Projects in the topic containers
Linux containers is a generic term for an implementation of operating system-level virtualization for the Linux operating system.

Add PIDs cgroup support to runC and Docker

an invention by cyphar

Currently, dealing with forkbombs and similar issues with Docker and runC is not very nice (you have to set a global limit for all Docker processes or you have to limit kernel memory which isn't very practical). I'm going to work on getting some [patches][2] merged into runC and Docker to enable PIDs support for Docker.

Updated over 5 years ago. 1 hackers ♥️.

Rootless Containers

an invention by cyphar

In many cases, people want to start containers on a system where the administrator is not happy about granting privileges to users or installing any new software. For example, when I was a researcher and wanted to run Python 3 on a computing cluster it was not possible to get the administrator to install Docker or Python 3. In recent Linux kernels, it has been possible to create containers without any privileges. All that's missing is a container runtime that allows you to do this. LXC is close but falls short (it requires certain privileged processes and PAM modules for everything to work).

Updated over 4 years ago. 1 hackers ♥️.

SLES/openSUSE integration for Clair

a project by tboerger

Clair is a static vulnerability analyzer for containers. Currently it supports containers based on Debian, Ubuntu and RedHat. I already started this project on the CSM workshop, now I want to finish the integration for openSUSE and SLES based container images. You can track the changes at

Updated over 7 years ago. No love.

OCI Image Distribution with RPMs

a project by cyphar

Currently the Open Container Initiative doesn't specify a distribution protocol or system, and the current "standard" format is the Docker registry protocol. Aside from technical reservations with Docker registry, it is also not an OCI-compliant system and will require a lot of work to integrate it into all of the openSUSE/SUSE tooling. So, a very insane idea I came up with is to convert OCI images to RPMs and then distribute them as simple RPMs. The idea would be to use capabilities (Provides: oci(...)) to implement the different names of images and then also the dependency graph of blobs (which would naturally be de-duplicated).

Updated about 5 years ago. 3 hacker ♥️.

Kubic Desktop - aka Sgt Peppers Read Only Hearts Club Band

a project by RBrownSUSE

The Kubic Project currently produces a "CaaSP-like" Tumbleweed OS, focused on Kubernetes clusters However many of the attributes of Kubic (read-only filesystem, transactional updates, containerised services) could be an interesting platform for another use A Chromebook-like Linux Desktop

Updated over 2 years ago. 10 hacker ♥️.

Learn more about container from SUSE CaaS Platform

a project by xguo

How to deploy container - Docker based on SUSE CaaS Platform.

Updated over 2 years ago. 2 hacker ♥️.

Kernel Boot/Testing Framework with LinuxKit

a project by vrothberg

Problem statement

Once a kernel is built, a developer/janitor may want to boot the kernel for various reasons, such as performing simple boot test or running tests and workloads from user space or simply playing around in a shell. However, an easy to use and a descriptive tool to perform those tasks doesn't exist to our knowledge.

Updated over 2 years ago. 2 hacker ♥️.

move concourse instance from bare-metal to caasp production instance

a project by m_meister

Right now our concourse instance runs containerized (via docker-compose) on bare metal We already have a production caasp instance, so we can already move it there

Updated over 5 years ago. 1 hackers ♥️.

kubeojo: Health metrics for products and testsuites

a project by dmaiocchi

Updated over 2 years ago. 2 hacker ♥️. 1 follower.

OpenShift Origin on Kubic

a project by RBrownSUSE

The incredible Neal Gompa has packaged Open Shift Origin (RH's core Docker + Kubernetes stack) for openSUSE Links:

Updated about 5 years ago. 1 hackers ♥️.

Architecting a Machine Learning project with SUSE CaaSP

an invention by jordimassaguerpla

The goal of this project is to get an overview of the state-of-the-art technology on training and deploying machine learning projects with kubernetes and apply that to a SUSE CaaSP cluster. With that in mind, we will train and deploy a model for summarizing github issues:

Updated over 4 years ago. 4 hacker ♥️. 2 followers.

Hammer an Envoy service mesh onto a SAP S4/HANA landscape and watch everything explode.

a project by STorresi

Although CNCF projects are almost exclusively related to Linux containers, some ideas, like wrapping all the services into network proxies to create a distributed data-plane and enable true observability, could perhaps be explored for some kind of backport in complex legacy distributed systems, like... say... S4/HANA?! I don't even know if this is feasible, but trying won't hurt... just stand at a safe distance from the cluster!

Updated over 4 years ago. 2 hacker ♥️. 2 followers.

Modernize Mash deployment

a project by seanmarlow

Mash is a Python based CI/CD pipeline for automated testing and publishing of public cloud images. Currently the production and development deployment for the package is inconsistent, slow and manual. This is a barrier to rapid development, deployment and testing. It also means the development workflow is different than production. This can lead to production issues which were not seen during development. In order to modernize the Mash workflow I plan to spend the week digging into a plethora of tools to first learn then build out a new workflow. The goal is to simplify deployment by choosing tools that provide consistency, modularity and repeatability. By leveraging the best tools available we can harden the code and accelerate the release cycle.

Updated over 4 years ago. No love. 2 followers.

Run VMs in CaaSP 4 cluster with SUSE-powered kubevirt

a project by jfehlig

This project aims to run VMs in a CaaSP 4 cluster using kubevirt and a libvirt+qemu container (aka compute container) based on SLES15 SP1/2. Compute containers based on openSUSE Leap15.1 and SLES15 SP1 already available in and respectively. VMs can be deployed to the cluster but there are several functional problems that need investigating, e.g. accessing the VM's serial and VNC consoles, proper network access, etc.

Updated over 4 years ago. 2 hacker ♥️. 2 followers.

Packaging libnvidia-containers and nvidia-container-runtime-hook

an invention by jordimassaguerpla

This is a follow up to In the last hackweek I learned that in order to run machine learning workflows on top of SUSE CaaSP, the missing piece is to have libnvidia-containers and nvidia-containers-runtime-hook packaged.

Updated over 4 years ago. 3 hacker ♥️. 1 follower.

Migrate suntorytimed/resourcespace container to an openSUSE base

a project by suntorytimed

Project Description

For quite some time I am providing a ResourceSpace container on Docker Hub. It is meanwhile pulled about 234K times but unfortunately still based on Ubuntu. Meanwhile I have updated the base to Ubuntu 20.04, but I would like to move it to openSUSE instead. With ResourceSpace 9.5 coming out soon I see a possibility of introducing this switch. Enno Gotthold also did a great job of packaging ResourceSpace on OBS, so this could be used as a starting point for the container.

Updated over 2 years ago. 2 hacker ♥️. 2 followers.

Uyuni/SUSE Manager containerization project

a project by moio

Deploy Uyuni as an app from the Rancher marketplace - or install via Helm on any Kubernetes cluster, on any OS, or any Public Cloud.

The dream

Updated over 2 years ago. 10 hacker ♥️. 13 followers.

containerizing MicroOS Desktop components

a project by fcrozat

Project Description

Moving as much as possible of MicroOS Desktop into containers.

Updated over 3 years ago. 5 hacker ♥️. 3 followers.

Rancher & Gardener: Stronger Together

an idea by mlnoga

Project Description

Gardener is SAP's portable Kubernetes distribution and management framework, which aims to create a common base layer for current and future SAP applications and services. Rancher is the leading management framework for arbitrary Kubernetes distributions. Wouldn't it be great if Rancher and Gardener could work together, and Gardner became a first-class citizen in Rancher?

Updated over 3 years ago. 1 hackers ♥️. 1 follower. Has no hacker: grab it!

Near-zero downtime upgrades for stateful services with Rancher

an idea by mlnoga

Project Description

Containers are great for scaling stateless services and making them robust. However, stateful services like databases continue to pose challenges. In particular, upgrading a running database service to a new version with near zero downtime is not trivial. Wouldn't it be great if a helm chart or K8S operator could automatically take care of this for you? This would allow you to fire up a database in your K8S cluster and consume it as-a-service. And put us one step closer to building a private cloud that runs anywhere, powered by pure open source.

Updated over 3 years ago. 2 hacker ♥️. 1 follower. Has no hacker: grab it!

Hack current YES Certification SCK with containers and/or public cloud, seperately SLE Micro

a project by Jackman1

Project Description

Using beta SCK 8.6, attempt to look at hacking options with containers and/or public cloud using Azure or AWS. Do the same thing, completely separate, but using SLE Micro. Probably be a hodgepodge during hack week; but I'll have to get some work done during the it will be perfect for me.

