Avash Mulmi, profile picture
Uploaded byAvash Mulmi
ODP, PPTX590 views

Dockerfiles & Best Practices

The document outlines best practices for creating Dockerfiles, emphasizing the importance of maintaining clean, lightweight, and ephemeral containers. It provides guidance on minimizing layers, using .dockerignore, leveraging volumes for data storage, and avoiding the use of root users. Moreover, it includes practical examples and references for further learning on Dockerfile creation and management.

Embed presentation

Download as ODP, PPTX
Dockerfiles & Best Practices #BDay4
Avash Mulmi ● Mozilla Representative for Nepal ● Volunteer, FOSS Nepal Community ● Docker Meetup Organizer
Agenda ● What are Dockerfiles? ● Usage ● Best Practices
Dockerfile(s)? ● Textfile, named Dockerfile ● Contains commands, in sequential order ● Used to build an image ● Have own format and instruction set
Dockerfile
Dockerfile(s)?
Building Images ● Change WORKDIR to Folder with Dockerfile (General Practice) ● ~# docker build . ● ~# docker build -t IMAGE_NAME:Tag . ● ~# docker build -t IMAGE_NAME:Tag -f Dockerfile /path/to/Dockerfile
Working with Built Image ● Check for built image:  ~# docker images ● Saving built image:  ~# docker save IMAGENAME > image.tar ● Deleting/Removing built image:  ~# docker rmi IMAGENAME  ~# docker rmi IMAGE_ID
Best Practices ● Ephemeral Containers ● Using .dockerignore file ● As lightweight as possible ● Minimize the number of layers ● One container, One purpose ● Use volumes ● Avoid using root user
Ephemeral Containers ● Containers should be ephemeral ● Literal meaning of Ephemeral → Short lived, brief, momentary ● Stopped, Destroyed and New one built with minimum set-up & configurations ● Good and Complete Dockerfile can achieve this easily
.dockerignore ● Similar to .gitignore ● Generally Dockerfile is in an empty directory ● In some cases, we need to add files and directories to the containers ● In such cases, use .dockerignore in those directories to skip files that are not required at all
Lightweight ● Install only required packages ● It can reduce complexity, dependencies, file size and build times ● Some applications ‘might’ look important for future ● For eg: a text editor in a database image ● Make image as small as possible using light base images where possible
Minimize Number of Layers ● Each RUN command creates a new layer ● Need to know figure out how to minimize the number of layers ● Example 1: update, upgrade and installation of packages can stay in a single RUN command with multi-line arguments ● Example 2: download of a zip file, extraction and move to another folder ● Benefits: docker pull and docker push are faster, reduces complexity of an image etc.
Example 1 ● RUN apt-get update RUN apt-get install apache2 git mysql-server php5 vim RUN apt-get clean ● RUN apt-get update && apt-get install apache2 git mysql-server php5 vim && apt-get clean
Example 2 ● RUN curl http://192.168.100.5/file.tar.gz RUN tar xvf file.tar.gz RUN mv EXTRACTED_FILE /opt/ ● RUN curl http://192.168.100.5/file.tar.gz | tar xvf -C /opt/
Example 3 ● RUN apt-get update && apt-get install apache2 git mysql-server php5 vim && apt-get clean RUN curl http://192.168.100.5/file.tar.gz | tar xvf -C /opt/ RUN cp /etc/someconfig /opt/someconfig && ln -s /usr/share/app1/default.cfg /opt/default.cfg ● RUN apt-get update && apt-get install apache2 git mysql-server php5 vim && apt-get clean && curl | tar xvf -C /opt/ && cp /etc/someconfig /opt/someconfig && ln -s /usr/share/app1/default.cfg /opt/default.cfg && cd /opt/ && ./configure && make && make install && rm old_unnecessary_files
One Container, One Purpose ● Keep containers as clean and modular as possible ● Creating containers for different dependent applications and linking them makes it easier to maintain & reuse those containers ● Eg: Instead of single container with webserver, database and (php), three separate containers with webserver, database and (php) in each is better. ● Why? → Maintenance & Reusablity
Use Volumes ● Do not store data in containers, as far as possible ● Use Volumes to store data ● Concept of ephemeral ● App container running v1.9 should be easily stopped, destroyed and updated with container running v2.0 without losing any data
Avoid using `root` user ● By default docker runs containers with root user ● If possible use a normal user ● Depends on situation
Delete unnecessary files ● Reduces size of image and container ● Eg: RUN curl https://192.168.5.100/file.tar.gz && tar xvf -C file.tar.gz /opt/ && rm file.tar.gz
Use comments ● Comments can help users as well as yourself in the future. ● Dockerfile comments start with ‘#’ ● Eg: #Install required packages for the app RUN apt-get install package1 package2 package3 # Modifying texts from default config RUN sed -i ‘s/word1/word2/g’ config.cfg
ADD & COPY ● COPY only copies file from directory ● ADD allows source to be URL ● ADD also has functionality of `tar`, archiving ● Use COPY as far as possible as it is more transparent. ● ADD may add malicious files from unknown sources if used improperly.
References ● Dockerfile references https://docs.docker.com/engine/reference/builder/ ● 10 things to avoid in docker containers https://developers.redhat.com/blog/2016/02/24/10-things-to-avoid-in-d ● Docker best practices https://github.com/FuriKuri/docker-best-practices
avasz@protonmail.com

