#dockerhub — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #dockerhub, aggregated by home.social.
-
Checkmarx nel mirino di TeamPCP: l’immagine Docker ufficiale di KICS trojanizzata per esfiltrare i segreti dell’infrastruttura
Per la seconda volta in due mesi, il gruppo TeamPCP ha violato la supply chain di Checkmarx, pubblicando immagini Docker trojanizzate del security scanner KICS ed estensioni VS Code maligne capaci di rubare token cloud, credenziali GitHub e chiavi SSH. Il payload mcpAddon.js, consegnato tramite runtime Bun da un commit retrodatato, punta a trasformare ogni pipeline CI/CD in un punto di esfiltrazione. -
Malicious Docker Images Compromise Checkmarx Supply Chain
Malicious Docker images compromised the Checkmarx supply chain by embedding a tampered KICS binary that secretly collected and sent sensitive data to an external endpoint. This sneaky data-exfiltration risk put users at risk, thanks to an altered scan report generated by the poisoned image.
#MaliciousDockerImages #SupplyChain #DockerHub #DataExfiltration #Kics
-
Open WebUI + Docker Model Runner: Self-Hosted Models, Zero Configuration
#Docker #Products #AIML #DockerHub #DockerModelRunner -
Open WebUI + Docker Model Runner: Self-Hosted Models, Zero Configuration
#Docker #Products #AIML #DockerHub #DockerModelRunner -
Open WebUI + Docker Model Runner: Self-Hosted Models, Zero Configuration
#Docker #Products #AIML #DockerHub #DockerModelRunner -
Open WebUI + Docker Model Runner: Self-Hosted Models, Zero Configuration
#Docker #Products #AIML #DockerHub #DockerModelRunner -
Open WebUI + Docker Model Runner: Self-Hosted Models, Zero Configuration
#Docker #Products #AIML #DockerHub #DockerModelRunner -
The Multi-Model Database for AI Agents: Deploy SurrealDB with Docker Extension
#Docker #Community #Products #Solutions #AIAgent #DockerDesktop #DockerExtensions #DockerHubhttps://www.docker.com/blog/deploy-surrealdb-docker-desktop-extension/
-
Wasn't too much work, so the #OpenSSL build environment got implemented into my @nlnetlabs #unbound #docker image already. You had my promise. The initial build was manual but it should run as an #automatedBuild too.
The first madnuttah/unbound-docker #distroless build (v1.19.3-1) with the per architecture optimized libraries is available on #dockerHub. 💚
https://github.com/madnuttah/unbound-docker
-
Btw, any other recommendations for less standard packages in, for instance, #github or docker images in #dockerhub or #quayio would be appreciated. At least docker hub has a sort of tag for the images built by a verified or official source. Can that be a security assurance? Any sources are appreciated!
-
Finally got time to update the source of my bentopdf instance, to avoid pulling from the "discontinued" docker hub version
Remember to switch to ghcr.io/alam00000/bentopdf-simple:1.15.3 to avoid being compromised by the other version
More context: https://github.com/alam00000/bentopdf/issues/399
#selfhosted #selfhosting #pdf #homelab #security #docker #dockerhub #ghcr #
-
We just moved all our container images from #DockerHub to #GHCR. Thanks to Docker Hub for supporting us all these years for free, but #FOSS need strong and reliable partners. More details at https://github.com/kiwix/overview/wiki/We're-on-GHCR.io
-
Finally got time to update the source of my bentopdf instance, to avoid pulling from the "discontinued" docker hub version
Remember to switch to ghcr.io/alam00000/bentopdf-simple:1.15.3 to avoid being compromised by the other version
More context: https://github.com/alam00000/bentopdf/issues/399
#selfhosted #selfhosting #pdf #homelab #security #docker #dockerhub #ghcr #
-
Finally got time to update the source of my bentopdf instance, to avoid pulling from the "discontinued" docker hub version
Remember to switch to ghcr.io/alam00000/bentopdf-simple:1.15.3 to avoid being compromised by the other version
More context: https://github.com/alam00000/bentopdf/issues/399
#selfhosted #selfhosting #pdf #homelab #security #docker #dockerhub #ghcr #
-
Finally got time to update the source of my bentopdf instance, to avoid pulling from the "discontinued" docker hub version
Remember to switch to ghcr.io/alam00000/bentopdf-simple:1.15.3 to avoid being compromised by the other version
More context: https://github.com/alam00000/bentopdf/issues/399
#selfhosted #selfhosting #pdf #homelab #security #docker #dockerhub #ghcr #
-
We just moved all our container images from #DockerHub to #GHCR. Thanks to Docker Hub for supporting us all these years for free, but #FOSS need strong and reliable partners. More details at https://github.com/kiwix/overview/wiki/We're-on-GHCR.io
-
We just moved all our container images from #DockerHub to #GHCR. Thanks to Docker Hub for supporting us all these years for free, but #FOSS need strong and reliable partners. More details at https://github.com/kiwix/overview/wiki/We're-on-GHCR.io
-
We just moved all our container images from #DockerHub to #GHCR. Thanks to Docker Hub for supporting us all these years for free, but #FOSS need strong and reliable partners. More details at https://github.com/kiwix/overview/wiki/We're-on-GHCR.io
-
[Перевод] Как сделать своё хранилище образов контейнеров
В статье описаны шаги для самостоятельного хостинга container registry. Узнайте, как управлять своими образами, оптимизировать рабочие процессы и защищать свои приложения от внешних рисков.
https://habr.com/ru/companies/flant/articles/882808/
#контейнеры #containers #container_registry #docker #dockerhub #selfhosted #хранилище_образов #docker_build #docker_compose #реестр_контейнеров
-
What is this #container image #registry dilemma?
