frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

Open in hackernews

Using Podman, Compose and BuildKit

https://emersion.fr/blog/2025/using-podman-compose-and-buildkit/
148•LaSombra•4h ago

Comments

cyprien_g•3h ago
I have never used Podman, but I hear about it very often. I currently use Colima (https://github.com/abiosoft/colima) and I'm very satisfied with it.

I have tried to find a good comparison between the two, but I find it hard to have a clear opinion on which one is best for me.

rockyj•3h ago
Colima is related but separate, Colima runs a Linux VM seamlessly in MacOS so you can interact with Docker as if it was running on your host OS. Podman will also need a VM (coz there is no native Docker on MacOS).
dizhn•3h ago
That sounded like podman needs docker. It's more of a mostly compatible separate product that does not need a daemon to run. Both probably lack things like cgroups (a Linux kernel really) etc on macos.
privatelypublic•2h ago
Podman Desktop uses a VM on windows too.(WSL2)
cmiles74•3h ago
I use Podman, I wanted a Docker-like experience on MacOS or Windows. I use it to provide services during development (PostgreSQL, etc.) and working on image builds. It works pretty well. :-)
lloydjones•3h ago
I encountered this exact issue (no buildkit with Podman) months ago. I gave up and used Docker desktop, but I'm glad you didn't. Well done!
haolez•2h ago
But Docker can run rootless these days, right? Can anyone chime in with how well does this work?
pxc•2h ago
Actually setting up rootless Docker is pretty manual and kludgy. With Podman, rootless is pretty much effortless.
jabl•2h ago
If you're not wedded to docker-compose, with podman you can instead use the podman kube support, which provides roughly docker-compose equivalent features using a subset of the Kubernetes pod deployment syntax.

Additionally, podman has nice systemd integration for such kube services, you just need to write a short systemd config snippet and then you can manage the kube service just like any other systemd service.

Altogether a very nice combination for deploying containerized services if you don't want to go the whole hog to something like Kubernetes.

GCUMstlyHarmls•2h ago
(I'm a big podman stan)

Last I tried using the .kube files I ran into issues with specifying container networks (https://github.com/containers/podman/issues/12965).

This is sort of "fixed" by using a Quadlet ".kube" but IMO that's a pretty weak solution and removes the "here's your compose file, run it" aspect.

Recently (now that Deb13 is out with Podman 5) I have started transitioning to Podmans Quadlet files which have been quite smooth so far. As you say, its great to run things without all the overhead of kubernetes.

teekert•2h ago
"...removes the "here's your compose file, run it"

Claude recently hallucinated this for me:

    [Container]
    ComposeService=my-service
    Yaml=/path/to/your/podman-compose.yaml
For a brief moment in time I was happy but then:

Can you really use "ComposeService" in the systemd unit file? I can't find any reference to it

You're absolutely right to question that - I made an error. There is no ComposeService directive in systemd or Quadlet.

It would be a nice best of both worlds...

iTokio•2h ago
Isn’t that limited to a single node?

How would you configure a cluster? I’m trying to explore lightweight alternatives to kubernetes, such as docker swarm, but I think that the options are limited if you must support clusters with equivalent of pods and services at least.

gf000•1h ago
In the off chance your search didn't expand to k3s, I can semi-recommend it.

My setup is a bit clunky (having a Hetzner cloud instance as controller and a local server as a node throught Tailscale), from which I get an occasional strange error that k3s pods fail to resolve another pod's domain without me having to re-create the DNS resolver system pod, and that I so far failed at getting Velero backups to work with k3s's local storage providers, but otherwise it is pretty decent.

iTokio•1h ago
K3s is light in terms of resources, but heavy in operational complexity, I’m not looking for a smaller version of kubernetes but for a simple way to run container backed services when you’re not google but a small company, something that has few moving parts but is very reliable and low maintenance.
zelphirkalt•43m ago
I once tried Nomad for a very brief moment. Not sure if it fits your bill.
jabl•36m ago
> Isn’t that limited to a single node?

Yes. Though unless you have a very dynamic environment maybe statically assigning containers to hosts isn't an insurmountable burden?

sc68cal•16m ago
> How would you configure a cluster?

So, unless you have a service that requires a fixed number of running instances that is not the same count as the number of servers, I would argue that maybe you don't need Kubernetes.

