfile
smells are developers
willing to address?
RQ 2

Eng et. al 2021
8+
smells
RQ2
11.5M
commits
Most frequent
and fixed smells

hadolint wiki
RQ2
Most frequent
and fixed smells
Rule-based
Refactoring tool

RQ2
Most frequent
and fixed smells
Rule-based
Refactoring tool
Refactoring
recommendations
Responses from
developers

Not Accepted Accepted
Pending
Response status
RQ2
Most frequent
and fixed smells
Rule-based
Refactoring tool
Refactoring
recommendations
Responses from
developers
Evaluation

Giovanni Rosa
University of Molise, Italy
giovanni.rosa@unimol.it
Summary

What's hot

Getting Started with DevOps

Ahmed Misbah

Are you sick of Merge Hell? Do your feature branches go rogue? Do you spend more time fiddling with your Version Control System than doing actual development work? Then Trunk Based Development might be for you. Facebook does it. Google does it. Instead of messing with multiple branches, just use your master branch. Always. In addition to giving you an overview about how Trunk Based Development works, where it shines and where the pitfalls are, this talk will also cover the necessary techniques to succeed with it, such as Branch By abstraction, Feature Toggles and backwards compatible Database Migrations.

Trunk based development

go_oh

Contributing to Open Source - A Beginners Guide

DataWorks Summit/Hadoop Summit

EDGECAST ROUTE: THE WORLD’S FASTEST DNS SERVICE This presentation gives an in-depth explanation about EdgeCast Route, the company’s new globally distributed DNS (Domain Name System) service. DNS is required to ensure that a web site is available to end users, yet it is often neglected, under-prioritized, or deployed on old and insecure infrastructure. This means that many online enterprises are at risk for degraded performance, malicious attacks, or worse – being unreachable via their domain names. After an extensive review of the existing DNS market, EdgeCast sees an opportunity to offer enterprise-grade DNS features and functionality with a simple and cost-effective pricing structure. Customers switching from competitors are likely to realize significant savings while benefiting from vastly superior performance and functionality.

DNS: EdgeCast Route - Technical DNS Service Overview

Verizon Digital Media Services

Linux automated tasks

yarden hanan

Shell Scripting in Linux

Anu Chaudhry

Pair Programming Presentation

ThoughtWorks

C# conventions & good practices

Tan Tran

F strings

Mariatta Wijaya

Python | What is Python | History of Python | Python Tutorial

QA TrainingHub

Python Exception Handling

Megha V

Clean Code 閱讀心得

Jz Chang

This is a two-day course in Python programming aimed at professional programmers. The course material provided here is intended to be used by teachers of the language, but individual learners might find some of this useful as well. The course assume the students already know Python, to the level taught in the Python Foundation course: http://www.slideshare.net/Kevlin/python-foundation-a-programmers-introduction-to-python-concepts-style) The course is released under Creative Commons Attribution 4.0. Its primary location (along with the original PowerPoint) is at https://github.com/JonJagger/two-day-courses/tree/master/pa

Python Advanced – Building on the foundation

Kevlin Henney

Continuous Delivery is a process that merges Continuous Integration with automated deployment, test, and release; creating a Continuous Delivery solution. Continuous Delivery doesn't mean every change is deployed to production ASAP. It means every change is proven to be deployable at any time. We would see how we can enable CD with Jenkins. Please check out The Remote Lab's DevOps offerings: www.slideshare.net/bhalothia/the-remote-lab-devops-offerings http://theremotelab.io

Jenkins - From Continuous Integration to Continuous Delivery

Virendra Bhalothia

App armor structure

Longbeo Longnhat

Unix- the process

Dr. Girish GS

Are you searching for ways to ensure your design system stays relevant in the ever-changing digital landscape? Join T. Rowe Price's Beacon Engineering Lead as they share their insight on building a design system using a web standards-first approach. Discover the reasons behind their decision to pivot away from developing for multiple frameworks used at the firm and towards a more streamlined solution. Learn how utilizing browser standards such as web components, CSS variables, and more have helped increase throughput, consistency, and accessibility. Don't miss this opportunity to gain valuable insights and strategies for creating a design system that remains adaptable while providing delightful customer and developer experiences.

