docker and python
play

DOCKER AND PYTHON Making them play nicely and securely for Data - PowerPoint PPT Presentation

Mar 30, 2023 •144 likes •564 views

DOCKER AND PYTHON Making them play nicely and securely for Data Science and Machine Learning TANIA ALLARD, PHD ixek | https:/ /bit.ly/europython-ml-docker Sr. Developer Advocate @Microsoft. @ixek @trallard trallard.dev THESE SLIDES

  1. DOCKER AND PYTHON Making them play nicely and securely for Data Science and Machine Learning TANIA ALLARD, PHD ixek | https:/ /bit.ly/europython-ml-docker Sr. Developer Advocate @Microsoft.

  2. @ixek @trallard trallard.dev

  3. THESE SLIDES https:/ /bit.ly/europython-ml- docker

  4. WHAT YOU’LL LEARN TODAY - Why using Docker? - Docker for Data Science and Machine Learning - Security and performance - Do not reinvent the wheel, automate - Tips and trick to use Docker ixek | https:/ /bit.ly/europython-ml-docker

  5. WHY DOCKER?

  6. DEV LIFE WITHOUT DOCKER OR CONTAINERS Your application Import Error: no module name x, y, x How are your users or colleagues meant to know what dependencies they need? ixek | https:/ /bit.ly/europython-ml-docker

  7. WHAT IS DOCKER? A tool that helps you to create, deploy and run your applications or projects by using containers. This is a container ixek | https:/ /bit.ly/europython-ml-docker

  8. HOW DO CONTAINERS HELP ME? Your laptop They provide a solution to the problem of how to get software to run reliably when moved from one Test environment computing environment to another Staging environment Production environment ixek | https:/ /bit.ly/europython-ml-docker

  9. DEV LIFE WITH CONTAINERS Your application Libraries, dependencies, runtime environment, configuration files ixek | https:/ /bit.ly/europython-ml-docker

  10. THAT SOUNDS A LOT LIKE A VIRTUAL MACHINE Each app is containerised At the app level: APP APP APP APP APP Each runs as an isolated process DOCKER HOST OPERATING SYSTEM INFRASTRUCTURE ixek | https:/ /bit.ly/europython-ml-docker

  11. THAT SOUNDS A LOT LIKE A VIRTUAL MACHINE CONTAINERS VIRTUAL MACHINE At the hardware level Full OS + app + binaries + VIRTUAL MACHINE VIRTUAL MACHINE APP APP APP APP APP libraries APP APP GUEST OS GUEST OS DOCKER HOST OPERATING SYSTEM HYPERVISOR INFRASTRUCTURE INFRASTRUCTURE ixek | https:/ /bit.ly/europython-ml-docker

  12. IMAGE VS CONTAINER Docker Latest image 1.0.2 - Image: archive with all the data needed to run the app - When you run an image it creates a container $ docker run ixek | https:/ /bit.ly/europython-ml-docker

  13. COMMON PAIN POINTS IN DS AND ML - Complex setups / dependencies - Reliance on data / databases - Fast evolving projects (iterative R&D process) - Docker is complex and can take a lot of time to upskill - Are containers secure enough for my data / model /algorithm?

  14. DOCKER FOR DATA SCIENCE AND MACHINE LEARNING

  15. HOW IS IT DIFFERENT FROM WEB APPS FOR EXAMPLE? https:/ /twitter.com/dstu ff t/status/1095164069802397696 ixek | https:/ /bit.ly/europython-ml-docker

  16. HOW IS IT DIFFERENT FROM WEB APPS FOR EXAMPLE? - Not every deliverable is an app - Not every deliverable is a model either - Heavily relies on data - Mixture of wheels and compiled packages - Security access levels - for data and software - Mixture of stakeholders: data scientists, software engineers, ML engineers ixek | https:/ /bit.ly/europython-ml-docker

  17. BUILDING DOCKER IMAGES Dockerfiles are used to create Docker images by providing a set of instructions to install software, configure your image or copy files ixek | https:/ /bit.ly/europython-ml-docker

