npm - container-superposition - Versions diffs - 0.1.1 - Mend

container-superposition 0.1.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (327) hide show

package/README.md +843 -0
package/dist/scripts/init.d.ts +3 -0
package/dist/scripts/init.d.ts.map +1 -0
package/dist/scripts/init.js +1190 -0
package/dist/scripts/init.js.map +1 -0
package/dist/scripts/migrate-to-manifests.d.ts +12 -0
package/dist/scripts/migrate-to-manifests.d.ts.map +1 -0
package/dist/scripts/migrate-to-manifests.js +230 -0
package/dist/scripts/migrate-to-manifests.js.map +1 -0
package/dist/tool/questionnaire/composer.d.ts +6 -0
package/dist/tool/questionnaire/composer.d.ts.map +1 -0
package/dist/tool/questionnaire/composer.js +1232 -0
package/dist/tool/questionnaire/composer.js.map +1 -0
package/dist/tool/readme/markdown-parser.d.ts +30 -0
package/dist/tool/readme/markdown-parser.d.ts.map +1 -0
package/dist/tool/readme/markdown-parser.js +139 -0
package/dist/tool/readme/markdown-parser.js.map +1 -0
package/dist/tool/readme/readme-generator.d.ts +9 -0
package/dist/tool/readme/readme-generator.d.ts.map +1 -0
package/dist/tool/readme/readme-generator.js +422 -0
package/dist/tool/readme/readme-generator.js.map +1 -0
package/dist/tool/schema/custom-loader.d.ts +17 -0
package/dist/tool/schema/custom-loader.d.ts.map +1 -0
package/dist/tool/schema/custom-loader.js +149 -0
package/dist/tool/schema/custom-loader.js.map +1 -0
package/dist/tool/schema/overlay-loader.d.ts +47 -0
package/dist/tool/schema/overlay-loader.d.ts.map +1 -0
package/dist/tool/schema/overlay-loader.js +252 -0
package/dist/tool/schema/overlay-loader.js.map +1 -0
package/dist/tool/schema/types.d.ts +212 -0
package/dist/tool/schema/types.d.ts.map +1 -0
package/dist/tool/schema/types.js +5 -0
package/dist/tool/schema/types.js.map +1 -0
package/docs/README.md +308 -0
package/docs/architecture.md +233 -0
package/docs/creating-overlays.md +549 -0
package/docs/custom-patches.md +540 -0
package/docs/dependencies.md +279 -0
package/docs/examples/custom-patches-example.md +85 -0
package/docs/examples.md +576 -0
package/docs/messaging-comparison.md +265 -0
package/docs/messaging-quick-start.md +385 -0
package/docs/observability-workflow.md +537 -0
package/docs/overlay-manifest-refactoring.md +214 -0
package/docs/overlay-metadata-archive.md +54 -0
package/docs/overlays.md +523 -0
package/docs/presets-architecture.md +498 -0
package/docs/presets.md +366 -0
package/docs/publishing.md +476 -0
package/docs/quick-reference.md +326 -0
package/docs/ux.md +170 -0
package/features/README.md +85 -0
package/features/cross-distro-packages/README.md +146 -0
package/features/cross-distro-packages/devcontainer-feature.json +20 -0
package/features/cross-distro-packages/install.sh +58 -0
package/features/local-secrets-manager/devcontainer-feature.json +18 -0
package/features/local-secrets-manager/install.sh +127 -0
package/features/project-scaffolder/devcontainer-feature.json +24 -0
package/features/project-scaffolder/install.sh +100 -0
package/features/team-conventions/devcontainer-feature.json +24 -0
package/features/team-conventions/install.sh +93 -0
package/overlays/.registry/README.md +14 -0
package/overlays/.registry/base-images.yml +26 -0
package/overlays/.registry/base-templates.yml +7 -0
package/overlays/README.md +155 -0
package/overlays/alertmanager/.env.example +5 -0
package/overlays/alertmanager/README.md +465 -0
package/overlays/alertmanager/alert-rules.yml +56 -0
package/overlays/alertmanager/alertmanager.yml +42 -0
package/overlays/alertmanager/devcontainer.patch.json +12 -0