Building Sustainable Design Systems

UXDXConf

Introduction 2 linux

Papu Kumar

2019/7/27 先別開 Branch 了，你聽過 Feature Toggle 嗎？

Miles Chou

Vi Editor

Shiwang Kalkhanda

What's hot (20)

Getting Started with DevOps

Trunk based development

Contributing to Open Source - A Beginners Guide

DNS: EdgeCast Route - Technical DNS Service Overview

Linux automated tasks

Shell Scripting in Linux

Pair Programming Presentation

C# conventions & good practices

F strings

Python | What is Python | History of Python | Python Tutorial

Python Exception Handling

Clean Code 閱讀心得

Python Advanced – Building on the foundation

Jenkins - From Continuous Integration to Continuous Delivery

App armor structure

Unix- the process

Building Sustainable Design Systems

Introduction 2 linux

2019/7/27 先別開 Branch 了，你聽過 Feature Toggle 嗎？

Vi Editor

Similar to Fixing Dockerfile Smells: An Empirical Study (ICSME 2022)

Docker is the most diffused containerization technology adopted in the DevOps workflow. Docker allows shipping applications in Docker images, along with their dependencies and execution environment. A Docker image is created using a configuration file called Dockerfile. The literature shows that quality issues, such as violations of best practices (i.e., Dockerfile smells), are diffused among Docker artifacts. Smells can negatively impact the reliability, leading to building failures, poor performance, and security issues. In addition, it is unclear to what extent developers are aware of those quality issues and what quality aspects are correlated with the adoption of a Docker image. As evaluated in the literature, composing high-quality Dockerfiles and Docker images is not a trivial task. In this research, we aim to propose approaches and techniques to assess and improve the quality of Dockerfiles and Docker images. First, starting from the resolution of Dockerfile smells, we aim to improve the internal and then the related external quality aspects that also affect the developers’ preference and the perceived quality when they adopt a Docker image. Next, we want to employ that knowledge in the automated generation of high-quality Dockerfiles and Docker images. Giovanni Rosa, Simone Scalabrino, and Rocco Oliveto (University of Molise) DOI 10.1109/ICSME55016.2022.00081

Assessing and Improving the Quality of Docker Artifacts (ICSME 2022)

Giovanni Rosa

Docker is a containerization technology that allows developers to ship software applications along with their dependencies in Docker images. Developers can extend existing images using them as base images when writing Dockerfiles. However, a lot of alternative functionally-equivalent base images are available. While many studies define and evaluate quality features that can be extracted from Docker artifacts, it is still unclear what are the criteria on which developers choose a base image over another. In this paper, we aim to fill this gap. First, we conduct a literature review through which we define a taxonomy of quality features, identifying two main groups: Configuration-related features (i.e., mainly related to the Dockerfile and image build process), and externally observable features (i.e., what the Docker image users can observe). Second, we ran an empirical study considering the developers’ preference for 2,441 Docker images in 1,911 open-source software projects. We want to understand (i) how the externally observable features influence the developers’ preferences, and (ii) how they are related to the configuration-related features. Our results pave the way to the definition of a reliable quality measure for Docker artifacts, along with tools that support developers for a quality-aware development of them. Giovanni Rosa (a), Simone Scalabrino (a), Gabriele Bavota (b), and Rocco Oliveto (a) a) STAKE Lab, University of Molise, Italy b) Software Institute, USI Università della Svizzera Italiana, Switzerland DOI: https://doi.org/10.1145/3603111 Preprint: https://giovannirosa.com/assets/pdf/rosa2023qualityaspects.pdf

What Quality Aspects Influence the Adoption of Docker Images?

Giovanni Rosa

StackEngine Problem Space Demo

Boyd Hemphill

StackEngine has talked to over 100 businesses about the direction and needs of companies ranging from start ups still in Stealth mode to the Fortune 100. Combine these learnings with the features currently included in the StackEngine Controller and a solution to production operation begins to come to light. To think about a production operation we: * Establish the characteristics of an ideal containerized application. * Motivate those characteristics in terms of business benefit. * Discuss the "final mile" problem of taking a containerized service and making it available to the operations team. * Now that containers are running, how do we inventory what we have and the state that it is in? * Demo Host, Container and Search pages as a means of inventory management. * When our monitoring tells us something is wrong on a host, what do we do? * How do services find each other? * Discuss how StackEngine will provide service discovery. * Provide a roadmap overview

