There seems to be an ever-growing amount of tools in this space. Theres 30 or so alone listed in the cncf landscape, and I know from experience there is no one-size-fits-all answer. With that, I figured it’d be worth starting a discussion on pros/cons or other pain points.
Example: There are still quite a few where if you want to build a container on top of k8s, it must be running with privileges or mount the
docker.sock. Does any of them work well in a non-privileged mode? Theres been a few tools like buildah or orca-build, but is anyone running them in any sort of prod workflow?