Parasoft(link is external) is showcasing its latest product innovations at embedded world Exhibition, booth 4-318(link is external), including new GenAI integration with Microsoft Visual Studio Code (VS Code) to optimize test automation of safety-critical applications while reducing development time, cost, and risk.
Switching to a Container-based Application Architecture? Not So Fast
November 03, 2021
Container technology, such as Docker and CoreOS, have become an increasingly popular step in DevOps journeys. Containers are lightweight and portable, making them easier on organizations' resources. Containers can benefit cloud environments in a variety of ways, but that does not mean they are perfect for every situation. Software teams must manage a container's life cycle, including provisioning, deployment, scaling (up and down), networking, load balancing and more. The maintenance and implementation of container technology can be tedious and, therefore, there are situations where containers simply are not a good idea.
I asked top industry experts — DevOps Institute Ambassadors(link is external)— to share their thoughts on when you may not want to use containers. Here's what landed at the top of the list:
Anshul Lalit(link is external)
head of technology and transformation, Kongsberg Digital
"Containers are perfect for deploying an application with many dependencies that the end-user does not need to touch. However, containers might not be the best option if the application is very lightweight, and it's not essential for users to quickly update the application with each new version. For example, I would recommend for a monolith lift-and-shift to use a simple VM to avoid disruption.
In addition, it is vital to understand the limitations and differences between using a container and using another technology stack. Some use cases where you may avoid containers are:
If you need to use a special driver, capability or incompatible software with the standard container kernel.
If you need to change the kernel configuration, use a custom kernel, add other software or run commands that interfere with a container's standard configuration.
If you need to work with files that are incompatible with a container. For example, if you need to access a file system or a database not available in a container.
Also, as a general guideline, I highly recommend The Twelve-Factor App methodology for building modern software-as-a-service (SaaS) apps. It just makes your product life easier, predictable and covers all bases."
Supratip Banerjee(link is external)
solutions architect, Principal Global Services
"If security is a priority, maybe Docker is not the best solution.
The most significant security benefit of Docker is that it divides the software into smaller pieces. If the security of one component is jeopardized, others are unaffected. While separated processes in containers offer greater security, all containers have access to the same host operating system. You face the risk of operating Docker containers with insufficient isolation. Any malicious malware has the ability to gain access to your computer's memory.
It is common practice to operate a large number of containers in a single environment. Unless you limit the resource container capabilities, this is how you make your app vulnerable to resource abuse attacks. Each container should handle one specific area of concern for optimal efficiency and isolation.
Another issue is that Docker's default setup does not namespace users. Namespaces allow software resources to use other resources only if they are in the same namespace."
Parveen Arora(link is external)
co-founder and director, VVnT SeQuor
"If you're doing a project(s) related to "lift and shift" of your applications, you may be better off with a simple VM deployment to experience the least amount of disruption. However, if you're creating a new application from scratch, you're probably better off starting with containers."
Vishnu Vasudevan(link is external)
head of product engineering and development, Opsera
"If you're running a monolithic application, people assume that switching from monolithic to container-based microservices is like flipping a switch, but that's not the case. Understanding the application needs to happen first and deciding to make it containerized is only viable if your team has the right skills for converting a monolithic application into a containerized application. If you do not have the skills within the application team running the monolith, they are likely going to fail. Whoever is building the application needs to know best practices for container orchestration. They need to analyze and recommend whether or not this application fits in the wheelhouse of containerization. Do not try to move everything to containers because it's the popular thing to do or your competitors are doing it. It has to be solely based on the merit of the application, not based on the merit of the person pushing to move to containers."
Join DevOps Institute for SKILup Day: Container Orchestration(link is external), for how-to sessions to expand your container knowledge.
Industry News
March 06, 2025
JFrog announced general availability of its integration with NVIDIA NIM microservices, part of the NVIDIA AI Enterprise software platform.
March 06, 2025
CloudCasa by Catalogic announce an integration with SUSE® Rancher Prime via a new Rancher Prime Extension.
March 05, 2025
MacStadium(link is external) announced the extended availability of Orka(link is external) Cluster 3.2, establishing the market’s first enterprise-grade macOS virtualization solution available across multiple deployment options.
March 05, 2025
JFrog is partnering with Hugging Face, host of a repository of public machine learning (ML) models — the Hugging Face Hub — designed to achieve more robust security scans and analysis forevery ML model in their library.
March 05, 2025
Copado launched DevOps Automation Agent on Salesforce's AgentExchange, a global ecosystem marketplace powered by AppExchange for leading partners building new third-party agents and agent actions for Agentforce.
March 05, 2025
Harness completed its merger with Traceable, effective March 4, 2025.
March 04, 2025
JFrog released JFrog ML, an MLOps solution as part of the JFrog Platform designed to enable development teams, data scientists and ML engineers to quickly develop and deploy enterprise-ready AI applications at scale.
March 04, 2025
Progress announced the addition of Web Application Firewall (WAF) functionality to Progress® MOVEit® Cloud managed file transfer (MFT) solution.
March 04, 2025
Couchbase launched Couchbase Edge Server, an offline-first, lightweight database server and sync solution designed to provide low latency data access, consolidation, storage and processing for applications in resource-constrained edge environments.
March 04, 2025
Sonatype announced end-to-end AI Software Composition Analysis (AI SCA) capabilities that enable enterprises to harness the full potential of AI.
March 03, 2025
Aviatrix® announced the launch of the Aviatrix Kubernetes Firewall.
March 03, 2025
ScaleOps announced the general availability of their Pod Placement feature, a solution that helps companies manage Kubernetes infrastructure.
March 03, 2025
Cloudsmith raised a $23 million Series B funding round led by TCV, with participation from Insight Partners and existing investors.
February 27, 2025
IBM has completed its acquisition of HashiCorp, whose products automate and secure the infrastructure that underpins hybrid cloud applications and generative AI.
