Best of Containers — April 2026

1. 1
   Article

   Collections·7w

   Docker Offload is now generally available: run Docker Desktop with a cloud-hosted engine

   Docker Offload is now generally available, moving the Docker container engine from local machines to Docker's cloud infrastructure. Developers on VDI platforms, locked-down laptops, or restricted networks can use Docker Desktop without workflow changes — CLI, UI, bind mounts, port forwarding, and Compose all work as before. Sessions run in isolated, temporary environments over encrypted tunnels on SOC 2 certified infrastructure with centralized audit logging. Two deployment tiers are offered: multi-tenant for most enterprise teams and single-tenant dedicated VPCs for regulated industries. It integrates with existing IAM and SSO policies and is an add-on to Docker Business. Upcoming features include BYOC support, CI/CD integration with GitHub Actions and GitLab CI, and GPU-backed instances for AI/ML workloads.

   33

   3
2. 2
   Article

   Golang Weekly·4w

   Golang Weekly Issue 598: April 24, 2026

   Issue 598 of Golang Weekly covers several Go-focused articles: building a minimal container from scratch using Linux namespaces, a deep dive into the Go runtime's network poller (covering epoll/kqueue/IOCP and goroutine parking), a comparison of Go and Rust startup times, a production-grade Raft implementation designed to fail, and real-time goroutine tracing with eBPF.

   19
3. 3
   Article

   Foojay.io·4w

   Dockerizing a Java 26 Project with Docker Init

   A step-by-step guide to containerizing a Java 26 Spring Boot project using Docker Init, the interactive wizard introduced in Docker Desktop 4.27. Docker Init automatically generates a multi-stage Dockerfile, compose.yaml, .dockerignore, and README. The guide covers project setup via Spring Initializr, running docker init, understanding the generated four-stage Dockerfile (dependency resolution, compilation, Spring Boot layer extraction, and minimal runtime image with a non-root user), and a workaround for Java 26 base images using SAP Machine instead of Eclipse Temurin while the latter catches up. A simple REST controller is added to verify the running container.

   30
4. 4
   Article

   Cloud Native Now·5w

   Kubernetes v1.36 Promotes Stability, Compatibility & Reproducibility

   kubernetes v1.36 ships 71 enhancements across stable, beta, and alpha tiers. Key highlights include: fine-grained kubelet API authorization reaching GA for least-privilege node security; Resource Health Status expanding to Dynamic Resource allocation (DRA) for hardware health reporting; new alpha workload-aware scheduling (WAS) with gang scheduling and topology-aware policies to reduce reliance on third-party schedulers for AI/ML workloads; Volume Group snapshots graduating to GA for crash-consistent multi-volume backups; CSI service account token secret redaction reaching stable to prevent token leakage; and external service account token signing graduating to stable for integration with external key management systems.

   13
5. 5
   Article

   MetalBear·5w

   New Features We Find Exciting in the Kubernetes 1.36 Release

   Kubernetes v1.36 'Haru' brings several notable changes across stability tiers. Mutating Admission Policies graduate to stable, offering a declarative CEL-based in-process alternative to mutating webhooks for common operations like sidecar injection. User Namespaces also reach stable, mapping container UIDs to unprivileged host UIDs to limit container escape impact. Dynamic Resource Allocation (DRA) gains a prioritized fallback scheduling mechanism via a new `firstAvailable` field in ResourceClaims, device taints and tolerations move to beta for health signaling on degraded hardware, and a new alpha `ResourcePoolStatusRequest` API provides visibility into device availability. Additionally, a new `unusedSince` field on PersistentVolumeClaimStatus helps identify idle PVCs consuming storage.

   10

   2