Anyone in here using unprivileged docker container builders? If so, which?
I use rules_docker and bazel to do this
It doesn't actually use docker for anything unless you request it to run the container or upload it to the docker instance. When it's composing layers/container images, it does so, logically, as a collection of tarballs
it also uses the google distroless containers by default, which are pretty small (smaller than alpine) and allow you to layer in debian packages if you need to
I have my whole clojure project using bazel, but if you just wanted the devops portion, you could easily use rules_foreign_jvm to reuse a lein deploy or lein install jar/war and then have rules_docker layer that onto a java image
rules_docker will automatically follow the dependencies set up by rules_jvm_external (under the hood, this is coursier, the same as SBT) and add the necessary classpath for you
nice if you're already using bazel, but probably a lot to bite off if you don't have any experience with it
thanks for the answer 🙂 , it's been 2 years
oh, I just readded this slack to my new laptop and was looking at updated messages. Sorry, didn't notice the timestamp.
haha, I appreciate it
I left the clojure world and now primarily exist in the bazel and c++ worlds, but I managed to get clojure back into my org for some tooling and decided to rejoin the slack. need to be careful with timestamps given how long it's been.