More Related Content

PDF
Virtual Machines and Docker
byDanish Khakwani
 
PDF
Migration from Drupal 7 to Drupal 8 - How Docker can save our lives!
byDrupalCamp Kyiv
 
PDF
Migration from drupal 7 to drupal 8
byKrzysztof (Chris) Ozog
 
PPTX
Docker session III: Dockerfile
byDegendra Sivakoti
 
ODP
openSUSE Conference 2017 - The Docker at Travis Presentation
bylslezak
 
PPTX
Docker session I: Continuous integration, delivery and deployment
byDegendra Sivakoti
 
PPTX
Introduction to Docker Compose
byPrabhas Gupte
 
PDF
Introducing docker
byBill Wang
 
Virtual Machines and Docker
byDanish Khakwani
 
Migration from Drupal 7 to Drupal 8 - How Docker can save our lives!
byDrupalCamp Kyiv
 
Migration from drupal 7 to drupal 8
byKrzysztof (Chris) Ozog
 
Docker session III: Dockerfile
byDegendra Sivakoti
 
openSUSE Conference 2017 - The Docker at Travis Presentation
bylslezak
 
Docker session I: Continuous integration, delivery and deployment
byDegendra Sivakoti
 
Introduction to Docker Compose
byPrabhas Gupte
 
Introducing docker
byBill Wang
 

What's hot

PDF
openSUSE Conference 2017 - YaST News
bylslezak
 
PPTX
Anton Cherednikov "Modules and Artifacts in NPM"
byLogeekNightUkraine
 
PDF
OpenCms Days 2013 - Gradle based OpenCms build automated setup
byAlkacon Software GmbH & Co. KG
 
ODP
Laka Blogging engine
byAmitoj Singh
 
PPTX
Docker session II: Introduction to Docker
byDegendra Sivakoti
 
PDF
From Docker Run To Docker Compose
byFitra Aditya
 
PPTX
Docker e git lab
byGianluca Padovani
 
PDF
OpenCmsDays 2013 - Using OpenCms 9 folders as a network drive
byAlkacon Software GmbH & Co. KG
 
PDF
Boston Code Dojo - Docker meetup slides
byCalvin Froedge
 
PDF
Headless approach and Acquia - Case study - Chris Ozog
byDrupalCamp Kyiv
 
PDF
Composer
byNaseer Ahmad
 
PDF
GDG Lima - Docker Compose
byMario IC
 
PDF
Docker for developers
byAnvay Patil
 
ODP
Wt vs phalcon
byAmitoj Singh
 
PDF
Docker compose
byFelipe Ruhland
 
PDF
OpenCms Days 2012 - Developing OpenCms with Gradle
byAlkacon Software GmbH & Co. KG
 
PDF
Dockerfile for rust project
byHien Nguyen
 
PDF
Docker for developers
bysparkfabrik
 
ODP
Docker. Micro services for lazy developers
byEugene Krevenets
 
PDF
Meetup 05 27-2015
byRanjan Parthasarathy
 
openSUSE Conference 2017 - YaST News
bylslezak
 
Anton Cherednikov "Modules and Artifacts in NPM"
byLogeekNightUkraine
 
OpenCms Days 2013 - Gradle based OpenCms build automated setup
byAlkacon Software GmbH & Co. KG
 
