Merge upstream main into Abhash/Changes

Author: Abhash-Chakraborty

.env.example

@@ -4,6 +4,11 @@
 # No special permissions needed for public repositories
 GITHUB_TOKEN=your_github_token_here
 
+# GitHub token used by Docusaurus for dynamic features (discussions, stats, leaderboard)
+# This must be set for the discussions section to fetch live data from GitHub
+# Create a Classic PAT with read:discussion scope at https://github.com/settings/tokens
+DOCUSAURUS_GIT_TOKEN=your_github_token_here
+
 # Shopify Configuration (for Merch Store)
 # Get these from: Shopify Admin > Settings > Apps and sales channels > Develop apps
 # Required scopes: unauthenticated_read_product_listings, unauthenticated_write_checkouts

.gitignore

@@ -24,3 +24,4 @@ yarn-error.log*
 
 # Temporary files
 /tmp/
+tsconfig.tsbuildinfo

docs/Docker/docker-commands.md

@@ -398,6 +398,73 @@ docker-compose pull
 
 ---
 
+## Docker Swarm Commands
+
+Docker Swarm is Docker's native clustering and orchestration tool, allowing you to manage a group of Docker hosts as a single virtual system.
+
+### Swarm Initialization & Node Management
+```bash
+# Initialize a swarm
+docker swarm init --advertise-addr <MANAGER-IP>
+
+# Get the join token for workers
+docker swarm join-token worker
+
+# Join a worker node to the swarm
+docker swarm join --token <TOKEN> <MANAGER-IP>:2377
+
+# List nodes in the swarm
+docker node ls
+
+# Promote a worker to manager
+docker node promote <NODE-ID>
+
+# Demote a manager to worker
+docker node demote <NODE-ID>
+```
+
+### Service Management
+```bash
+# Create a service
+docker service create --name my-service --replicas 3 -p 80:80 nginx
+
+# List services
+docker service ls
+
+# List tasks of a service
+docker service ps my-service
+
+# Scale a service
+docker service scale my-service=5
+
+# Update a service (e.g., image version)
+docker service update --image nginx:latest my-service
+
+# Inspect a service
+docker service inspect my-service
+
+# Remove a service
+docker service rm my-service
+```
+
+### Stack Management
+Stacks are the swarm equivalent of Docker Compose, used to manage multi-service applications.
+```bash
+# Deploy a stack from a compose file
+docker stack deploy -c docker-compose.yml my-stack
+
+# List stacks
+docker stack ls
+
+# List services in a stack
+docker stack services my-stack
+
+# Remove a stack
+docker stack rm my-stack
+```
+
+---
+
 ## Advanced Commands
 
 ### Container Inspection
@@ -458,18 +525,25 @@ docker run --security-opt no-new-privileges nginx
 
 | Command | Description |
 |---------|-------------|
-| `docker run` | Create and start container |
+| `docker run` | Create and start a container |
 | `docker ps` | List running containers |
 | `docker images` | List images |
-| `docker build` | Build image from Dockerfile |
-| `docker pull` | Download image |
-| `docker push` | Upload image |
-| `docker exec` | Execute command in container |
-| `docker logs` | View container logs |
-| `docker stop` | Stop container |
-| `docker rm` | Remove container |
-| `docker rmi` | Remove image |
-
+| `docker build` | Build an image from a Dockerfile |
+| `docker pull` | Download an image from a registry |
+| `docker push` | Upload an image to a registry |
+| `docker exec` | Execute a command inside a running container |
+| `docker logs` | View a container's output logs |
+| `docker stop` | Stop a running container |
+| `docker restart` | Restart a container |
+| `docker rm` | Remove a container |
+| `docker rmi` | Remove an image |
+| `docker inspect` | Show detailed info on a Docker object |
+| `docker stats` | Show live resource usage statistics |
+| `docker-compose up` | Start a multi-container application |
+| `docker network ls` | List all Docker networks |
+| `docker volume ls` | List all Docker volumes |
+| `docker system prune` | Clean up unused images, containers, and networks |
+ 
 ### Quick Cleanup
 
 ```bash
@@ -491,6 +565,62 @@ docker volume prune
 
 ---
 
+## Docker Security: Hardening Your Environment
+
+Security is a critical aspect of containerization. Docker provides several built-in mechanisms to secure your applications and infrastructure.
+
+### 1. Secrets Management
+Secrets allow you to store sensitive data (like passwords, API keys, or certificates) outside of your images or source code.
+```bash
+# Create a secret from a file
+docker secret create db_password ./password.txt
+
+# List secrets
+docker secret ls
+
+# Inspect a secret
+docker secret inspect db_password
+
+# Use a secret in a service
+docker service create --name db --secret db_password mariadb
+```
+
+### 2. Docker Content Trust (DCT)
+DCT allows you to use digital signatures for data sent to and received from remote Docker registries. These signatures allow client-side verification of the integrity and publisher of specific image tags.
+```bash
+# Enable Content Trust (shell session)
+export DOCKER_CONTENT_TRUST=1
+
+# Pull only signed images
+docker pull nginx:latest
+```
+
+### 3. Vulnerability Scanning
+Regularly scan your images for known vulnerabilities to ensure your software supply chain is secure.
+```bash
+# Scan an image for vulnerabilities
+docker scan my-image:latest
+```
+
+### 4. User Namespaces & Rootless Docker
+Running Docker in "Rootless Mode" or using User Namespaces adds a layer of security by ensuring that even if a container is compromised, the attacker does not have root access to the host.
+```bash
+# Check if rootless mode is supported
+docker system info | grep "Rootless"
+
+# Run a container with a specific user namespace
+docker run --userns-remap=default -it alpine sh
+```
+
+### 5. Resource Isolation
+Prevent Denial of Service (DoS) attacks by strictly limiting the resources a container can consume.
+```bash
+# Limit memory, CPU, and pids (process limit)
+docker run -m 512m --cpus="0.5" --pids-limit 100 my-app
+```
+
+---
+
 ## Best Practices
 
 ### Command Tips
@@ -502,21 +632,15 @@ docker volume prune
 5. **Use health checks** - Monitor container health
 6. **Clean up regularly** - Remove unused objects
 
-### Security Tips
+### Security Best Practices
 
-```bash
-# Don't run as root
-docker run -u 1000:1000 my-app
+1. **Don't run as root** - Use the `USER` instruction in Dockerfile or `-u` flag.
+2. **Use read-only filesystem** - Prevents attackers from writing to the container disk.
+3. **Scan images regularly** - Use `docker scan` to find vulnerabilities.
+4. **Use Secrets** - Never bake passwords or keys into your images.
+5. **Limit Resources** - Always set memory and CPU limits to prevent host exhaustion.
 
-# Use read-only filesystem when possible
-docker run --read-only my-app
-
-# Drop unnecessary capabilities
-docker run --cap-drop ALL --cap-add NET_BIND_SERVICE my-app
-
-# Use security profiles
-docker run --security-opt apparmor:my-profile my-app
-```
+Refer to the **Docker Security** section above for more detailed commands and implementation details.
 
 ---
 

docs/Docker/intro.md

@@ -56,12 +56,51 @@ CMD ["node", "app.js"]
 ### