We do geodata science and rely on some pretty specific C++ libraries that are only distributed via conda. While on unix-based systems itโs possible to get some of them from other channels or even building them from source, we mostly have Windows machines in production where we are not that flexible. Docker is unfortunately no solution due to security concerns.
If you are asking why I hate it: Itโs bloated, uses more space than needed and itโs rare I can reproduce an environment from the environment file without running into errors. Using it feels unintuitive, I still google command after years. It was very slow until recently, when the libmamba solver was finally integrated. Last but not least licensing is a pain in the ass.
Iโve been using micromamba/mamba and not had solving issues like I did with conda. Im glad conda integrated libmamba.
Question: why were docker containers deemed security risks?
If Windows, it requires a VM and currently infosec is not keen on virtualization in the hands of users.
Iโm no expert, but isnโt running in a VM strictly better than running on raw metal from a security perspective? Itโs generally more locked down, and breaking out of the virtualization layer requires a separate security breach from gaining access to the running container.