StackEngine Demo - Boston

Boyd Hemphill

Docker Enables DevOps - Boston

Boyd Hemphill

Common primitives in Docker environments

alexandru giurgiu

Docker_Interview_Questions__Answers.pdf

RifqiMultazamOfficia

Getting started with docker

Saim Safder

In this session, we will learn what is Docker and what was the need for it. We will also take a look at the benefits of Docker, and the concept behind containerization. We will learn some core Docker concepts such as Docker images, Dockerfiles, Docker Hub, etc. I will also show the Docker commands in action in the terminal and we will also take a look at an actual Dockerfile being used in an open-source project. Finally, we will take a high-level look at the Docker architecture and understand how things work in Docker and what is the flow of commands.

Docker

Knoldus Inc.

DockerCon SF 2015: Keynote Day 1

Docker, Inc.

Using Docker and Elastic Beanstalk in Production

Ryan Marr

What is Docker & Why is it Getting Popular?

Mars Devs

StackEngine Problem Space Demo

Boyd Hemphill

Docker talk unicom DevOps summit London

Pini Reznik

Ignite 2016 - Docker Overview

Taylor Brown

Boycott Docker

Paolo Tonin

Docker, Cloud Foundry, Bosh & Bluemix

IBM

Dockerizing development workflow

Orest Ivasiv

Docker: do's and don'ts

Paolo Tonin

How to Dockerize Angular, Vue and React Web Apps

Belatrix Software

Similar to Fixing Dockerfile Smells: An Empirical Study (ICSME 2022) (20)

Assessing and Improving the Quality of Docker Artifacts (ICSME 2022)

What Quality Aspects Influence the Adoption of Docker Images?

StackEngine Problem Space Demo

StackEngine Demo - Boston

Docker Enables DevOps - Boston

Common primitives in Docker environments

Docker_Interview_Questions__Answers.pdf

Getting started with docker

Docker

DockerCon SF 2015: Keynote Day 1

Using Docker and Elastic Beanstalk in Production

What is Docker & Why is it Getting Popular?

StackEngine Problem Space Demo

Docker talk unicom DevOps summit London

Ignite 2016 - Docker Overview

Boycott Docker

Docker, Cloud Foundry, Bosh & Bluemix

Dockerizing development workflow

Docker: do's and don'ts

How to Dockerize Angular, Vue and React Web Apps

Recently uploaded

Software Quality Assurance Interview Questions

Arshad QA

Announcing Codolex 2.0 from GDK Software

Jim McKeeth

(Vivek)Call Us, 8448380779,Call girls in Delhi NCr – We Offer best in class call girls. escort Service At Affordable Price At low Rate with Space Night 8000 We Are One Of The Oldest Escort and Call girls Agencies in Delhi. You Will Find That Our Female Escorts Are Full Of Fun, Sexy And They Would Love Enjoy Your Company. We Have A Fantastic Selection Of Escort Ladies Available For In-Calls As Well As Out-Calls. Our Escorts Are Not Only Beautiful But All Have Great Personalities Making Them The Perfect Companion For Any Occasion. In-Call:- You Can Come At Our Place in Delhi Our place Which Is Very Clean Hygienic 100% safe Accommodation. Out-Call:- You have To Come Pick The Girl From My Place We Are Also Provide Door Step Services (Delhi Ncr, Noida, Gurgaon, Faridabad, Ghaziabad Note:- Pic Collectors Time Passers Bargainers Stay Away As We Respect The Value For Your Money Time And Expect The Same From You Hygienic:- Full Ac room And Clean Rooms Available In Hotel 24 * 7 Hourly In Delhi NCR More Details, With WhatsApp Number, +91-8448380779

