Add FAQ

Matt Reeves 2024-05-20 04:47:58 +00:00
commit bcd64eeb5c

9
FAQ.md Normal file

@ -0,0 +1,9 @@
## Why not Watchtower, Duin, or Harbormaster?
While tools like Watchtower, Duin, and Harbormaster offer convenient container update functionalities, they require access to the Docker socket. Providing access to the Docker socket is generally considered a security risk as it grants significant control over the host system.
If you have ever had watchtower break something you know the annoyance. Also what if the update fails? How are you gonna know if there's breaking changes? After or before breaking a database?
Harbormaster almost pulls this off, however it requires changing path mappings in order to work, which is a no-go for me.
This homelab prioritizes security and adopts a more controlled approach to updates by leveraging Drone CI and Renovate bot. This combination allows for automated dependency updates and controlled deployments through a dedicated CI/CD pipeline, ensuring both security and stability.