package/overlays/alertmanager/docker-compose.yml +20 -0
package/overlays/alertmanager/overlay.yml +17 -0
package/overlays/alertmanager/setup.sh +53 -0
package/overlays/alertmanager/verify.sh +31 -0
package/overlays/aws-cli/README.md +473 -0
package/overlays/aws-cli/devcontainer.patch.json +13 -0
package/overlays/aws-cli/overlay.yml +13 -0
package/overlays/azure-cli/README.md +551 -0
package/overlays/azure-cli/devcontainer.patch.json +8 -0
package/overlays/azure-cli/overlay.yml +13 -0
package/overlays/bun/README.md +312 -0
package/overlays/bun/devcontainer.patch.json +41 -0
package/overlays/bun/overlay.yml +16 -0
package/overlays/bun/setup.sh +79 -0
package/overlays/bun/verify.sh +30 -0
package/overlays/codex/README.md +128 -0
package/overlays/codex/devcontainer.patch.json +3 -0
package/overlays/codex/overlay.yml +14 -0
package/overlays/codex/setup.sh +24 -0
package/overlays/codex/verify.sh +30 -0
package/overlays/commitlint/README.md +333 -0
package/overlays/commitlint/devcontainer.patch.json +8 -0
package/overlays/commitlint/overlay.yml +16 -0
package/overlays/commitlint/setup.sh +234 -0
package/overlays/direnv/README.md +504 -0
package/overlays/direnv/devcontainer.patch.json +6 -0
package/overlays/direnv/overlay.yml +13 -0
package/overlays/direnv/setup.sh +139 -0
package/overlays/docker-in-docker/README.md +534 -0
package/overlays/docker-in-docker/devcontainer.patch.json +10 -0
package/overlays/docker-in-docker/overlay.yml +13 -0
package/overlays/docker-sock/README.md +256 -0
package/overlays/docker-sock/devcontainer.patch.json +9 -0
package/overlays/docker-sock/docker-compose.yml +8 -0
package/overlays/docker-sock/overlay.yml +13 -0
package/overlays/dotnet/README.md +147 -0
package/overlays/dotnet/devcontainer.patch.json +51 -0
package/overlays/dotnet/global-tools.txt +24 -0
package/overlays/dotnet/overlay.yml +13 -0
package/overlays/dotnet/setup.sh +51 -0
package/overlays/dotnet/verify.sh +26 -0
package/overlays/gcloud/README.md +269 -0
package/overlays/gcloud/devcontainer.patch.json +14 -0
package/overlays/gcloud/overlay.yml +14 -0
package/overlays/gcloud/verify.sh +52 -0
package/overlays/git-helpers/README.md +168 -0
package/overlays/git-helpers/devcontainer.patch.json +33 -0
package/overlays/git-helpers/overlay.yml +15 -0
package/overlays/git-helpers/setup.sh +91 -0
package/overlays/go/README.md +293 -0
package/overlays/go/devcontainer.patch.json +43 -0
package/overlays/go/overlay.yml +15 -0
package/overlays/go/setup.sh +33 -0
package/overlays/go/verify.sh +40 -0
package/overlays/grafana/.env.example +9 -0
package/overlays/grafana/README.md +462 -0
package/overlays/grafana/dashboard-provider.yml +11 -0
package/overlays/grafana/dashboards/observability-overview.json +263 -0
package/overlays/grafana/devcontainer.patch.json +12 -0
package/overlays/grafana/docker-compose.yml +27 -0
package/overlays/grafana/grafana-datasources.yml +57 -0
package/overlays/grafana/overlay.yml +21 -0
package/overlays/grafana/verify.sh +34 -0
package/overlays/jaeger/.env.example +7 -0
package/overlays/jaeger/README.md +867 -0
package/overlays/jaeger/devcontainer.patch.json +12 -0
package/overlays/jaeger/docker-compose.yml +17 -0
package/overlays/jaeger/overlay.yml +19 -0
package/overlays/java/README.md +267 -0
package/overlays/java/devcontainer.patch.json +44 -0
package/overlays/java/overlay.yml +16 -0
package/overlays/java/setup.sh +41 -0
package/overlays/java/verify.sh +42 -0
package/overlays/just/README.md +443 -0
package/overlays/just/devcontainer.patch.json +3 -0
package/overlays/just/overlay.yml +13 -0
package/overlays/just/setup.sh +182 -0