  18. DISSECTING DOCKER IMAGES Base image Main instructions Entry command ixek | https:/ /bit.ly/europython-ml-docker

  19. DISSECTING DOCKER IMAGES INSTALL PANDAS INSTALL REQUESTS INSTALL FLASK BASE IMAGE Each instruction creates A layer (like an onion) ixek | https:/ /bit.ly/europython-ml-docker

  20. CHOOSING THE BEST BASE IMAGE If building from scratch use the o ffi cial Python images https:/ /hub.docker.com/_/python https:/ /github.com/docker-library/docs/tree/master/python ixek | https:/ /bit.ly/europython-ml-docker

  21. THE JUPYTER DOCKER STACK ubuntu@SHA Need Conda, notebooks and base-notebook scientific Python ecosystem? Try Jupyter Docker stacks minimal-notebook r-notebook scipy-notebook pyspark-notebook tensorflow-notebook datascience-notebook https:/ /jupyter-docker-stacks.readthedocs.io/ all-spark-notebook ixek | https:/ /bit.ly/europython-ml-docker

  22. BEST PRACTICES - Always know what you are expecting - Provide context with LABELS - Split complex RUN statements and sort them - Prefer COPY to add files https:/ /docs.docker.com/develop/develop-images/dockerfile_best-practices/ ixek | https:/ /bit.ly/europython-ml-docker

  23. SPEED UP YOUR BUILD - Leverage build cache - Install only necessary packages https:/ /docs.docker.com/develop/develop-images/dockerfile_best-practices/ ixek | https:/ /bit.ly/europython-ml-docker

  24. SPEED UP YOUR BUILD AND PROOF - Leverage build cache - Install only necessary packages - Explicitly ignore files https:/ /docs.docker.com/develop/develop-images/dockerfile_best-practices/ ixek | https:/ /bit.ly/europython-ml-docker

  25. MOUNT VOLUMES TO ACCESS DATA - You can use bind mounts to directories (unless you are using a database) - Avoid issues by creating a non-root user https:/ /docs.docker.com/develop/develop-images/dockerfile_best-practices/ ixek | https:/ /bit.ly/europython-ml-docker

  26. SECURITY AND PERFORMANCE

  27. MINIMISE PRIVILEGE - FAVOUR LESS PRIVILEGED USER Lock down your container: - Run as non-root user (Docker runs as root by default) - Minimise capabilities ixek | https:/ /bit.ly/europython-ml-docker

  28. DON’T LEAK SENSITIVE INFORMATION Remember Docker images are like onions. If you copy keys in an intermediate layer they are cached. Keep them out of your Dockerfile. ixek | https:/ /bit.ly/europython-ml-docker

  29. USE MULTI STAGE BUILDS - Fetch and manage secrets in an intermediate layer - Not all your dependencies will have been packed as wheels so you might need a compiler - build a compile and a runtime image - Smaller images overall

  30. USE MULTI STAGE BUILDS $ docker build �-. pull �-. rm - f “Dockerfile"\ - t trallard:data - scratch-1.0 "." Docker image Compile - image Copy virtual Environment Docker image Runtime - image

  31. USE MULTI STAGE BUILDS FINAL IMAGE Docker image Runtime - image trallard:data - scratch-1.0

  32. AUTOMATE

  33. PROJECT TEMPLATES Need a standard project template? Use cookie cutter data science Or cookie cutter docker science https:/ /github.com/docker-science/cookiecutter-docker-science https:/ /drivendata.github.io/cookiecutter-data-science/

  34. $ conda install jupyter repo2docker $ jupyter - repo2docker “.” DO NOT REINVENT THE WHEEL Leverage the existence and usage of tools like repo2docker. Already configured and optimised for Data Science / Scientific computing. ixek | https:/ /bit.ly/europython-ml-docker https:/ /repo2docker.readthedocs.io/en/latest

  35. DO NOT REINVENT THE WHEEL Leverage the existence and usage of tools like repo2docker. Already configured and optimised for Data Science / Scientific computing. ixek | https:/ /bit.ly/europython-ml-docker https:/ /repo2docker.readthedocs.io/en/latest

