Good idea. I wonder if nx and pnpm could be ran like that as well
Comment on S1ngularity/nx attackers strike again
fxdave@lemmy.ml 1 day ago
Keep your secrets:
alias npm="docker run -it --rm -v $(pwd):/app -w /app node:latest npm"
voronaam@lemmy.world 1 day ago
fxdave@lemmy.ml 22 hours ago
You can, for pnpm package cache you need to attach another volume, and another for globally installed packages.
panda_abyss@lemmy.ca 19 hours ago
I thought I was crazy for doing this, but it’s good to know I’m not the only one.
This won’t protect your .env files though, right?
fxdave@lemmy.ml 6 hours ago
Right, but my machine is safe at least.
socphoenix@midwest.social 16 hours ago
I use bsd containers for everything but home assistant on my home server and love them! The downside for most people at the moment is having to set them up manually. I can export the thin jail and move the archive across computers as backups and the fine tuned control is beautiful. FreeBSD offers a way to check for security vulnerabilities in installed packages (pkg audit -F) that I run as a cron job and email myself daily to check for needed updates.
Problem is most people want a single docker install and it’s all set up, not something that needs manual configuration. Bastille has templates that can do this for bsd jails but there’s not a lot of services with templates.