package/overlays/kubectl-helm/README.md +660 -0
package/overlays/kubectl-helm/devcontainer.patch.json +10 -0
package/overlays/kubectl-helm/overlay.yml +13 -0
package/overlays/loki/.env.example +5 -0
package/overlays/loki/README.md +1156 -0
package/overlays/loki/devcontainer.patch.json +12 -0
package/overlays/loki/docker-compose.yml +18 -0
package/overlays/loki/loki-config.yaml +45 -0
package/overlays/loki/overlay.yml +17 -0
package/overlays/minio/.env.example +9 -0
package/overlays/minio/README.md +639 -0
package/overlays/minio/devcontainer.patch.json +30 -0
package/overlays/minio/docker-compose.yml +28 -0
package/overlays/minio/overlay.yml +18 -0
package/overlays/minio/setup.sh +61 -0
package/overlays/minio/verify.sh +64 -0
package/overlays/mkdocs/README.md +309 -0
package/overlays/mkdocs/devcontainer.patch.json +24 -0
package/overlays/mkdocs/overlay.yml +15 -0
package/overlays/modern-cli-tools/README.md +556 -0
package/overlays/modern-cli-tools/devcontainer.patch.json +3 -0
package/overlays/modern-cli-tools/overlay.yml +13 -0
package/overlays/modern-cli-tools/setup.sh +153 -0
package/overlays/mongodb/.env.example +9 -0
package/overlays/mongodb/README.md +481 -0
package/overlays/mongodb/devcontainer.patch.json +32 -0
package/overlays/mongodb/docker-compose.yml +44 -0
package/overlays/mongodb/overlay.yml +17 -0
package/overlays/mongodb/verify.sh +48 -0
package/overlays/mysql/.env.example +11 -0
package/overlays/mysql/README.md +542 -0
package/overlays/mysql/devcontainer.patch.json +34 -0
package/overlays/mysql/docker-compose.yml +55 -0
package/overlays/mysql/overlay.yml +16 -0
package/overlays/mysql/verify.sh +48 -0
package/overlays/nats/.env.example +5 -0
package/overlays/nats/README.md +762 -0
package/overlays/nats/devcontainer.patch.json +24 -0
package/overlays/nats/docker-compose.yml +31 -0
package/overlays/nats/overlay.yml +18 -0
package/overlays/nats/verify.sh +50 -0
package/overlays/ngrok/README.md +503 -0
package/overlays/ngrok/devcontainer.patch.json +3 -0
package/overlays/ngrok/overlay.yml +14 -0
package/overlays/ngrok/setup.sh +125 -0
package/overlays/nodejs/README.md +192 -0
package/overlays/nodejs/devcontainer.patch.json +49 -0
package/overlays/nodejs/global-packages.txt +16 -0
package/overlays/nodejs/overlay.yml +14 -0
package/overlays/nodejs/setup.sh +46 -0
package/overlays/nodejs/verify.sh +32 -0
package/overlays/otel-collector/.env.example +9 -0
package/overlays/otel-collector/README.md +1257 -0
package/overlays/otel-collector/devcontainer.patch.json +28 -0
package/overlays/otel-collector/docker-compose.yml +22 -0
package/overlays/otel-collector/otel-collector-config.yaml +68 -0
package/overlays/otel-collector/overlay.yml +21 -0
package/overlays/otel-collector/setup.sh +49 -0
package/overlays/otel-demo-nodejs/.env.example +2 -0
package/overlays/otel-demo-nodejs/Dockerfile-otel-demo-nodejs +17 -0
package/overlays/otel-demo-nodejs/README.md +409 -0
package/overlays/otel-demo-nodejs/devcontainer.patch.json +12 -0
package/overlays/otel-demo-nodejs/docker-compose.yml +19 -0
package/overlays/otel-demo-nodejs/overlay.yml +23 -0
package/overlays/otel-demo-nodejs/package-otel-demo-nodejs.json +20 -0
package/overlays/otel-demo-nodejs/server-otel-demo-nodejs.js +259 -0
package/overlays/otel-demo-nodejs/tracing-otel-demo-nodejs.js +57 -0
package/overlays/otel-demo-nodejs/verify.sh +31 -0
package/overlays/otel-demo-python/.env.example +2 -0
package/overlays/otel-demo-python/Dockerfile-otel-demo-python +16 -0
package/overlays/otel-demo-python/README.md +82 -0
package/overlays/otel-demo-python/app-otel-demo-python.py +208 -0