  36. DELEGATE TO YOUR CONTINUOUS INTEGRATION TOOL Set Continuous integration (Travis, GitHub Actions, whatever you prefer). And delegate your build - also build often. ixek | https:/ /bit.ly/europython-ml-docker https:/ /repo2docker.readthedocs.io/en/latest

  37. THIS WORKFLOW - Code in version control - Trigger on tag / Also scheduled trigger - Build image - Push image Docker Docker image image ixek | https:/ /bit.ly/europython-ml-docker

  38. TOP TIPS

  39. TOP TIPS 1. Rebuild your images frequently - get security updates for system packages 2. Never work as root / minimise the privileges 3. You do not want to use Alpine Linux (go for buster, stretch or the Jupyter stack) 4. Always know what you are expecting: pin / version EVERYTHING (use pip- tools, conda, poetry or pipenv) 5. Leverage build cache

  40. TOP TIPS 6. Use one Dockerfile per project 7. Use multi-stage builds - need to compile code? Need to reduce your image size? 8. Make your images identifiable (test, production, R&D) - also be careful when accessing databases and using ENV variables / build variables 9. Do not reinvent the wheel! Use repo2docker 10.Automate - no need to build and push manually 11.Use a linter

  41. THANK YOU @ixek @trallard trallard.dev

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Docker meets Python A look on the Docker SDK for Python pip install docker Jan Wagner

Docker meets Python A look on the Docker SDK for Python pip install docker Jan Wagner

Docker meets Python A look on the Docker SDK for Python pip install docker Jan Wagner Data Science Consultant accantec group | Alstertor 17 | 20095 Hamburg | Tel.: +49 (40) 67 59 59 0 | Fax.: +49 (40) 67 59 59 29 | www.accantec.de |

664 views • 29 slides
Python, Docker, Kubernetes, Python, Docker, Kubernetes, and beyond? and beyond? Peter Bbics

Python, Docker, Kubernetes, Python, Docker, Kubernetes, and beyond? and beyond? Peter Bbics

Python, Docker, Kubernetes, Python, Docker, Kubernetes, and beyond? and beyond? Peter Bbics Peter Bbics | EuroPython 2018 EuroPython 2018 July 25, 2018 July 25, 2018 Based in Prague Small team of developers Developing a trading

361 views • 20 slides
Docker@OVH with Mesos/Marathon June 28th 2016 @devatoria @brouberol Devops / Python charmer

Docker@OVH with Mesos/Marathon June 28th 2016 @devatoria @brouberol Devops / Python charmer

Docker@OVH with Mesos/Marathon June 28th 2016 @devatoria @brouberol Devops / Python charmer Devops / Golang artist The Docker ecosystem Docker Engine : run containerized processes (aka: containers) Docker Compose : run multi-container

381 views • 13 slides
Production-ready Docker packaging for Python Itamar Turner-Trauring https://pythonspeed.com

Production-ready Docker packaging for Python Itamar Turner-Trauring https://pythonspeed.com

Production-ready Docker packaging for Python Itamar Turner-Trauring https://pythonspeed.com / Why Docker packaging is complicated s: Unix s: TCP/IP networking s: Python s: Linux

379 views • 33 slides
Setup docker rm $(docker ps -aq) docker network rm my_net Demo - Install and activate yum -y

Setup docker rm $(docker ps -aq) docker network rm my_net Demo - Install and activate yum -y

Setup docker rm $(docker ps -aq) docker network rm my_net Demo - Install and activate yum -y install docker s ystemctl start docker systemctl enable docker docker images - Launch pre-canned container: hello-world (busybox is another good

480 views • 4 slides
docker service is the new docker run Getting Started with Docker Clustering Mike Goelzer /

docker service is the new docker run Getting Started with Docker Clustering Mike Goelzer /

docker service is the new docker run Getting Started with Docker Clustering Mike Goelzer / mgoelzer@docker.com / @mgoelzer Docker Inc. docker service is the new docker run docker run nginx 2013-14 docker run -p 3375:2375 swarm ; 2014-15

