this post was submitted on 21 Feb 2024
122 points (97.7% liked)

Selfhosted

40183 readers
1026 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 4 points 9 months ago (10 children)

I don't understand. Why are they so specific in the Docker Compose? Why not just have a Docker that pulls the latest of each package without requiring the user to copy long strings?

[–] [email protected] 14 points 9 months ago (7 children)

For the exact reason they are posting this. What if some service you are referencing has breaking changes? If you pinpoint the exact version it will have no effect to your project unless you decide (hopefully after some consideration) to upgrade the service version number.

[–] [email protected] 4 points 9 months ago (6 children)

Sorry, I think I'm asking my question poorly, what I mean is instead of

image: tensorchord/pgvecto-rs:pg14-v0.2.0@sha256:90724186f0a3517cf6914295b5ab410db9ce23190a2d9d0b9dd6463e3fa298f0
    

Which clearly requires user interaction, why not take that out of users' hands and just have

image: tensorchord/pgvecto-rs:latest-stable
    

Which is effectively what they're using anyway? I can understand freezing on a version when the upstream removes a feature, but that's not happened and even so, why do they need the SHA verification? Sorry if it seems stupid and straight forward, this is the only container I host that does this and so I'm trying to understand it rather than just feel aggrieved by it.

[–] [email protected] 7 points 9 months ago (1 children)

Also, it's best practise to specifically refer to the digest for containers to avoid re-tags resulting in different images. For folks who audit what runs on their infrastructure, digests are the standard way of referring to an image. For Immich, I'd presume that the digest is partially a security thing and partially a "this specific image is known to be working".

[–] [email protected] 4 points 9 months ago

Thank you very much for teaching me something new

load more comments (4 replies)
load more comments (4 replies)
load more comments (6 replies)