For example, I built up a Django web application and a set of Celery workers, and just have the same pod running on 8 servers, and I just use an Ansible playbook that creates the podman pod and runs the containers in the pod.

depingus•2h ago
> you just need to write a short systemd config snippet and then you can manage the kube service just like any other systemd service.

Just FYI, `podman generate systemd --files --name mypod` will create all the systemd service files for you.

https://docs.podman.io/en/latest/markdown/podman-generate-sy...

justusthane•1h ago
`podman generate systemd` was created as a bandaid because it was so difficult to manually write systemd units.

Quadlets now make it much easier to create the units by hand, and ‘ `podman generate systemd` is deprecated.

klysm•44m ago
Echoing the other comment that quadlet is the way to go here
3abiton•16m ago
I am curious performance wise about the performance difference between podman and incus. I found incus to be also extremly flexible.
mstade•2h ago
I replaced my Docker usage entirely with OrbStack[1] a few months ago, and have had zero issues with it so far. Great product that I happily pay a license for.

My usage is fairly basic though and I'm sure mileage varies, but for my basic web dev setup it's been perfect.

[1]: https://orbstack.dev/

jFriedensreich•1h ago
orbstack is just a vm provider for docker on mac, colima offers the same features without a ui and is a great open replacement but as neither supports podman both are not really relevant to the podman discussion.
nicce•1h ago
> orbstack is just a vm provider for docker on mac

”just” is a big statement here. Performance between colima and OrbStack are from different planets.

Apple just released their own runtime so that is also worth inspecting.

jFriedensreich•34m ago
can you back that claim up? i see a huge difference between orbstack and docker desktop but colima and orbstack use afaik the same technology and the performance was near identical in my tests. (Though you need to change the colima settings to vz and virtiofs)
epistasis•24m ago
The UI of OrbStack is probably one the biggest features, so a replacement without the UI doesn't make a ton of sense for most people that like OrbStack.
gz09•1h ago
Unfortunately, it's quite a big mess (as the article indicates), which leads to a steep learning curve for someone who "just wants to build some images".

And that's just half of it. Want to build an image on two native architectures (ARM64 and AMD64) and then make a multi-arch image out of them. Might blow someones mind on how complicated that is with 2025 docker technologies: https://docs.docker.com/build/ci/github-actions/multi-platfo...

smjburton•1h ago
This is an interesting find OP and could help people transition from Docker to Podman (especially if they're used to deploying with Docker-Compose).

I think the better long-term approach though is to use systemd user units for deployment, or the more modern approach of using Podman Quadlets. There's a bit of a learning curve, but these approaches are more native to the Podman platform, and learning how systemd services work is a great skill to have.

lukaslalinsky•47m ago
I was a huge fan of Podman, but I eventually gave up and use Docker Compose for local development. It's not worth fighting the system.

However, for single server deployments, where I don't need Kubernetes, I now exclusively use Quadlets to run apps and I couldn't be happier. It's a much nicer experience that using typical Docker/Podman setup. It feels integrated into the system.

heavensteeth•33m ago
I tried Podman on my messing around VPS but quickly reverted to rootless Docker.

The straw that broke the camels back was a bug in `podman compose` that funnily enough was fixed two hours ago[1]; if `service1` has a `depends_on` on `service2`, bringing down `service1` will unconditionally bring down `service2`, even if other services also depend on it. So if two separate services depend on a database, killing one of them will kill the database too.

Another incompatibility with Docker I experienced was raised in 2020 and fixed a few months ago[2]; you couldn't pass URLs to `build:` to automatically pull and build images. The patch for this turned out to be a few lines long.

I'm sure Podman will be great once all of these bugs are ironed out, but for me, it's not quite there yet.

[1]: https://github.com/containers/podman-compose/pull/1283

[2]: https://github.com/containers/podman-compose/issues/127

AWS CEO says using AI to replace junior staff is 'Dumbest thing I've ever heard'

https://www.theregister.com/2025/08/21/aws_ceo_entry_level_jobs_opinion/
620•JustExAWS•2h ago•224 comments

How Well Does the Money Laundering Control System Work?

https://www.journals.uchicago.edu/doi/10.1086/735665
91•PaulHoule•2h ago•63 comments

Apple Watch wearable foundation model

https://arxiv.org/abs/2507.00191
28•brandonb•1h ago•2 comments

Weaponizing image scaling against production AI systems

https://blog.trailofbits.com/2025/08/21/weaponizing-image-scaling-against-production-ai-systems/
125•tatersolid•3h ago•30 comments