688 views • 34 slides
An introduction to cgroups and cgroupspy tags = [python, docker, coreos',

An introduction to cgroups and cgroupspy tags = [python, docker, coreos',

An introduction to cgroups and cgroupspy tags = [python, docker, coreos', systemd'] @vpetersson About me Entrepreneur Geek VP Biz Dev @ CloudSigma Contact info Email: viktor@cloudsigma.com WWW:

513 views • 48 slides
Bioinformatics CS300 Crash course: Transcription and Translation Running Python in Docker or

Bioinformatics CS300 Crash course: Transcription and Translation Running Python in Docker or

Bioinformatics CS300 Crash course: Transcription and Translation Running Python in Docker or Online Fall 2019 Oliver BONHAM-CARTER Gene Expression Transcriptjon and Translatjon Transcriptjon copy a set of ingredients/instructions from a

854 views • 38 slides
docker for data science Data science academy - HelloFresh Max Halford June 2017 0 why use

docker for data science Data science academy - HelloFresh Max Halford June 2017 0 why use

docker for data science Data science academy - HelloFresh Max Halford June 2017 0 why use docker? setup issues A lot of the time... Data science teams have a single server Project X needs Python 3 and Project Y needs Python 2

267 views • 22 slides
INTRODUCTION TO DOCKER ADRIAN MOUAT SO WHAT IS DOCKER? SIMILAR TO A LIGHTWEIGHT VM Both

INTRODUCTION TO DOCKER ADRIAN MOUAT SO WHAT IS DOCKER? SIMILAR TO A LIGHTWEIGHT VM Both

INTRODUCTION TO DOCKER ADRIAN MOUAT SO WHAT IS DOCKER? SIMILAR TO A LIGHTWEIGHT VM Both provide isolated environments Docker is much more efficient 64-bit Linux only (currently) CONTAINERIZATION A Docker container is a portable store for a

674 views • 29 slides
Docker Provider The Docker provider is used to interact with Docker containers and images. It uses

Docker Provider The Docker provider is used to interact with Docker containers and images. It uses

Docker Provider The Docker provider is used to interact with Docker containers and images. It uses the Docker API to manage the lifecycle of Docker containers. Because the Docker provider uses the Docker API, it is immediately compatible not only

553 views • 34 slides
Docker: Testing the Waters LA-UR 15-25901 1 LA-UR 15-25901 Docker: Theres No Containing

Docker: Testing the Waters LA-UR 15-25901 1 LA-UR 15-25901 Docker: Theres No Containing

Eric Holm Skyler Manzanares Yuxin (Kelly) Wang http://gerardable.com/wp-content/uploads/2014/12/docker-whale-home-logo.png Docker: Testing the Waters LA-UR 15-25901 1 LA-UR 15-25901 Docker: Theres No Containing this Whale! Free,

997 views • 28 slides
Docker Orchestration: Beyond the Basics Aaron Lehmann Software Engineer, Docker About me

Docker Orchestration: Beyond the Basics Aaron Lehmann Software Engineer, Docker About me

Docker Orchestration: Beyond the Basics Aaron Lehmann Software Engineer, Docker About me Software engineer at Docker Maintainer on SwarmKit and Docker Engine open source projects Focusing on distributed state, task scheduling,

1.29k views • 62 slides
Extending Python with Rust Introduction and a hands-on demo of writing Python extension in Rust

Extending Python with Rust Introduction and a hands-on demo of writing Python extension in Rust

Extending Python with Rust Introduction and a hands-on demo of writing Python extension in Rust This talk Why? Why Rust? Binginds Dynamic library Web service example Docker example Compile and distribute

336 views • 14 slides
Docker Review Basic Commands docker image ls # list images currently present locally docker

Docker Review Basic Commands docker image ls # list images currently present locally docker

Docker Review Basic Commands docker image ls # list images currently present locally docker container ls # list running containers docker run <image_name> # run an image as a container docker exec <container> <command> # run a

1.1k views • 6 slides
A talker on Docker: How containers can make your work more reproducible, accessible, and ready

A talker on Docker: How containers can make your work more reproducible, accessible, and ready