package/overlays/otel-demo-python/devcontainer.patch.json +12 -0
package/overlays/otel-demo-python/docker-compose.yml +19 -0
package/overlays/otel-demo-python/overlay.yml +23 -0
package/overlays/otel-demo-python/requirements-otel-demo-python.txt +4 -0
package/overlays/otel-demo-python/verify.sh +31 -0
package/overlays/playwright/README.md +629 -0
package/overlays/playwright/devcontainer.patch.json +9 -0
package/overlays/playwright/overlay.yml +13 -0
package/overlays/postgres/.env.example +6 -0
package/overlays/postgres/README.md +602 -0
package/overlays/postgres/devcontainer.patch.json +21 -0
package/overlays/postgres/docker-compose.yml +22 -0
package/overlays/postgres/overlay.yml +15 -0
package/overlays/postgres/verify.sh +45 -0
package/overlays/powershell/README.md +314 -0
package/overlays/powershell/devcontainer.patch.json +22 -0
package/overlays/powershell/overlay.yml +13 -0
package/overlays/powershell/setup.sh +29 -0
package/overlays/powershell/verify.sh +38 -0
package/overlays/pre-commit/README.md +263 -0
package/overlays/pre-commit/devcontainer.patch.json +9 -0
package/overlays/pre-commit/overlay.yml +16 -0
package/overlays/pre-commit/setup.sh +129 -0
package/overlays/presets/docs-site.yml +118 -0
package/overlays/presets/fullstack.yml +181 -0
package/overlays/presets/microservice.yml +118 -0
package/overlays/presets/web-api.yml +109 -0
package/overlays/prometheus/.env.example +5 -0
package/overlays/prometheus/README.md +1246 -0
package/overlays/prometheus/devcontainer.patch.json +12 -0
package/overlays/prometheus/docker-compose.yml +22 -0
package/overlays/prometheus/overlay.yml +17 -0
package/overlays/prometheus/prometheus.yml +12 -0
package/overlays/prometheus/verify.sh +34 -0
package/overlays/promtail/.env.example +2 -0
package/overlays/promtail/README.md +357 -0
package/overlays/promtail/devcontainer.patch.json +5 -0
package/overlays/promtail/docker-compose.yml +16 -0
package/overlays/promtail/overlay.yml +17 -0
package/overlays/promtail/promtail-config.yaml +60 -0
package/overlays/promtail/verify.sh +31 -0
package/overlays/pulumi/README.md +472 -0
package/overlays/pulumi/devcontainer.patch.json +13 -0
package/overlays/pulumi/overlay.yml +14 -0
package/overlays/pulumi/verify.sh +31 -0
package/overlays/python/README.md +919 -0
package/overlays/python/devcontainer.patch.json +41 -0
package/overlays/python/overlay.yml +12 -0
package/overlays/python/requirements-overlay.txt +13 -0
package/overlays/python/setup.sh +47 -0
package/overlays/python/verify.sh +32 -0
package/overlays/rabbitmq/.env.example +7 -0
package/overlays/rabbitmq/README.md +680 -0
package/overlays/rabbitmq/devcontainer.patch.json +28 -0
package/overlays/rabbitmq/docker-compose.yml +30 -0
package/overlays/rabbitmq/overlay.yml +18 -0
package/overlays/rabbitmq/verify.sh +41 -0
package/overlays/redis/.env.example +4 -0
package/overlays/redis/README.md +776 -0
package/overlays/redis/devcontainer.patch.json +21 -0
package/overlays/redis/docker-compose.yml +21 -0
package/overlays/redis/overlay.yml +15 -0
package/overlays/redis/verify.sh +41 -0
package/overlays/redpanda/.env.example +10 -0
package/overlays/redpanda/README.md +703 -0
package/overlays/redpanda/devcontainer.patch.json +37 -0
package/overlays/redpanda/docker-compose.yml +67 -0
package/overlays/redpanda/overlay.yml +21 -0
package/overlays/redpanda/verify.sh +48 -0
package/overlays/rust/README.md +299 -0
package/overlays/rust/devcontainer.patch.json +39 -0
package/overlays/rust/overlay.yml +15 -0
package/overlays/rust/setup.sh +36 -0
package/overlays/rust/verify.sh +51 -0
