Nice find. Its a bit strange that the PRs listed there, are not present at all in the coinbase repo. Seems like the attack was directed there, but I also did not hear anything from Coinbase on this.

eg. Target their NPM and PYPI tokens, so they can push compromised packages.

I wonder if they forked it to "experiment" with the workflow coinbase has and doesn't actually make any pull request toward them, perhaps to validate their hypothesis/attack. with that said, coinbase pulled the workflow that used tj-actions/changed-files immediately around this time so hopefully no harm was done https://github.com/coinbase/agentkit/pull/570/files

Amazing feature/release!

Docker Desktop includes the easy to run Docker Engine / Docker Machine. I think is fair to assume that most of the revenue is not from users that want a GUI but from users that want a stable Docker Engine experience.

Anecdotal, but my experience, as someone who gives DevOps professional services for many organizations, is that windows users that need containers know that they are called Docker and just download that. Must of them absolutely need GUI. Most of them doesn't know that Docker Desktop requires license, and I convert them to Rancher Desktop.

Nothing wrong with paying for good software.

It's nearly a crime when a government pay with tax money for product that is in low usage and have zero advantage over the free alternative.

just because it costs money, doesn't mean it's good software.

That seems like a non sequitur.

I think many of the performance points here are a trait of a VM in Cloud more than K8s, and they would be no different if running in EC2 right?

> Not sure how much or if this had influence from Guava at all

I don't see any similarity between the two that would lead me to believe that there is influence. Why do you mention this?

This seems like a plug to your product more than anything else.

I like the idea of Dagger and have been following for a while, but it seems like its tailored to get people to use their Cloud product. eg. Caching.

Is that not the case?

Caching is definitely their product and one of the main benefits.

1. You can get the developer UX improvements without shared caching

2. You can run it in k8s and get shared caches there. I believe it should support any BuildKit caching solutions, and they will help you figure that out in Discord

Congrats on the launch, certainly good to see competition.

I was reading https://www.ubicloud.com/blog/ubicloud-hosted-arm-runners-10... but seems like a bit misleading to compare an ARM workload over QEMU vs a native ARM.

What about native x86 vs native x86 or at least native x86 vs native arm?

You might enjoy https://github.com/jessfraz/dotfiles/blob/master/.dockerfunc I think she had an article about this as well.

https://blog.jessfraz.com/post/docker-containers-on-the-desk... is the one I remember, a bit old but still useful to see how she does it.

Seems super painful and indirected for a nebulous gain to me, but find your joy however you want I guess

Well then, it must be really bad if with all those features and many years it did not manage to gain so many users.

Bad replies, to bad replies

GitOps (as in ArgoCD style workflows) is not nice. Deploying from code, and storing all infra, etc as code is great, but this pull based approach creates IMHO a really decoupled and inconvenient deployment pipeline.