A talker on Docker: How containers can make your work more reproducible, accessible, and ready for production. Finbarr Timbers, Analyst, Darkhorse Analytics 1 Three stories. 2 One: Moving a nonlinear regression from Excel to Python. 3 One:

844 views • 63 slides
OSG User Support Strategies March 24, 2015 OSG All Hands @ Northwestern University Rob Gardner

OSG User Support Strategies March 24, 2015 OSG All Hands @ Northwestern University Rob Gardner

OSG User Support Strategies March 24, 2015 OSG All Hands @ Northwestern University Rob Gardner University of Chicago Mats Rynge ISI, University of Southern California OSG User Support: in transition For the past three years User Support

179 views • 15 slides
Design and Realization of the EXCITEMENT Open Platform for Textual Entailment Gnter Neumann,

Design and Realization of the EXCITEMENT Open Platform for Textual Entailment Gnter Neumann,

Design and Realization of the EXCITEMENT Open Platform for Textual Entailment Gnter Neumann, DFKI Sebastian Pado, Universitt Stuttgart Textual Entailment Textual Entailment (TE) A Text (T) entails a Hypothesis (H), if a typical

320 views • 27 slides
Solving Mathematical Puzzles: a Deep Reasoning Challenge for Intelligent Agents F. Chesani, P.

Solving Mathematical Puzzles: a Deep Reasoning Challenge for Intelligent Agents F. Chesani, P.

Solving Mathematical Puzzles: a Deep Reasoning Challenge for Intelligent Agents F. Chesani, P. Mello, M. Milano First URANIA Workshop, November 28 th , 2016 AIxIA 2016 Conference, Genova, November 28 th December 1 st , 2016 Premises... (1/2)

323 views • 16 slides
Ethical Intelligent Agents F R A N C E S C A R O S S I U N I V E R S I T Y O F P A D O V A

Ethical Intelligent Agents F R A N C E S C A R O S S I U N I V E R S I T Y O F P A D O V A

Ethical Intelligent Agents F R A N C E S C A R O S S I U N I V E R S I T Y O F P A D O V A AI is and will be beneficial Improving medicine, food production, finance, routine jobs, etc. Decreasing cars accidents, developing

516 views • 6 slides
Penetration Testing for Certification: What we care about Marcel Medwed marcel.medwed@nxp.com

Penetration Testing for Certification: What we care about Marcel Medwed marcel.medwed@nxp.com

Penetration Testing for Certification: What we care about Marcel Medwed marcel.medwed@nxp.com Outline Common Criteria Evaluation Assurance Levels JHAS Penetration Testing and Countermeasures 2 Design and security of cryptographic

523 views • 40 slides
Relation Regularized Matrix Factorization Wu-Jun Li, Dit-Yan Yeung Department of Computer Science

Relation Regularized Matrix Factorization Wu-Jun Li, Dit-Yan Yeung Department of Computer Science

Relation Regularized Matrix Factorization Wu-Jun Li, Dit-Yan Yeung Department of Computer Science and Engineering Hong Kong University of Science and Technology Hong Kong, China IJCAI 2009 Li and Yeung (CSE, HKUST) RRMF IJCAI 2009 1 / 23

402 views • 23 slides
Common Lisp - The programmable programing language Ben Dudson Common Lisp - The programmable

Common Lisp - The programmable programing language Ben Dudson Common Lisp - The programmable

Common Lisp - The programmable programing language Ben Dudson Common Lisp - The programmable programing language | 2018 | 1/33 The Lisp family There are many different Lisp languages and varieties of Lisp including: Common Lisp - ANSI standard

525 views • 33 slides
INF4820: Algorithms for Artificial Intelligence and Natural Language Processing Common Lisp

INF4820: Algorithms for Artificial Intelligence and Natural Language Processing Common Lisp

INF4820: Algorithms for Artificial Intelligence and Natural Language Processing Common Lisp Fundamentals Stephan Oepen & Murhaf Fares Language Technology Group (LTG) August 30, 2017 Last Week: What is AI? Since the 1950s: Chatbots,

1.2k views • 104 slides

More recommend