Laka Blogging engine
byAmitoj Singh
 
Docker session II: Introduction to Docker
byDegendra Sivakoti
 
From Docker Run To Docker Compose
byFitra Aditya
 
Docker e git lab
byGianluca Padovani
 
OpenCmsDays 2013 - Using OpenCms 9 folders as a network drive
byAlkacon Software GmbH & Co. KG
 
Boston Code Dojo - Docker meetup slides
byCalvin Froedge
 
Headless approach and Acquia - Case study - Chris Ozog
byDrupalCamp Kyiv
 
Composer
byNaseer Ahmad
 
GDG Lima - Docker Compose
byMario IC
 
Docker for developers
byAnvay Patil
 
Wt vs phalcon
byAmitoj Singh
 
Docker compose
byFelipe Ruhland
 
OpenCms Days 2012 - Developing OpenCms with Gradle
byAlkacon Software GmbH & Co. KG
 
Dockerfile for rust project
byHien Nguyen
 
Docker for developers
bysparkfabrik
 
Docker. Micro services for lazy developers
byEugene Krevenets
 
Meetup 05 27-2015
byRanjan Parthasarathy
 

Viewers also liked

PPT
Inverse Trigonometric Functions
bySadiq Hussain
 
PDF
How to Become a Thought Leader in Your Niche
byLeslie Samuel
 
PDF
Acertijo de rompecabezas para la enseñanza de las ciencias (MTRO. JAVIER SOLI...
byJAVIER SOLIS NOYOLA
 
PDF
TEDx Manchester: AI & The Future of Work
byVolker Hirsch
 
ODP
2016.1.25
bySurit Aryal
 
PPTX
GDC17 VFX Bootcamp参加報告
byMakoto Goto
 
PDF
FRJ2017 デジタルファンドレイジング最前線 セッション発表資料
by株式会社カルミナ(Carmina Inc.)
 
PDF
You Are Not As Rational As You Think
byYang Ao Wei 楊翱維
 
PDF
3 Things Every Sales Team Needs to Be Thinking About in 2017
byDrift
 
PDF
Build Features, Not Apps
byNatasha Murashev
 
PDF
開發學校雲端服務的奇技淫巧(Tips for Building Third-Party School Service)
bySheng-Hao Ma
 
PPTX
Docker bday #4 intro deck
bySurit Aryal
 
PPT
Nana moraes
byLucas Rodrigues
 
PDF
Python으로 채팅 구현하기
byTae Young Lee
 
PPTX
Ppp sobre publisher
byMarielis Roberti
 
PDF
Is Bevan's NHS under threat?
byGeraint Day
 
PDF
Api days 2014 from theatrophone to ap is_the 2020 telco challenge_
byLuis Borges Quina
 
PPTX
Pardot presentation
byNitin Gupta ☁
 
DOC
Clara Cleymans koos meisjesnaam als benaming voor haar firma
byThierry Debels
 
PDF
Marina gascon la prueba judicial
byMirta Hnriquez
 
Inverse Trigonometric Functions
bySadiq Hussain
 
How to Become a Thought Leader in Your Niche
byLeslie Samuel
 
Acertijo de rompecabezas para la enseñanza de las ciencias (MTRO. JAVIER SOLI...
byJAVIER SOLIS NOYOLA
 
TEDx Manchester: AI & The Future of Work
byVolker Hirsch
 
2016.1.25
bySurit Aryal
 
GDC17 VFX Bootcamp参加報告
byMakoto Goto
 
FRJ2017 デジタルファンドレイジング最前線 セッション発表資料
by株式会社カルミナ(Carmina Inc.)
 
You Are Not As Rational As You Think
byYang Ao Wei 楊翱維
 
3 Things Every Sales Team Needs to Be Thinking About in 2017
byDrift
 
Build Features, Not Apps
byNatasha Murashev
 
開發學校雲端服務的奇技淫巧(Tips for Building Third-Party School Service)
bySheng-Hao Ma
 
Docker bday #4 intro deck
bySurit Aryal
 
Nana moraes
byLucas Rodrigues
 
Python으로 채팅 구현하기
byTae Young Lee
 
Ppp sobre publisher
byMarielis Roberti
 
Is Bevan's NHS under threat?
byGeraint Day
 
Api days 2014 from theatrophone to ap is_the 2020 telco challenge_
byLuis Borges Quina
 
