Someone recommended it for keeping my containers up to date automatically. I checked out the repo and it seems too good to be true. It just updates your containers when a new image is available and everything just works out of the box? I’m a bit scared of just leaving it alone in case it might break something. The fact that it doesn’t come with a gui also scares me a bit.

Does anyone here use it and can recommend it? Any horror stories?

  • Simon-RedditAccount@alien.topBEnglish
    21·
    8 months ago

    Yes, there are risks:

    • First, updates can break things. Already explained here.
    • Second, exposing Docker socket to Watchtower means you have to trust it ultimately. Any vulnerability in WT can lead to whole system compromise.

    Personally, I use DIUN. It just sends me notifications about available updates. I update things manually later. My system is pretty well isolated from outside world, so no need to hurry.
    On a VPS, I would prefer a different approach though.