zlacker

[parent] [thread] 2 comments
1. happym+(OP)[view] [source] 2026-01-02 09:23:08
Current job used to let us run containers locally, but they decided to wrap initially docker, and then podman with "helper" scripts. These broke regularly, and became too much overhead to maintain so we are mandated to do local dev but access a dev k8 cluster to perform any level of testing that is more than unit and requires a db.

A really shame as running local docker/podman for postges was fine when you just ran the commands.

replies(1): >>cdogl+U6
2. cdogl+U6[view] [source] 2026-01-02 10:31:41
>>happym+(OP)
I find this quite surprising! What benefit does your org accrue by mandating that the db instance used for testing is centralised? Where I am, the tests simply assume that there’s a database available on a certain port. docker-compose.yml makes it easy to spin this up for those so inclined. At that stage it’s immaterial whether it’s running natively, or in docker, or forwarded from somewhere else. Our tests stump up all the data they need and tear down the db afterwards. In contrast, I imagine that a dev k8s cluster requires some management and would be a single point of failure.
replies(1): >>happym+A71
◧◩
3. happym+A71[view] [source] [discussion] 2026-01-02 17:47:42
>>cdogl+U6
I really don't understand why they do what they do.

Large corp gotta large corp?

My guess is that providing the ability to pull containers means you can run code that they haven't explicitly given permission for, and the laptop scanning tools can't hijack them?

[go to top]