Pardot presentation
byNitin Gupta ☁
 
Clara Cleymans koos meisjesnaam als benaming voor haar firma
byThierry Debels
 
Marina gascon la prueba judicial
byMirta Hnriquez
 

Similar to Dockerfiles & Best Practices

PDF
Docker Best Practices Workshop
byAhmed AbouZaid
 
PDF
Scale Big With Docker — Moboom 2014
byJérôme Petazzoni
 
PPTX
Tips and best practices for Docker
byCalidad Infotech
 
PPTX
Docker best Practices
byjeetendra mandal
 
PDF
Killer Docker Workflows for Development
byChris Tankersley
 
PDF
Introduction to Docker - Learning containerization XP conference 2016
byXP Conference India
 
PPTX
Virtualization, Containers, Docker and scalable container management services
byabhishek chawla
 
PDF
Getting Started with Docker
byAnup Segu
 
PPTX
Docker_Presentation_Examples helps to get deeper knowledge
byHarinderSingh542732
 
PDF
Be a better developer with Docker (revision 3)
byNicola Paolucci
 
PDF
Docker primer and tips
bySamuel Chow
 
PPTX
"Docker best practice", Станислав Коленкин (senior devops, DataArt)
byDataArt
 
PDF
Docker in a JS Developer’s Life
byGlobalLogic Ukraine
 
PPTX
Getting Started with Docker
byGeeta Vinnakota
 
PPTX
Docker for developers z java
byandrzejsydor
 
PPSX
Docker and containers - Presentation Slides by Priyadarshini Anand
byPRIYADARSHINI ANAND
 
PPTX
Effective images remix
by🎥 Brent Langston
 
PPTX
Intro to Docker for complete beginners.pptx
bysahilsingla828
 
PPTX
Powercoders · Docker · Fall 2021.pptx
byIgnacioTamayo2
 
PDF
Work shop - an introduction to the docker ecosystem
byJoão Pedro Harbs
 
Docker Best Practices Workshop
byAhmed AbouZaid
 
Scale Big With Docker — Moboom 2014
byJérôme Petazzoni
 
Tips and best practices for Docker
byCalidad Infotech
 
Docker best Practices
byjeetendra mandal
 
Killer Docker Workflows for Development
byChris Tankersley
 
Introduction to Docker - Learning containerization XP conference 2016
byXP Conference India
 
Virtualization, Containers, Docker and scalable container management services
byabhishek chawla
 
Getting Started with Docker
byAnup Segu
 
Docker_Presentation_Examples helps to get deeper knowledge
byHarinderSingh542732
 
Be a better developer with Docker (revision 3)
byNicola Paolucci
 
Docker primer and tips
bySamuel Chow
 
"Docker best practice", Станислав Коленкин (senior devops, DataArt)
byDataArt
 
Docker in a JS Developer’s Life
byGlobalLogic Ukraine
 
Getting Started with Docker
byGeeta Vinnakota
 
Docker for developers z java
byandrzejsydor
 
Docker and containers - Presentation Slides by Priyadarshini Anand
byPRIYADARSHINI ANAND
 
Effective images remix
by🎥 Brent Langston
 
Intro to Docker for complete beginners.pptx
bysahilsingla828
 
Powercoders · Docker · Fall 2021.pptx
byIgnacioTamayo2
 
Work shop - an introduction to the docker ecosystem
byJoão Pedro Harbs
 

Recently uploaded

PDF
Writing GPU-Ready AI Models in Pure Java with Babylon
byAna-Maria Mihalceanu
 
PPTX
Beyond the Algorithm: Designing Human-Centric Public Service with AI
byAlan Dix
 
PPTX
NTG - Data Center Management System Software
byMustafa Kuğu
 
PDF
Track Phone Location via Number (2026)_ What Actually Works, What’s a Scam, a...
byEmily Woods
 
PDF
Configure and Manage Systemd Timers- RHCSA (RH134).pdf
byLinuxCert Guru
 
PPTX
2026 SCORM Troubleshooting Rustici + dominKnow.pptx
byRustici Software
 
PDF
Dev Dives: Build and deploy agentic automations - the unified way
byUiPathCommunity
 