Where is the container image #bittorrent provider?
#dockerhub #docker -
Momentan geht mir Dockerhub voll aufn Sack. Angeblich Pulllimit erreicht (100 Pulls in 6 Stunden)
IM LEBEN NICHT! :neocat_angry:
-
Clawdbot with Docker Model Runner, a Private Personal AI Assistant
#Docker #Products #AIML #DockerHub #DockerModelRunnerhttps://www.docker.com/blog/clawdbot-docker-model-runner-private-personal-ai/
-
Run Claude Code Locally with Docker Model Runner
#Docker #Products #AIML #DockerDesktop #DockerHub #DockerModelRunnerhttps://www.docker.com/blog/run-claude-code-locally-docker-model-runner/
-
Nhà phát triển Bentopdf vừa mất quyền kiểm soát namespace trên Docker Hub, đưa ra cảnh báo: **Không pull bentopdf/** và **không cập nhật container lên phiên bản mới**. Tới thời điểm này vẫn chưa có thông tin cập nhật mới; nhà phát triển im lặng trên GitHub. #Docker #Bentopdf #SelfHosted #DockerHub #CôngNghệ #Vietnam #TinCôngNghệ
https://www.reddit.com/r/selfhosted/comments/1qkxw0e/bentopdf_any_update/
-
OpenCode with Docker Model Runner for Private AI Coding
#Docker #Products #AIML #DockerHub #DockerModelRunnerhttps://www.docker.com/blog/opencode-docker-model-runner-private-ai-coding/
-
Safer Docker Hub Pulls via a Sonatype-Protected Proxy
#Docker #Partnerships #Products #DockerHub #NexusRepository #Softwaresupplychainsecurityhttps://www.docker.com/blog/safer-docker-hub-pulls-via-a-sonatype-protected-proxy/
-
📦 Compressed 7z archive created automatically after scan completion
⚙️ Environment variables: HOSTNAME (log suffix), EXIT_AFTER_RUN, CLEAN_LOGS_AFTER_ARCHIVE, CLAM_EXCLUDE_TMP
🔒 Host filesystem mounted at /host in read-only mode for safe scanning
🚀 Available on #DockerHub: michabbb/security-scanner
-
Docker Fixes ‘Ask Gordon’ AI Flaw That Enabled Metadata-Based Attacks https://hackread.com/docker-ask-gordon-ai-flaw-metadata-attacks/ #ArtificialIntelligence #Cybersecurity #Vulnerability #AgenticAI #AskGordon #DockerHub #Security #GordonAI #Metadata #Docker #AI
-
We're thinking about providing a self-hosted image proxy cache for CodeFloe, limited to CodeFloe CI servers to prevent abuse.
Read more here: https://forum.codefloe.com/t/dockerhub-proxy-cache/73
-
What are our thoughts on Docker Hardened Images?
-
"Over 10,000 Docker Hub images found leaking credentials, auth keys"
-
Announcing vLLM v0.12.0, Ministral 3 and DeepSeek-V3.2 for Docker Model Runner
#Docker #Products #AIML #DockerDesktop #DockerHub #DockerModelRunnerhttps://www.docker.com/blog/docker-model-runner-vllm-ministral-deepseek/
-
Securing the Docker MCP Catalog: Commit Pinning, Agentic Auditing, and Publisher Trust Levels
#Docker #Products #AIML #DockerDesktop #DockerHub #DockerMCPCataloghttps://www.docker.com/blog/enhancing-mcp-trust-with-the-docker-mcp-catalog/
-
In basic concept, this would be similar to what #Harbor can do with #DockerHub.
-
Docker Model Runner Integrates vLLM for High-Throughput Inference
#Docker #Products #AIML #DockerDesktop #DockerHub #DockerModelRunnerhttps://www.docker.com/blog/docker-model-runner-integrates-vllm/
-
DockerHub удаляет старые JDK теги — ваши пайплайны могут быть под угрозой
Если вы используете openjdk:<tag> образы в CI/CD и пулите их с Docker Hub, Вам следует оперативно перепроверить свои пайплайны: мейнтейнеры DockerHub удалили ряд устаревших тегов без громких анонсов. Некоторые сборки уже не работают — пострадали сотни пользователей. В данной новости, эксперт сообщества Spring АйО Михаил Поливаха рассказывает, что произошло, почему это проблема, и какие есть альтернативы.
https://habr.com/ru/companies/spring_aio/articles/963782/
#java #kotlin #docker #dockerhub #deploy #devops #spring #spring_boot #spring_framework #springboot
-
Your Org, Your Tools: Building a Custom MCP Catalog
#Docker #Enterprise #Products #AIML #DockerHub #DockerMCPCatalog #DockerMCPGateway -
Todo for the weekend: set up my own Docker registry so I don't have to rely on the Docker Inc registry...