Using Podman, Compose and BuildKit

https://emersion.fr/blog/2025/using-podman-compose-and-buildkit/
149•LaSombra•4h ago•30 comments

Launch HN: Skope (YC S25) – Outcome-based pricing for software products

8•benjsm•30m ago•1 comments

D4d4

https://www.nmichaels.org/musings/d4d4/d4d4/
343•csense•3d ago•41 comments

Show HN: ChartDB Cloud – Visualize and Share Database Diagrams

https://app.chartdb.io
37•Jonathanfishner•2h ago•7 comments

Show HN: OS X Mavericks Forever

https://mavericksforever.com/
155•Wowfunhappy•2d ago•45 comments

Mark Zuckerberg freezes AI hiring amid bubble fears

https://www.telegraph.co.uk/business/2025/08/21/zuckerberg-freezes-ai-hiring-amid-bubble-fears/
343•pera•4h ago•347 comments

Show HN: Using Common Lisp from Inside the Browser

https://turtleware.eu/posts/Using-Common-Lisp-from-inside-the-Browser.html
42•jackdaniel•3h ago•7 comments

You Should Add Debug Views to Your DB

https://chrispenner.ca/posts/views-for-debugging
19•ezekg•3d ago•8 comments

Activeloop (YC S18) Is Hiring Member of Technical Staff – Back End Engineering

https://careers.activeloop.ai/
1•davidbuniat•3h ago

Margin debt surges to record high

https://www.advisorperspectives.com/dshort/updates/2025/07/23/margin-debt-surges-record-high-june-2025
119•pera•4h ago•141 comments

Sütterlin

https://en.wikipedia.org/wiki/S%C3%BCtterlin
42•anonu•3d ago•32 comments

Why is D3 so Verbose?

https://theheasman.com/short_stories/why-is-d3-code-so-long-and-complicated-or-why-is-it-so-verbose/
37•TheHeasman•5h ago•25 comments

Unification (2018)

https://eli.thegreenplace.net/2018/unification/
62•asplake•3d ago•13 comments

In a first, Google has released data on how much energy an AI prompt uses

https://www.technologyreview.com/2025/08/21/1122288/google-gemini-ai-energy/
62•jeffbee•1h ago•56 comments

AI crawlers, fetchers are blowing up websites; Meta, OpenAI are worst offenders

https://www.theregister.com/2025/08/21/ai_crawler_traffic/
110•rntn•4h ago•46 comments

Why are anime catgirls blocking my access to the Linux kernel?

https://lock.cmpxchg8b.com/anubis.html
705•taviso•1d ago•751 comments

Show HN: I replaced vector databases with Git for AI memory (PoC)

https://github.com/Growth-Kinetics/DiffMem
152•alexmrv•9h ago•36 comments

Show HN: I was curious about spherical helix, ended up making this visualization

https://visualrambling.space/moving-objects-in-3d/
822•damarberlari•1d ago•132 comments

A Conceptual Model for Storage Unification

https://jack-vanlightly.com/blog/2025/8/21/a-conceptual-model-for-storage-unification
10•avinassh•2h ago•0 comments

Home Depot sued for 'secretly' using facial recognition at self-checkouts

https://petapixel.com/2025/08/20/home-depot-sued-for-secretly-using-facial-recognition-technology-on-self-checkout-cameras/
275•mikece•1d ago•368 comments

Sixteen bottles of wine riddle

https://chriskw.xyz/2025/08/11/Wine/
38•chriskw•3d ago•11 comments

A statistical analysis of Rotten Tomatoes

https://www.statsignificant.com/p/is-rotten-tomatoes-still-reliable
201•m463•15h ago•114 comments

To Infinity but Not Beyond

https://meyerweb.com/eric/thoughts/2025/08/20/to-infinity-but-not-beyond/
36•roosgit•6h ago•2 comments

Epson MX-80 Fonts

https://mw.rat.bz/MX-80/
143•m_walden•4d ago•56 comments

Code review can be better

https://tigerbeetle.com/blog/2025-08-04-code-review-can-be-better/
344•sealeck•16h ago•203 comments

The rise and fall of the Seagaia Ocean Dome wave pool

https://www.surfertoday.com/surfing/the-untold-story-of-the-seagaia-ocean-dome-indoor-wave-pool
15•herbertl•3d ago•1 comments