call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️

Delhi Call girls

10 Trends Likely to Shape Enterprise Technology in 2024

Mind IT Systems

We specialize in Psychic Readings, Psychic Love Spells, Binding Love Spells, Obsession Spells, Voodoo Spells, Lottery Spells, Marriage Spells, Black Magic Spells, Palm Readings & much more. Are you depressed? We perform this come-to-me love spell that works instantly with the aim of bringing back the victim to the person performing the magic. Have you lost your lover? We perform this come-to-me love spell that works instantly with the aim of bringing back the victim to the person performing the magic. Have you lost your lover? Do u need to solve any relationship problem? Contact the powerful spells caster chief kule with love spells that work overnight and love spells that really work. Have you found yourself infatuated with a special someone you think could be the one? Are you looking for a spell to provide them with a nudge in the right direction? Or maybe the spell you cast didn’t achieve the results you were hoping for? Whether you’re new or versed in the ways of spell casting, we’re here to help. Today we’re going to provide you with a detailed guide on the types of love spells to cast. Not only that but there’s something for those who wish to find outside advice from more advanced spell casters. We’re also going to provide you with the top sites available to help you with your dilemma. Let’s begin our journey by educating ourselves on love magic and what a real love caster looks like. Love Magic and Love Casters Love magic made its first appearance back in Ancient Egypt and has been an active practice since. This type of magic is a branch of traditional magic and can be practiced in various ways. Typically the more common use of love magic is through the work of spells, but other methods look like Charms Rituals-LOVE Potions-Dolls and even Amulets If you are interested in becoming a love caster, be prepared for what’s to come. A genuine love caster knows that the art of love casting is no easy feat and shouldn’t be done casually. You should know that not only does it require you to be gifted spiritually, but you must be ready to serve others. Someone who is considered a real love caster has experience in all manner of spells, no matter the difficulty. Training yourself in attraction, commitment, and marriage spells is an excellent place to start. But this by no means will make you a professional. Practice your craft and expand your knowledge; understand that you will possess the ability to help others in time truly. Types of Love Spells What better way to start broadening your experiences with love spells than by learning more about them? These spells work like just about any other spell. Simply apply your intention, use a medium (sigils, mantras, candles, or charm bags), and top it off with establishing the belief that you will receive what you want. So what kind of spells are available and which ones suit your needs the best? Let’s take a look at the many options you have at your disposal

%+27788225528 love spells in Boston Psychic Readings, Attraction spells,Bring...

masabamasaba

At the recent Microsoft Ignite 2023 conference, Microsoft unveiled a groundbreaking strategy that will redefine enterprise work management. The plan involves integrating Microsoft’s key planning tools, Microsoft To Do, Microsoft Planner, and Microsoft Project for the web into a unified experience called “Microsoft Planner.” What does this new strategy from Microsoft mean for current users? Join us and learn how best to take advantage of this announcement while gaining a clear path on how to elevate the current state of Microsoft Planner from a basic task manager to a comprehensive tool for Enterprise Work Management using OnePlan. Learn how OnePlan’s integration with Microsoft Planner allows for strategic alignment with business goals through advanced features like strategic planning, portfolio management, resource management, financial management, and more!

Introducing Microsoft’s new Enterprise Work Management (EWM) Solution

OnePlan Solutions

OpenChain - The Ramifications of ISO/IEC 5230 and ISO/IEC 18974 for Legal Pro...

Shane Coughlan

Data spaces in distributed environments should be allowed to evolve in agile ways providing data space owners with large flexibility about which data they store. Agility and heterogeneity, however, jeopardize data exchanges because representations may build on varying ontologies and data consumers may not rely on the semantic correctness of their queries in the context of semantically heterogeneous, evolving data spaces. Graph data spaces are one example of a powerful model for representing and querying data whose semantics may change over time. To assert and enforce conditions on individual graph data spaces, shape languages (e.g SHACL) have been developed. We investigate the question of how querying and programming can be guarded by reasoning over SHACL constraints in a distributed setting and we sketch a picture of how a future landscape based on semantically heterogeneous data spaces might look like.

Shapes for Sharing between Graph Data Spaces - and Epistemic Querying of RDF-...

Steffen Staab

Technology has taken up space all over the world. From generating content with a single command on ChatGPT to getting your food served by Robots at your favorite restaurant, artificial advancements have ruled every space. Every industry is set to develop top-notch technology in every sector; finance, IT, healthcare, gaming, and banking, with competitive market standards. One of these rapidly growing industries is Mobile App Development. According to the Straits Research report, it is expected to reach USD 583.03 billion at a CAGR OF 12.8% between (2022 and 2030). It clearly shows how mobile app development has become an integral part of the digital landscape and revolutionized technology.