package/overlays/sqlite/README.md +584 -0
package/overlays/sqlite/devcontainer.patch.json +14 -0
package/overlays/sqlite/overlay.yml +15 -0
package/overlays/sqlite/setup.sh +27 -0
package/overlays/sqlite/verify.sh +43 -0
package/overlays/sqlserver/.env.example +6 -0
package/overlays/sqlserver/README.md +592 -0
package/overlays/sqlserver/devcontainer.patch.json +22 -0
package/overlays/sqlserver/docker-compose.yml +32 -0
package/overlays/sqlserver/overlay.yml +17 -0
package/overlays/sqlserver/verify.sh +30 -0
package/overlays/tempo/.env.example +5 -0
package/overlays/tempo/README.md +273 -0
package/overlays/tempo/devcontainer.patch.json +12 -0
package/overlays/tempo/docker-compose.yml +20 -0
package/overlays/tempo/overlay.yml +20 -0
package/overlays/tempo/tempo-config.yaml +32 -0
package/overlays/tempo/verify.sh +31 -0
package/overlays/terraform/README.md +389 -0
package/overlays/terraform/devcontainer.patch.json +15 -0
package/overlays/terraform/overlay.yml +14 -0
package/overlays/terraform/verify.sh +63 -0
package/package.json +74 -0
package/templates/README.md +285 -0
package/templates/compose/.devcontainer/devcontainer.json +46 -0
package/templates/compose/.devcontainer/docker-compose.yml +12 -0
package/templates/compose/README.md +20 -0
package/templates/plain/.devcontainer/devcontainer.json +35 -0
package/templates/plain/README.md +21 -0
package/tool/README.md +281 -0
package/tool/schema/base-images.schema.json +43 -0
package/tool/schema/base-templates.schema.json +34 -0
package/tool/schema/config.schema.json +71 -0
package/tool/schema/overlay-manifest.schema.json +86 -0

package/overlays/docker-in-docker/README.md ADDED Viewed

@@ -0,0 +1,534 @@
+# Docker-in-Docker Overlay
+Run a fully isolated Docker daemon inside your development container. This is true Docker-in-Docker (DinD).
+## Features
+- **Isolated Docker daemon** - Separate Docker environment inside the container
+- **Portable** - Works in GitHub Codespaces and remote environments
+- **Full Docker support** - Build, run, and manage containers independently
+- **Network isolation** - Containers run in their own network namespace
+- **Safe for multi-tenant** - No shared Docker daemon with host
+## How It Works
+This overlay runs a full Docker daemon inside the development container using the official `docker:dind` (Docker-in-Docker) feature from Microsoft. Unlike **docker-sock** which mounts the host's Docker socket, this creates a completely isolated Docker environment.
+**Architecture:**
+```mermaid
+graph TD
+    A[Development Container] --> B[Docker Daemon DinD]
+    B --> C[Container 1]
+    B --> D[Container 2]
+```
+## Use Cases
+### Required for These Environments
+- **GitHub Codespaces** - No access to host Docker
+- **Remote containers** - Cloud-based dev environments
+- **Multi-tenant systems** - Shared development servers
+- **CI/CD environments** - Isolated build environments
+### Development Workflows
+- **Container builds** - Build Docker images in isolated environment
+- **Testing multi-container apps** - Use docker-compose for integration tests
+- **Container experimentation** - Test without affecting host
+- **Learning Docker** - Safe sandbox environment
+### Security-Sensitive Scenarios
+- **Untrusted code** - Run potentially malicious containers safely
+- **Shared environments** - Multiple users without host access
+- **Production-like isolation** - Closer to production container runtime
+## Common Commands
+All standard Docker commands work inside the container:
+### Building Images
+```bash
+# Build from Dockerfile
+docker build -t myapp:latest .
