21 articles tagged with Docker.
Tune the host OS for container workloads: kernel params, I/O, and cgroups.
Harden container images and runtime. Image scanning, minimal base, and supply chain security.
Unify traces, metrics, and logs with OpenTelemetry. Instrumentation, sampling, and backend-agnostic pipelines.
Our base image went from 1.2 GB and 200+ CVEs to 80 MB and 4 CVEs. Most of the work wasn't clever — it was deletion.
We mapped every byte that ends up in our production containers. The map showed three places trust was implicit. Each became a control.
We deploy LangChain apps in Docker on Kubernetes. The patterns that work, the LangChain-specific gotchas, and what we'd build differently next time.
HPA, VPA, and Cluster Autoscaler / Karpenter solve overlapping problems badly when you don't understand which one owns what. The mental model that keeps them from fighting.
We run a fleet of LLM agents on Kubernetes. They're stateful, bursty, and expensive — none of which K8s defaults are good at. Here's what we changed.
We cut our average production image size by 78% with multi-stage builds. The patterns that worked, the ones that didn't, and the production gotchas.