The Top App Development Trends Shaping the Industry in 2024-25 .pdf

ayushiqss

introduction-to-automotive Andoid os-csimmonds-ndctechtown-2021.pdf

VishalKumarJha10

%+27788225528 love spells in Colorado Springs Psychic Readings, Attraction sp...

masabamasaba

VTU technical seminar 8Th Sem on Scikit-learn

AmarnathKambale

Model Call Girl Services in Delhi reach out to us at 🔝 9953056974 🔝✔️✔️ Our agency presents a selection of young, charming call girls available for bookings at Oyo Hotels. Experience high-class escort services at pocket-friendly rates, with our female escorts exuding both beauty and a delightful personality, ready to meet your desires. Whether it's Housewives, College girls, Russian girls, Muslim girls, or any other preference, we offer a diverse range of options to cater to your tastes. We provide both in-call and out-call services for your convenience. Our in-call location in Delhi ensures cleanliness, hygiene, and 100% safety, while our out-call services offer doorstep delivery for added ease. We value your time and money, hence we kindly request pic collectors, time-passers, and bargain hunters to refrain from contacting us. Our services feature various packages at competitive rates: One shot: ₹2000/in-call, ₹5000/out-call Two shots with one girl: ₹3500/in-call, ₹6000/out-call Body to body massage with sex: ₹3000/in-call Full night for one person: ₹7000/in-call, ₹10000/out-call Full night for more than 1 person: Contact us at 🔝 9953056974 🔝. for details Operating 24/7, we serve various locations in Delhi, including Green Park, Lajpat Nagar, Saket, and Hauz Khas near metro stations. For premium call girl services in Delhi 🔝 9953056974 🔝. Thank you for considering us!

CHEAP Call Girls in Pushp Vihar (-DELHI )🔝 9953056974🔝(=)/CALL GIRLS SERVICE

9953056974 Low Rate Call Girls In Saket, Delhi NCR

Define the academic and professional writing..pdf

PearlKirahMaeRagusta1

%+27788225528 love spells in Atlanta Psychic Readings, Attraction spells,Brin...

masabamasaba

%in Stilfontein+277-882-255-28 abortion pills for sale in Stilfontein

masabamasaba

%in tembisa+277-882-255-28 abortion pills for sale in tembisa

masabamasaba

call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️

Delhi Call girls

Conference: Engage2024 in Antwerp Type: Workshop Speakers: Florian Vogler, Henning Kunz, Christoph Adler Title: Navigating the Future with The Hitchhiker's Guide to Notes and Domino 14 Abstract: Embark on an exhilarating journey with industry trailblazers Florian Vogler, Henning Kunz, and Christoph Adler in this not-to-be-missed workshop at the forefront of the tech universe. Get ready for a thrilling kick-off as we navigate the current state of the HCL universe, setting the stage for an exploration of the groundbreaking Notes and Domino 14. Discover the latest enhancements and revolutionary features that will redefine your experience. In this interactive session, unlock a treasure trove of tips and tricks to elevate your utilization of version 14, both with and without the game-changing panagenda MarvelClient. Brace yourself for also diving into Nomad, Nomad Web, and VoltMX, expanding your horizons in the expansive HCL landscape. Be a part of this exclusive opportunity to stay ahead in the ever-evolving world of HCL technologies. Your journey to mastering Notes and Domino 14 begins here. And remember, in the spirit of intergalactic exploration, don't forget to bring your towel!

W01_panagenda_Navigating-the-Future-with-The-Hitchhikers-Guide-to-Notes-and-D...

panagenda

The title is not connected to what is inside

shinachiaurasa2

Recently uploaded (20)

Software Quality Assurance Interview Questions

Announcing Codolex 2.0 from GDK Software

call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️

10 Trends Likely to Shape Enterprise Technology in 2024

%+27788225528 love spells in Boston Psychic Readings, Attraction spells,Bring...

Introducing Microsoft’s new Enterprise Work Management (EWM) Solution

OpenChain - The Ramifications of ISO/IEC 5230 and ISO/IEC 18974 for Legal Pro...

Shapes for Sharing between Graph Data Spaces - and Epistemic Querying of RDF-...

