Containers are tents
I've read a lot of articles recently that seem to suggest containers kinda suck. I've often seen containers referred to as "Lightweight VMs," yet it's this focus on containers as a form of virtualization that leads to a lot of the angst. Just like we can compile code to statically link all dependencies into a single binary, containers offer a way to statically link all the runtime dependencies your code might have. From a security perspective, containers are useful because they provide a very limited attack surface, along with a way to version everything your program needs to run, in addition to the code itself. Much as you'd likely choose to live in a two-bedroom townhouse over a tent, if what you need is a lightweight operating system, containers aren't your best option. No one would argue that tents serve the same purpose as brick-and-mortar houses-nor that they should! Containers make terrible VMs. If we insist on judging a tent as a house, or a container as a VM, then it's always going to fall short. As long as we don't expect foundations that go down to the bedrock, containers can be incredibly valuable tools.