+# Build with build args
+docker build --build-arg NODE_VERSION=20 -t myapp .
+# Multi-stage build
+docker build --target production -t myapp:prod .
+# Build with cache from registry
+docker build --cache-from myapp:latest -t myapp:latest .
+```
+### Running Containers
+```bash
+# Run container
+docker run -d -p 8080:80 nginx
+# Run with volume mount
+docker run -v $(pwd):/app myapp
+# Run with environment variables
+docker run -e DATABASE_URL=postgres://... myapp
+# Run interactively
+docker run -it ubuntu bash
+```
+### Docker Compose
+```bash
+# Start services
+docker-compose up -d
+# View logs
+docker-compose logs -f
+# Stop services
+docker-compose down
+# Rebuild and restart
+docker-compose up -d --build
+# Scale services
+docker-compose up -d --scale web=3
+```
+### Image Management
+```bash
+# List images
+docker images
+# Tag image
+docker tag myapp:latest myapp:v1.0.0
+# Push to registry
+docker push myapp:latest
+# Pull image
+docker pull nginx:latest
+# Remove image
+docker rmi myapp:latest
+# Prune unused images
+docker image prune -a
+```
+### Container Management
+```bash
+# List running containers
+docker ps
+# List all containers
+docker ps -a
+# Stop container
+docker stop CONTAINER_ID
+# Remove container
+docker rm CONTAINER_ID
+# Execute command in container
+docker exec -it CONTAINER_ID bash
+# View logs
+docker logs CONTAINER_ID
+# Follow logs
+docker logs -f CONTAINER_ID
+```
+### Cleanup
+```bash
+# Remove all stopped containers
+docker container prune
+# Remove all unused images
+docker image prune -a
+# Remove all unused volumes
+docker volume prune
+# Remove everything
+docker system prune -a --volumes
+```
+## Docker-in-Docker vs Docker-outside-of-Docker
+| Feature            | Docker-in-Docker (This)  | Docker-outside-of-Docker |
+| ------------------ | ------------------------ | ------------------------ |
+| **Isolation**      | ✅ Fully isolated        | ❌ Shares host daemon    |
+| **Performance**    | ⚠️ Slower (nested)       | ✅ Fast (native)         |
+| **Disk Usage**     | ⚠️ Duplicates images     | ✅ Shared image cache    |
+| **Portability**    | ✅ Works everywhere      | ❌ Requires host Docker  |
+| **Security**       | ✅ Isolated              | ⚠️ Host access           |
+| **Codespaces**     | ✅ Supported             | ❌ Not available         |
+| **Startup Time**   | ⚠️ Slower (daemon start) | ✅ Instant               |
+| **Resource Usage** | ⚠️ Higher overhead       | ✅ Minimal overhead      |
+## When to Use Docker-in-Docker
+✅ **Use DinD when:**
+- Working in GitHub Codespaces or cloud IDEs
+- Need complete isolation from host
+- Sharing dev environment with untrusted users
+- Simulating CI/CD environments
+- No access to host Docker daemon
+- Security and isolation are priorities
+❌ **Use docker-sock instead when:**
+- Working on local machine with Docker Desktop
+- Need maximum performance
+- Building large images frequently
+- Want to share images with host
+- Resource efficiency is critical
+## Configuration
+### Storage Driver
+The DinD daemon uses `overlay2` storage driver by default. For production-like environments:
+```bash
+# Check storage driver
+docker info | grep "Storage Driver"
+# Expected output:
+# Storage Driver: overlay2
+```
+### Registry Authentication
+```bash
+# Login to Docker Hub
+docker login
+# Login to private registry
+docker login registry.example.com
+# Login to GitHub Container Registry
+echo $GITHUB_TOKEN | docker login ghcr.io -u USERNAME --password-stdin
+# Login to AWS ECR (requires aws-cli overlay)
+aws ecr get-login-password --region us-east-1 | \
+  docker login --username AWS --password-stdin 123456789012.dkr.ecr.us-east-1.amazonaws.com
+```
+### Docker Daemon Configuration
+The Docker daemon inside the container can be configured via the devcontainer feature settings. Advanced users can modify daemon settings.