PPTX
TechSprint Inauguration at SJB Institute of Technology held on 18 December 2025
bysuhasspgdg
 
PPTX
Retrieval Augmented Generation- The Synergistic Power of Prompt Engineering
bySemantic SEO BD
 
PDF
Chapter 4 Network Security in computer security
byGetnet Tigabie Askale -(GM)
 
PDF
Getting Started with Apache Spark: Big Data Made Simple [Free Meetup]
byHaim Michael
 
PDF
The Emergence of Empathic XR: AWE Asia 2026 keynote
byMark Billinghurst
 
PDF
Traditional-Security-Models-No-Longer-Work.pptx (1).pdf
byOhhproJunction
 
PPTX
TechSprint WinterHack — Top 10 Teams Pitching Session we are excited for pit...
bybajpaitusharoffon678
 
PDF
Why Many Smart Device Platforms Fail to Scale?
byPromeraki Developments
 
PDF
How to build hackthon projects from ZERO!
byishantyadav1111
 
PDF
UiPath Automation Developer Associate Training Series 2026 - Session 2
byDianaGray10
 
PDF
The Manifesto for AI-enabled Governance !
byYannis Charalabidis
 
PDF
Safer’s Picks: The 5 FME Transformers You Didn’t Know You Needed
bySafe Software
 
PDF
Parental Control App for Phones_ The Complete 2026 Guide for Safer, Smarter P...
byRyan Cooper
 
Writing GPU-Ready AI Models in Pure Java with Babylon
byAna-Maria Mihalceanu
 
Beyond the Algorithm: Designing Human-Centric Public Service with AI
byAlan Dix
 
NTG - Data Center Management System Software
byMustafa Kuğu
 
Track Phone Location via Number (2026)_ What Actually Works, What’s a Scam, a...
byEmily Woods
 
Configure and Manage Systemd Timers- RHCSA (RH134).pdf
byLinuxCert Guru
 
2026 SCORM Troubleshooting Rustici + dominKnow.pptx
byRustici Software
 
Dev Dives: Build and deploy agentic automations - the unified way
byUiPathCommunity
 
TechSprint Inauguration at SJB Institute of Technology held on 18 December 2025
bysuhasspgdg
 
Retrieval Augmented Generation- The Synergistic Power of Prompt Engineering
bySemantic SEO BD
 
Chapter 4 Network Security in computer security
byGetnet Tigabie Askale -(GM)
 
Getting Started with Apache Spark: Big Data Made Simple [Free Meetup]
byHaim Michael
 
The Emergence of Empathic XR: AWE Asia 2026 keynote
byMark Billinghurst
 
Traditional-Security-Models-No-Longer-Work.pptx (1).pdf
byOhhproJunction
 
TechSprint WinterHack — Top 10 Teams Pitching Session we are excited for pit...
bybajpaitusharoffon678
 
Why Many Smart Device Platforms Fail to Scale?
byPromeraki Developments
 
How to build hackthon projects from ZERO!
byishantyadav1111
 
UiPath Automation Developer Associate Training Series 2026 - Session 2
byDianaGray10
 
The Manifesto for AI-enabled Governance !
byYannis Charalabidis
 
Safer’s Picks: The 5 FME Transformers You Didn’t Know You Needed
bySafe Software
 
Parental Control App for Phones_ The Complete 2026 Guide for Safer, Smarter P...
byRyan Cooper
 

