buildah

Build container from Dockerfile

$ buildah bud -t [myimage] [.]

$ buildah from [fedora]

$ buildah run [container-id] [dnf install -y httpd]

$ buildah commit [container-id] [myimage]

$ buildah push [myimage] [docker://registry/image]

buildah command [options]

buildah is a tool for building OCI and Docker container images without requiring a daemon. It provides fine-grained control over image layers and can build from Dockerfiles or through direct manipulation of containers.
The tool is part of the Podman ecosystem and emphasizes security and scriptability.

bud

Build using Dockerfile

Create working container

Run command in container

Save container as image

Push image to registry

Pull image from registry

List images

List working containers

Remove container

Remove image

From Dockerfile:

$ buildah bud -t myapp:latest .

$ # Create container
ctr=$(buildah from fedora)

# Install packages
buildah run $ctr dnf install -y nginx

# Copy files
buildah copy $ctr ./app /app

# Set config
buildah config --cmd "/app/start.sh" $ctr

# Commit
buildah commit $ctr myapp:latest

- Daemonless operation
- Rootless builds
- Dockerfile compatibility
- Fine-grained layer control
- OCI image format
- Multiple storage backends
- Script-friendly

Different from Docker (learning curve). Some Docker features not supported. Rootless mode has limitations. Storage configuration important. Not as widely adopted as Docker.

buildah was created by Red Hat around 2017 as a component of their container tooling suite, focusing on building without daemons.

podman(1), docker(1), skopeo(1)