Updated over 3 years ago. 1 hackers ♥️. 2 followers.

multipath-tools: improve CI

a project by mwilck

Project Description

multipath-tools is in urgent need of better CI, both unit tests and "real world" tests. We a very basic set of unit tests, but the coverage is miserable. Also, there's some minimal github workflow code, which could be improved a lot while I'm learning about github workflows.

Updated over 3 years ago. 1 hackers ♥️. 1 follower.

WASM support for cloud native buildpacks

an idea by atgracey

Project Description

The wasm ecosystem is becoming more mature and feature rich. With this, I'd like to allow developers to run their code in wasm without needing to know how to set up their tooling or build the binary. Because of this, I think it would be interesting to extend cloud native buildpacks so you can build wasm-oci images in any of the platforms that support buildpacks.

Updated over 2 years ago. 2 hacker ♥️. 3 followers. Has no hacker: grab it!

Uyuni/SUSE Manager Server Helm chart on k3s

a project by moio

Combined icons of k3s and Uyuni Building on the lessons learned in the previous HackWeek, attack the Server specifically to create a set of containers deployable on k3s via Helm.

Updated over 2 years ago. 4 hacker ♥️. 3 followers.

Package docker compose v2

a record by hennevogel

Package compose and compose-switch to replace the python-docker-compose.

Updated about 2 years ago. No love. 1 follower. Has no hacker: grab it!

Containerized home mirror

a project by lkocman

I'm running a simple home mirror, but I managed to get into a situation where I have to use a bunch of custom excludes. I think we should be able to offer what people want nowadays.\

Updated 8 months ago. 3 hacker ♥️. 5 followers.

containerizing MicroOS Desktop components (reloaded)

an invention by fcrozat

Project Description

This is a continuation of last year project:

Updated about 2 years ago. 3 hacker ♥️. 3 followers.

Family with MicroOS

a project by xguo

Project Description

Try to family with MicroOS for ALP Virtualization

Updated about 2 years ago. 2 hacker ♥️. 1 follower.

a project by lkocman

Let's do what we can to get running as respectively

Project Description

Updated about 2 years ago. 2 hacker ♥️. 2 followers.

Improve SLE Release Management Container

a project by suntorytimed

Project Description

In this project I would like to extend the capabilities of the SLE Release Management Container. This container is used by some colleagues in the SLE Release Management team to have access to osc and other Release Management critical commands inside a container environment. This includes the beta-emails project to send our beta announcements.

Updated over 2 years ago. 3 hacker ♥️. 4 followers.

Humidity sensors with dashboard

a project by joachimwerner

Build a network of ("edge") humidity sensors using Raspberry Pis with SenseHats and additional cheaper sensors

For our house, I want to make sure I can track the effectiveness of regularly ventilating the rooms by adding humidity sensors and tracking the measurements over time.

Updated over 1 year ago. 6 hacker ♥️. 3 followers.

Image generation AI in container using Radeon GPU

an invention by tjyrinki_suse

Project Description

I have casually investigated that recent open source image generation AI systems are relatively invasive of the host system if one starts to install them that way. Usually container is better but needs special configuration to access the needed hardware. I'd like to run something in a container utilizing the RDNA2 Radeon gfx card I have on my desktop computer.

Updated over 1 year ago. 5 hacker ♥️. 2 followers.

Containerfile / Dockerfile generator library

an invention by amanzini

Project Description

Writing container definition files is boring and error-prone: let's use power of a programming language to generate containers!

Updated over 1 year ago. 5 hacker ♥️. 2 followers.

Make iguana-workflow to support multiple container frontends

a project by oholecek

Project Description

Iguana is an attempt to have 100% stable initramfs which functionality is enhanced by containers.

Updated over 1 year ago. No love. 1 follower.

Run sandboxed Firefox with image and sound inside a container

an invention by nguyens

Project Description

Running a web browser from your PC can cause all sorts of security or anonymity issues; e-g: content downloaded could be run automatically from your PC, resulting in disk encryption or other unpleasant events. It would be great if we could run most of this in a container so that we have as much of the web browser sandboxed, and limit the PC's exposure to security events.

Updated over 1 year ago. 1 hackers ♥️. 2 followers.

Improve Docker registry listing tool

a project by rbranco

Project Description

regview is a heavily modified fork of the (no longer maintained) reg tool by Jess Frazelle for listing images in a Docker registry. Some features of reg were removed (like the webserver, to make it only cli) and others added. Some bugs were fixed (and PR's submitted) and others added as well.