The Top App Development Trends Shaping the Industry in 2024-25 .pdf

introduction-to-automotive Andoid os-csimmonds-ndctechtown-2021.pdf

%+27788225528 love spells in Colorado Springs Psychic Readings, Attraction sp...

VTU technical seminar 8Th Sem on Scikit-learn

CHEAP Call Girls in Pushp Vihar (-DELHI )🔝 9953056974🔝(=)/CALL GIRLS SERVICE

Define the academic and professional writing..pdf

%+27788225528 love spells in Atlanta Psychic Readings, Attraction spells,Brin...

%in Stilfontein+277-882-255-28 abortion pills for sale in Stilfontein

%in tembisa+277-882-255-28 abortion pills for sale in tembisa

call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️

W01_panagenda_Navigating-the-Future-with-The-Hitchhikers-Guide-to-Notes-and-D...

The title is not connected to what is inside

Fixing Dockerfile Smells: An Empirical Study (ICSME 2022)

1. Fixing Dockerfile Smells: An Empirical Study Giovanni Rosa, Simone Scalabrino and Rocco Oliveto University of Molise, Italy ICSME ’22 Registered Reports - Oct 6th 2022 Limassol, Cyprus

2. Containerization, how it works? Build Ship Run Software containers

3. Containers in production environments 2020 2023 2025 85% of organizations will adopt containers

4. Why Docker? #1 Most-Wanted and #1 Most Loved tool

5. Docker in a nutshell Dockerfile Image Container Registry “hub” push pull run build base image

6. Docker in a nutshell Dockerfile Image Container Registry “hub” push pull run build base image

7. Docker in a nutshell Dockerfile Image Container Registry “hub” push pull run build base image

8. Docker in a nutshell Dockerfile Image Container Registry “hub” push pull run build base image

9. Docker in a nutshell Dockerfile Image Container Registry “hub” push pull run build base image

10. How to measure Dockerfile quality? I’M FLAWLESS!

11. Haskell Dockerfile Linter How to measure Dockerfile quality?

12. Dockerfile smells Smells in Dockerfiles

13. Smells can negatively affect Docker images Image size Build reliability Security vulnerabilities

14. 84% of 70000 Dockerfiles contain smells 2017 Cito et. al

15. “Version pinning smell is the biggest quality issue […] there is a declining trend of Dockerfile smells” Eng et. al 2021

16. It is not clear what smells are relevant and need to be fixed

17. Lack of advanced supporting tools for developers It is not clear what smells are relevant and need to be fixed

18. Empirical Study

19. Smell survivability Empirical Study

20. Smell survivability Fix recommendations Empirical Study

21. How do developers fix Dockerfile smells? RQ 1

22. RQ1 9.4M unique Dockerfiles from 2013 to 2020 Dockerfile snapshots over time

23. Smell survivability RQ1 Extraction of smell-fixing commits Dockerfile snapshots over time

24. RQ1 Extraction of smell-fixing commits Dockerfile snapshots over time Manual validation (1000 commits)

25. Manual validation smelly not smelly smelly not smelly

26. Extraction of smell-fixing commits Dockerfile snapshots over time Manual validation (1000 commits) Smell survivability RQ1

27. Which Dockerfile smells are developers willing to address? RQ 2

28. Eng et. al 2021 8+ smells RQ2 11.5M commits Most frequent and fixed smells

29. hadolint wiki RQ2 Most frequent and fixed smells Rule-based Refactoring tool

30. RQ2 Most frequent and fixed smells Rule-based Refactoring tool Refactoring recommendations Responses from developers

31. Not Accepted Accepted Pending Response status RQ2 Most frequent and fixed smells Rule-based Refactoring tool Refactoring recommendations Responses from developers Evaluation

32. Giovanni Rosa University of Molise, Italy giovanni.rosa@unimol.it Summary

Fixing Dockerfile Smells: An Empirical Study (ICSME 2022)

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Similar to Fixing Dockerfile Smells: An Empirical Study (ICSME 2022)

Similar to Fixing Dockerfile Smells: An Empirical Study (ICSME 2022) (20)

Recently uploaded

Recently uploaded (20)

Fixing Dockerfile Smells: An Empirical Study (ICSME 2022)