+## Networking
+### Container Networking
+Containers created inside DinD use their own network namespace:
+```bash
+# Create custom network
+docker network create mynetwork
+# Run containers on network
+docker run -d --name db --network mynetwork postgres
+docker run -d --name app --network mynetwork myapp
+# Containers can communicate by name
+# app can connect to db:5432
+```
+### Port Publishing
+```bash
+# Publish port from DinD container
+docker run -d -p 8080:80 nginx
+# Access from dev container
+curl http://localhost:8080
+# Access from host (requires port forwarding)
+# VS Code automatically forwards ports
+```
+### Accessing Services from Host
+When running containers inside DinD, published ports need to be accessible:
+1. **VS Code** - Automatically detects and forwards ports
+2. **Manual** - Use VS Code port forwarding UI
+3. **devcontainer.json** - Pre-configure port forwarding
+## Performance Considerations
+### Image Caching
+DinD has its own image cache. To optimize:
+```bash
+# Pull base images once
+docker pull node:20
+docker pull postgres:16
+docker pull redis:7
+# Use multi-stage builds to reduce size
+# Use .dockerignore to exclude files
+# Layer Dockerfile commands for optimal caching
+```
+### Storage Management
+DinD storage is ephemeral by default (lost on rebuild):
+```bash
+# Check disk usage
+docker system df
+# Clean up regularly
+docker system prune -a
+# Monitor space
+df -h
+```
+### Resource Limits
+The Docker daemon inherits resource limits from the dev container. For resource-intensive builds:
+```json
+// In devcontainer.json
+{
+    "hostRequirements": {
+        "cpus": 4,
+        "memory": "8gb"
+    }
+}
+```
+## Building for Multiple Platforms
+```bash
+# Enable buildx
+docker buildx create --use
+# Build for multiple architectures
+docker buildx build \
+  --platform linux/amd64,linux/arm64 \
+  -t myapp:latest \
+  --push \
+  .
+# Build for specific platform
+docker buildx build \
+  --platform linux/amd64 \
+  -t myapp:amd64 \
+  .
+```
+## Troubleshooting
+### Docker daemon not running
+The daemon should start automatically. If not:
+```bash
+# Check if Docker is available
+docker info
+# If not available, rebuild container
+# VS Code: Cmd+Shift+P → "Dev Containers: Rebuild Container"
+```
+### Permission denied errors
+```bash
+# Verify user is in docker group
+groups
+# Expected: docker group should be listed
+# The devcontainer feature handles this automatically
+```
+### Out of disk space
+```bash
+# Check disk usage
+docker system df
+# Clean up
+docker system prune -a --volumes
+# Remove specific images
+docker rmi $(docker images -q -f dangling=true)
+```
+### Slow build times
+```bash
+# Use BuildKit for faster builds
+export DOCKER_BUILDKIT=1
+# Use build cache
+docker build --cache-from myapp:latest -t myapp:latest .
+# Optimize Dockerfile layer ordering
+# Put frequently changing layers last
+```
+### Cannot connect to containers
+```bash
+# Verify port publishing
+docker ps
+# Check port is published (0.0.0.0:8080->80/tcp)
+docker port CONTAINER_NAME
+# Verify VS Code port forwarding
+# Check Ports tab in VS Code
+```
+### Registry authentication fails
+```bash
+# Re-login to registry
+docker logout
+docker login
+# Check credentials
+cat ~/.docker/config.json
+```
+## Security Considerations
+### Privileged Mode
+⚠️ **DinD requires privileged mode to run nested containers**
+This is handled by the devcontainer feature but means:
+- Container has elevated permissions
+- Not recommended for untrusted code execution
+- Still safer than docker-sock (no host access)
+### Image Security
+```bash
+# Scan images for vulnerabilities
+docker scan myapp:latest
+# Use official base images
+FROM node:20-alpine  # Better than node:20
+# Keep images updated
+docker pull node:20-alpine
+docker build --no-cache -t myapp .