Dockerfiles & Best Practices

  • 1.
    Dockerfiles & BestPractices #BDay4
  • 2.
    Avash Mulmi ● MozillaRepresentative for Nepal ● Volunteer, FOSS Nepal Community ● Docker Meetup Organizer
  • 3.
    Agenda ● What areDockerfiles? ● Usage ● Best Practices
  • 4.
    Dockerfile(s)? ● Textfile, namedDockerfile ● Contains commands, in sequential order ● Used to build an image ● Have own format and instruction set
  • 5.
  • 6.
  • 7.
    Building Images ● ChangeWORKDIR to Folder with Dockerfile (General Practice) ● ~# docker build . ● ~# docker build -t IMAGE_NAME:Tag . ● ~# docker build -t IMAGE_NAME:Tag -f Dockerfile /path/to/Dockerfile
  • 8.
    Working with BuiltImage ● Check for built image:  ~# docker images ● Saving built image:  ~# docker save IMAGENAME > image.tar ● Deleting/Removing built image:  ~# docker rmi IMAGENAME  ~# docker rmi IMAGE_ID
  • 9.
    Best Practices ● EphemeralContainers ● Using .dockerignore file ● As lightweight as possible ● Minimize the number of layers ● One container, One purpose ● Use volumes ● Avoid using root user
  • 10.
    Ephemeral Containers ● Containersshould be ephemeral ● Literal meaning of Ephemeral → Short lived, brief, momentary ● Stopped, Destroyed and New one built with minimum set-up & configurations ● Good and Complete Dockerfile can achieve this easily
  • 11.
    .dockerignore ● Similar to.gitignore ● Generally Dockerfile is in an empty directory ● In some cases, we need to add files and directories to the containers ● In such cases, use .dockerignore in those directories to skip files that are not required at all
  • 12.
    Lightweight ● Install onlyrequired packages ● It can reduce complexity, dependencies, file size and build times ● Some applications ‘might’ look important for future ● For eg: a text editor in a database image ● Make image as small as possible using light base images where possible
  • 13.
    Minimize Number ofLayers ● Each RUN command creates a new layer ● Need to know figure out how to minimize the number of layers ● Example 1: update, upgrade and installation of packages can stay in a single RUN command with multi-line arguments ● Example 2: download of a zip file, extraction and move to another folder ● Benefits: docker pull and docker push are faster, reduces complexity of an image etc.
  • 14.
    Example 1 ● RUNapt-get update RUN apt-get install apache2 git mysql-server php5 vim RUN apt-get clean ● RUN apt-get update && apt-get install apache2 git mysql-server php5 vim && apt-get clean
  • 15.
    Example 2 ● RUNcurl http://192.168.100.5/file.tar.gz RUN tar xvf file.tar.gz RUN mv EXTRACTED_FILE /opt/ ● RUN curl http://192.168.100.5/file.tar.gz | tar xvf -C /opt/
  • 16.
    Example 3 ● RUNapt-get update && apt-get install apache2 git mysql-server php5 vim && apt-get clean RUN curl http://192.168.100.5/file.tar.gz | tar xvf -C /opt/ RUN cp /etc/someconfig /opt/someconfig && ln -s /usr/share/app1/default.cfg /opt/default.cfg ● RUN apt-get update && apt-get install apache2 git mysql-server php5 vim && apt-get clean && curl | tar xvf -C /opt/ && cp /etc/someconfig /opt/someconfig && ln -s /usr/share/app1/default.cfg /opt/default.cfg && cd /opt/ && ./configure && make && make install && rm old_unnecessary_files
  • 17.
    One Container, OnePurpose ● Keep containers as clean and modular as possible ● Creating containers for different dependent applications and linking them makes it easier to maintain & reuse those containers ● Eg: Instead of single container with webserver, database and (php), three separate containers with webserver, database and (php) in each is better. ● Why? → Maintenance & Reusablity
  • 18.
    Use Volumes ● Donot store data in containers, as far as possible ● Use Volumes to store data ● Concept of ephemeral ● App container running v1.9 should be easily stopped, destroyed and updated with container running v2.0 without losing any data
  • 19.
    Avoid using `root`user ● By default docker runs containers with root user ● If possible use a normal user ● Depends on situation
  • 20.
    Delete unnecessary files ●Reduces size of image and container ● Eg: RUN curl https://192.168.5.100/file.tar.gz && tar xvf -C file.tar.gz /opt/ && rm file.tar.gz
  • 21.
    Use comments ● Commentscan help users as well as yourself in the future. ● Dockerfile comments start with ‘#’ ● Eg: #Install required packages for the app RUN apt-get install package1 package2 package3 # Modifying texts from default config RUN sed -i ‘s/word1/word2/g’ config.cfg
  • 22.
    ADD & COPY ●COPY only copies file from directory ● ADD allows source to be URL ● ADD also has functionality of `tar`, archiving ● Use COPY as far as possible as it is more transparent. ● ADD may add malicious files from unknown sources if used improperly.
  • 23.
    References ● Dockerfile references https://docs.docker.com/engine/reference/builder/ ●10 things to avoid in docker containers https://developers.redhat.com/blog/2016/02/24/10-things-to-avoid-in-d ● Docker best practices https://github.com/FuriKuri/docker-best-practices
  • 24.