Does docker compose replace docker run?

Not exactly — they serve different purposes. docker run is for quick, one-off container starts (local testing, debugging, running a script). docker compose is for defining multi-container applications with dependencies, networks, and volumes in a repeatable, version-controlled format. For anything beyond a temporary local container, compose is the better choice: it documents the configuration, makes startup reproducible, and works with CI/CD pipelines without extra scripting.

What are the most common Dockerfile mistakes?

The most common issues are: using latest as the base image tag (breaks reproducibility), running the application as root (security risk if the container is compromised), using ADD instead of COPY for local files (ADD has implicit decompression behavior that's usually not what you want), and installing packages without cleaning up the cache afterward (inflates image size). A Dockerfile linter will catch all of these and explain why each one matters.

How much memory should I give a Node.js container?

A baseline Node.js process typically uses 50–100MB at startup. Add memory per worker process (usually 100–200MB for a typical API service), plus headroom for garbage collection spikes (roughly 50% buffer). A single-worker Node.js API handling moderate traffic is usually safe with 256MB–512MB. For a multi-worker setup or a memory-intensive workload (image processing, large datasets), 512MB–1GB is more appropriate. The Docker Container Resource Calculator can help you work through these numbers based on your specific workload parameters.

Anúncios incomodam? Ir Sem anúncios Hoje 

Docker Workflow Tools Convert, Generate, Lint, and Size Your Containers

Publicado em Mai 29, 2026

Four free tools that fix Docker command sprawl: convert docker run to compose, generate a starter Dockerfile, lint it for best practices, and calculate container resource limits.

Docker Workflow Tools: Convert, Generate, Lint, and Size Your Containers 1

ANUNCIADO Remover?

It starts innocently enough. You paste a docker run command into a Slack thread so your teammate can spin up a local database. Two months later, that same command is in four different channels, three wikis, and a comment in a bash script that nobody remembers writing. Nobody knows if it still works. Nobody knows which environment it’s for.

Docker commands sprawl fast. A single Postgres instance needs a network flag, a volume mount, a restart policy, environment variables for credentials, and a port binding. That’s a 200-character one-liner that’s nearly impossible to review, version, or hand off. Multiply it by five services and you’ve got unmaintainable infrastructure.

Four free tools solve different parts of this problem. Used in order, they take you from a chaotic run command to a production-ready, linted container setup in under ten minutes.

Tool 1: Docker Run to Compose Converter

The most painful moment in a Docker-heavy workflow is inheriting a service that lives entirely in someone’s shell history. The Conversor de Docker Run para Compose takes that archaeological artifact and turns it into a proper docker-compose.yml.

Here’s a realistic example: a Postgres container started the old way.

docker run -d \
  --name postgres-db \
  --restart unless-stopped \
  -e POSTGRES_USER=myapp \
  -e POSTGRES_PASSWORD=secretpassword \
  -e POSTGRES_DB=myapp_production \
  -v postgres_data:/var/lib/postgresql/data \
  -p 5432:5432 \
  --network app-network \
  postgres:15-alpine

Paste that into the converter and you get:

services:
  postgres-db:
    image: postgres:15-alpine
    container_name: postgres-db
    restart: unless-stopped
    environment:
      POSTGRES_USER: myapp
      POSTGRES_PASSWORD: secretpassword
      POSTGRES_DB: myapp_production
    volumes:
      - postgres_data:/var/lib/postgresql/data
    ports:
      - 5432:5432
    networks:
      - app-network

volumes:
  postgres_data:

networks:
  app-network:

That’s a reviewable, version-controllable file instead of a command that only runs correctly if you remember all the flags. The converter handles network aliases, volume declarations, restart policies, and environment variables — all the things that get lost when someone types from memory.

It’s particularly useful when onboarding a new service. Instead of asking “can you send me the run command?”, you can ask for the compose file — and if they don’t have one, generate it from whatever they do have.

Tool 2: Dockerfile Generator

Writing a Dockerfile from scratch for a new service means either copying one from another project (and inheriting its bad habits) or spending twenty minutes on documentation. The Gerador de Dockerfile skips both by giving you a production-ready starting point based on the language and runtime you pick.

Select Node.js, Python, Go, PHP, or another runtime, and the generator produces a Dockerfile that already includes:

A specific, pinned base image version instead of latest
Multi-stage builds where applicable (build stage separate from runtime)
A non-root user for running the application
Proper layer ordering to maximize cache efficiency
A .dockerignore-friendly structure

These are the things developers routinely skip when writing a Dockerfile under time pressure, then scramble to fix when a security audit flags them. Starting from a generated template means you’re beginning with the baseline already covered.

The output isn’t meant to be deployed as-is — you’ll still customize entrypoints, environment variables, and build commands. But the structural decisions are already sound, and you’re editing rather than authoring from nothing.

Tool 3: Dockerfile Linter

Even experienced engineers write Dockerfiles with subtle problems. A few of the most common: using latest as the base image tag, using ADD arquivos .env COPY is correct, running processes as root, or installing packages without cleaning up the apt cache afterward. None of these crash a build — they just create security risks, bloated images, or non-reproducible builds.

O Dockerfile Linter catches these issues before they reach production. Paste your Dockerfile and it returns a list of warnings and explanations — not just what’s wrong, but why it matters and what to do instead.

Common flags you’ll see on real Dockerfiles:

Pin your base image — FROM node:latest will pull a different image on every build; use node:20-alpine for reproducibility
Use COPY instead of ADD — ADD has implicit behavior (auto-extracts tarballs, fetches URLs) that creates unpredictable build results
Drop root privileges — add a USER directive so your app doesn’t run as root inside the container
Clean package caches — apt-get install sem && rm -rf /var/lib/apt/lists/* adds unnecessary megabytes to every image layer

Running the linter takes thirty seconds and typically catches at least two or three issues in any Dockerfile that wasn’t already written against a checklist. It’s a cheap way to do a partial security and correctness review before opening a PR.

Tool 4: Docker Container Resource Calculator

The moment developers most often discover they’ve misconfigured memory limits is when a container gets OOM-killed in production and takes the service down with it. The Calculadora de Recursos de Contêineres Docker is the preventive step that should happen before that.

You input the container type, expected workload, number of concurrent requests or processes, and baseline memory per worker. The calculator returns recommended --memory e --cpus limits with a buffer for spikes.

This matters because the default behavior — no limits set — means a single misbehaving container can starve every other service on the host. On shared infrastructure, that’s an incident. The calculator helps you set limits that are realistic rather than arbitrary, so you’re not guessing at 512m and hoping.

It’s also useful for sizing hosts. If you know your application needs 256MB per worker and you want to run four workers, you can calculate the minimum instance size before provisioning — rather than provisioning something too small and resizing under load.

Putting the Workflow Together

These four tools map to a natural sequence when you’re setting up a new service or inheriting an old one:

Start with the run command. If you have a working docker run command, convert it to a compose file first. This gives you something reviewable and version-controllable.
Generate a Dockerfile if you don’t have one. Pick the runtime, get a solid starting point, then customize for your application.
Lint the Dockerfile. Run it through the linter before committing. Fix whatever it flags — most issues take under a minute to resolve.
Set resource limits. Before deploying to a shared host, calculate realistic memory and CPU limits. Add them to your compose file.

This sequence takes longer to describe than it does to execute. In practice, steps two through four take about five minutes per service. The payoff is a container setup that’s reproducible, reviewable, and sized correctly for the host it’s running on.