Docker Snippets

Inspect Docker Image with dive

Install dive

brew install dive

Now we can run dive against any Docker image we wish to inspect…

Run dive

dive confluentinc/cp-kafka:5.4.3

Figure 1. Screenshot of dive analyzing the Kafka Docker image

Resources:

dive on GitHub

Introspect Private Docker Registry

List images:

curl -s https://the-registry-url/v2/_catalog

Get tags for an image

curl -s https://the-registry-url/v2/the-image-name/tags/list

An example:

curl -s https://registry.local/v2/alpine/rabbitmq/tags/list
{"name":"alpine/rabbitmq","tags":["3.9.17"]}

Search for image

docker search mysql

Run bash in container

docker exec -it NAME /bin/bash

Find dangling / untagged images

docker images -f "dangling=true" -q

Resources:

openapi-generator project on GitHub

Change Auto-Restart Policy

e.g. disable auto-restart for container

docker update --restart no <IMAGE_NAME>

Output Images as CSV List

Used in GitLab builds for Trivy ..

docker image ls --format="{{.Repository}}:{{.Tag}}" | grep -v '<none>' | tr '\n' ','

Package OpenSSL as Docker Image

Dockerfile

FROM alpine:3.18
RUN apk add --no-cache openssl
ENTRYPOINT ["openssl"]

Building the image

docker build . -t openssltool

Running openssl

docker run openssltool

Prune Volumes

Helps with errors like initdb: error: could not create directory "/var/lib/postgresql/data/pg_wal": No space left on device

docker volume prune

or prune even more

docker system prune --volumes

Running stuff with Docker

Run local Postgres Database

docker run --name some-pg-db -p5432:5432 -e POSTGRES_PASSWORD=fancypassword -e POSTGRES_USER=theuser postgres:latest

Run Postgres Client from Docker Image

docker run --rm -it postgres:14.0 psql -h <host> -U <username> -d <database>

or connect to running postgres instance:

docker exec -it my-postgres psql -U postgres

Run local MySQL Database

docker run --name local-mysql -e MYSQL_ROOT_PASSWORD=password -p 3306:3306 -d mysql:5.7

Run Trivy Scan for Docker Image

docker run aquasec/trivy image IMAGE:TAG

Run MailPit for Testing SMTP/IMAP/POP3

docker run -d \
--restart unless-stopped \
--name=mailpit \
-p 8025:8025 \
-p 1025:1025 \
axllent/mailpit

Send Test-Email via Telnet

{
  echo "EHLO localhost"
  echo "MAIL FROM: <webmaster@hascode.com>"
  echo "RCPT TO: <micha@hascode.com>"
  echo "DATA"
  echo "From: <webmaster@hascode.com>"
  echo "To: <micha@hascode.com>"
  echo "Subject: Hey there at hascode.com"
  echo ""
  echo "How R u doing mate?"
  echo "."
  echo "QUIT"
} | telnet localhost 1025

Now we may read or E-Mail send at http://localhost:8025/:

Figure 2. MailPit Browser-UI

Inspect Docker Image with dive#

Introspect Private Docker Registry#

Search for image#

Run bash in container#

Find dangling / untagged images#

Change Auto-Restart Policy#

Output Images as CSV List#

Package OpenSSL as Docker Image#

Prune Volumes#

Running stuff with Docker#

Run local Postgres Database#

Run Postgres Client from Docker Image#

Run local MySQL Database#

Run Trivy Scan for Docker Image#

Run MailPit for Testing SMTP/IMAP/POP3#

Inspect Docker Image with dive

Introspect Private Docker Registry

Search for image

Run bash in container

Find dangling / untagged images

Change Auto-Restart Policy

Output Images as CSV List

Package OpenSSL as Docker Image

Prune Volumes

Running stuff with Docker

Run local Postgres Database

Run Postgres Client from Docker Image

Run local MySQL Database

Run Trivy Scan for Docker Image

Run MailPit for Testing SMTP/IMAP/POP3