-
LoRA Explained: Faster, More Efficient Fine-Tuning with Docker
#Docker #Engineering #Products #AIML #DockerDesktop #DockerHub #DockerModelRunner -
GhostAction Attack Steals 3,325 Secrets from GitHub Projects – Source:hackread.com https://ciso2ciso.com/ghostaction-attack-steals-3325-secrets-from-github-projects-sourcehackread-com/ #1CyberSecurityNewsPost #CyberSecurityNews #cybersecurity #CyberAttack #GhostAction #GitGuardian #SupplyChain #DockerHub #FastUUID #Hackread #security #GitHub #Python #CI/CD #PyPI
-
GhostAction Attack Steals 3,325 Secrets from GitHub Projects https://hackread.com/ghostaction-attack-steals-github-projects-secrets/ #Cybersecurity #CyberAttack #GhostAction #GitGuardian #SupplyChain #DockerHub #Security #FastUUID #GitHub #Python #CI/CD #PyPI
-
@fyw321 @geerlingguy My 8 node cluster costs around 55W via POE. It is 3 pi4 8G control+worker nodes, and 5 pi4 4G worker-only nodes (1 is actually 8G.)
Storage is #iscsi on spinning rust on #TrueNAS, but you can do all this on local disks.
It handles a LOT:
- #Promstack, #FluxCD, #Calico, various scrapers
- #Adguard
- #Blocky (another adblocking #dns)
- #Jellyfin
- #Ombi, Prowlarr, *arr, Deluge
- Home automation helpers (#ser2sock instances, #zigbee/#zwave 2mqtt, but not HA itself)
- #Argo for builds (deprecated in favor of the x64 cloud lab. Building x64 docker containers on arm is BAD)
- Democratic CSI for iscsi/nfs
- #GoHarbor container registry & #dockerhub cache
- #Mealie recipe manager
- #Monica contact manager
- #SMTP relay to gmail
- #Ubiquiti console (bootstrapping becomes a chicken and egg problem though, if it goes down wrong)
- #Wireguard #VPN server
- #Whoogle
- #VisualStudioCode and a #dind sidecar
- SSL termination for most of the rest of the network -
#jfrog #artifactory support is the worst.
Same image pull errors in our #k8s cluster on #aks for months now.
Proxied #docker images, which already exist in atrifactory, can't be pulled, because they are "not found" or "to many requests" error passed from #dockerhub remote registry.
Support unable to help or even to understand the issue.
-
Telegram Боты на Aiogram 3.x: Деплой бота через Docker
Приветствую, друзья! Сегодня мы разберемся, как деплоить бота с использованием Docker. Многие новички считают Docker сложным, но, прочитав эту статью, вы поймете, что это не так, и полюбите эту технологию. Дисклеймер Цель данного руководства — не обучение Docker, а пример использования этой технологии в контекте телеграмм ботов на aiogram 3. Я не буду сильно акцентировать внимание на таких вещах, как слои, volume, docker-compos, bridge и прочей технической информации более глубокого уровня, чем необходимо для деплоя ботов на VPS сервере. Далее вы получите пример использования Docker и общее описание методов (команд). Если вам нужны мои обучающие публикации по Docker, сообщите мне об этом любым удобным способом. Подготовка Для начала вам нужно обзавестись базой данных PostgreSQL. О том, как развернуть ее на VPS сервере, я писал ТУТ . Также потребуется установить Docker. Новичкам будет удобнее поставить Docker Desktop, если с технологией уже знакомы, используйте консольный вариант.
-
Docker 2024 Highlights: Innovations in AI, Security, and Empowering Development Teams
#Products #AIML #Docker #DockerDebug #DockerDesktop #DockerHub #DockerScout #Security #WhatIsDockercollection -
#DockerHub: Gefährliche #Backdoor in älteren #Linux-Images entdeckt
-
Am Wochenende ein wenig #Kubernetes geübt, dafür ein #DockerImage angepasst dabei auf Fragen gestossen:
Wie lädt man Images ins lokale #Minikube hoch? Und wie war das noch gleich mit #DockerHub und wie verwendet man die #GoogleDockerRegistry ?Wenn ich das nächste Mal danach suche, finde ich es auf meiner eigenen Seite :-)
https://www.unixwitch.de/de/sysadmin/tools/k8s_und_docker_images
-
Updated the #veilid rpm repo path for my container. Nice to see that we now have a nightly build as well ! If you are looking for a #veilid #container with a public build pipeline, signed with #cosign and auto released every sunday.
Checkout https://github.com/chimbosonic/veilid-container.
Container images are uploaded to #dockerhub and #quay.io