Updated over 1 year ago. 1 hackers ♥️. 1 follower.

Building a CNF solution for Edge environment

a project by lizhang

Project Description

Network management is very important for cloud and Edge. CNF(cloud-native network function) is next-generation VNF.

Updated over 1 year ago. 3 hacker ♥️. 3 followers.

Container images for building the Uyuni docs

an invention by juliogonzalezgil

Project Description

The Uyuni doc requires a lot of dependencies installed to be built. Keeping your system on the right versions or reinstalling can be a challenge.

Updated over 1 year ago. 2 hacker ♥️. 1 follower.

Man pages in a container

an idea by doreilly

Project Description

MicroOS and Jeos images don't have their man pages installed to save space. This means having to switch to a browser or a full system just to look things up.

Updated over 1 year ago. 1 hackers ♥️. 1 follower. Has no hacker: grab it!

image-tools: simple tool for mirror/save/load container images & KDM and chart image list generator.

an invention by StarryWang

Project Description

Currently, the way to install Rancher in Air-Gap mode (with personal registry server) is using the rancher-save/ script to save container images required by Rancher into tar.gz tarball and load it into the personal registry. These scripts work fine when saving and loading single-arch images.

Updated over 1 year ago. 3 hacker ♥️. 2 followers.

K3S Control Planes as a service

a project by ademicev0

Project Description

We know that Kubernetes clusters need control planes but running them in dedicated VMs might not be always efficient, instead, we can run them as pods within the management cluster.

Updated over 1 year ago. 3 hacker ♥️. 1 follower.

openSUSE MicroOS based NAS

a project by dmach

Project Description

Try running openSUSE MicroOS on a home NAS.

Updated over 1 year ago. 2 hacker ♥️. 3 followers.

Samba in Kubernetes (for openSUSE)

a project by dmulder

Project Description

The SINK project is a set of containers and tools for Samba in Kubernetes. The images and tooling for the project are designed for Fedora and RH systems. The ultimate goal of this project is to tweak the tooling for use with our build service, etc.

Updated over 1 year ago. No love. 1 follower.

Real-time container runtime support

an invention by a_faerber

Project Description

As per discussions in the SOAFEE SIG that SUSE is a founding member of, container users will be in need of running workloads with mixed criticality.

Updated over 1 year ago. 1 hackers ♥️. 3 followers.

Containerized git server/client for playground and tutorials

a project by mberti

Project Description

Create a set of container images for serving a mock git server and mock git clients in a Kubernetes cluster that can be used as building blocks for an interactive git playground.

Updated over 1 year ago. 1 hackers ♥️. 1 follower.

Hack on project MONAI (Medical Open Network for Artificial Intelligence)

an invention by jordimassaguerpla

Project Description

MONAI is a set of open-source, freely available collaborative frameworks built for accelerating research and clinical collaboration in Medical Imaging. The goal is to accelerate the pace of innovation and clinical translation by building a robust software framework that benefits nearly every level of medical imaging, deep learning research, and deployment.

Updated over 1 year ago. 1 hackers ♥️. 1 follower.

Generic Wrangler Controllers

an invention by kjoiner

Project Description

The rancher/rancher project uses generated wrangler controllers to manage Kubernetes objects.

Updated over 1 year ago. No love. 1 follower.

A set of utilities to produce a "from scratch" OCI/Docker container using Opensuse/SLE rpms

a project by ldragon

Project Description

I recently used melange and apko to build a from scratch image. The result was a set of auditable and easy to use container and apk repository. The toolkit reduces the work need to make from scratch images with minimal work on the actual docker container(which can be quite painful if you've tried making a from scratch image on your own).

Updated 11 months ago. 7 hacker ♥️. 6 followers.

Package MONAI Machine Learning Models for Medical Applications

an invention by jordimassaguerpla

Project Description

MONAI Deploy aims to become the de-facto standard for developing packaging, testing, deploying, and running medical AI applications in clinical production. MONAI Deploy creates a set of intermediate steps where researchers and physicians can build confidence in the techniques and approaches used with AI — allowing for an iterative workflow.

Updated 8 months ago. 1 hackers ♥️. 2 followers.

Exploring DPDK within containers

a project by paolodepa

Project Description

Containerization is here to stay and seems to be the next big thing also in the upcoming OSes releases.

Updated 8 months ago. 2 hacker ♥️. 2 followers.