+```
+### Secrets Management
+⚠️ **Never bake secrets into images**
+```bash
+# Use build secrets (not in final image)
+docker build --secret id=mysecret,src=/path/to/secret .
+# Use multi-stage builds
+# Secrets only in build stage, not final image
+# Use environment variables at runtime
+docker run -e API_KEY=$API_KEY myapp
+```
+## Best Practices
+1. **Clean up regularly** - Run `docker system prune` to free space
+2. **Use .dockerignore** - Exclude unnecessary files from build context
+3. **Multi-stage builds** - Reduce final image size
+4. **Layer ordering** - Put frequently changing layers last
+5. **Pin versions** - Use specific tags, not `latest`
+6. **Scan images** - Check for vulnerabilities
+7. **Use BuildKit** - Enable for better caching and performance
+8. **Limit privileges** - Run containers as non-root when possible
+## Common Workflows
+### Local Development with Docker Compose
+```bash
+# Create docker-compose.yml
+cat > docker-compose.yml <<EOF
+version: '3.8'
+services:
+  app:
+    build: .
+    ports:
+      - "3000:3000"
+    environment:
+      - DATABASE_URL=postgres://db:5432/mydb
+    depends_on:
+      - db
+  db:
+    image: postgres:16
+    environment:
+      - POSTGRES_PASSWORD=password
+EOF
+# Start services
+docker-compose up -d
+# View logs
+docker-compose logs -f
+# Stop services
+docker-compose down
+```
+### Building and Testing
+```bash
+# Build application
+docker build -t myapp:dev .
+# Run tests
+docker run --rm myapp:dev npm test
+# Run application
+docker run -p 3000:3000 myapp:dev
+# Build production image
+docker build --target production -t myapp:prod .
+```
+## Related Overlays
+- **docker-sock** - Conflicts with this overlay (use one or the other)
+- **kubectl-helm** - For deploying to Kubernetes
+- **nodejs/python/dotnet** - Build containerized applications
+- **postgres/redis** - Database services (can run via Docker)
+## Additional Resources
+- [Docker-in-Docker Official Documentation](https://github.com/devcontainers/features/tree/main/src/docker-in-docker)
+- [Docker Documentation](https://docs.docker.com/)
+- [Docker Compose Documentation](https://docs.docker.com/compose/)
+- [Best practices for writing Dockerfiles](https://docs.docker.com/develop/develop-images/dockerfile_best-practices/)
+- [Docker BuildKit](https://docs.docker.com/build/buildkit/)
+## Notes
+- This overlay **conflicts** with **docker-sock** - only one can be selected
+- Works in **all environments** including GitHub Codespaces
+- DinD storage is **ephemeral** (reset on container rebuild)
+- Daemon starts automatically when container starts
+- Performance is slower than docker-sock but more portable

package/overlays/docker-in-docker/devcontainer.patch.json ADDED Viewed

@@ -0,0 +1,10 @@
+{
+    "$schema": "https://raw.githubusercontent.com/devcontainers/spec/main/schemas/devContainer.base.schema.json",
+    "features": {
+        "ghcr.io/devcontainers/features/docker-in-docker:2": {
+            "version": "latest",
+            "moby": false,
+            "dockerDashComposeVersion": "v2"
+        }
+    }
+}

package/overlays/docker-in-docker/overlay.yml ADDED Viewed

@@ -0,0 +1,13 @@
+id: docker-in-docker
+name: Docker-in-Docker
+description: Isolated Docker daemon inside container (portable, works in Codespaces)
+category: dev
+supports: []
+requires: []
+suggests: []
+conflicts:
+    - docker-sock
+tags:
+    - dev
+    - docker
+ports: []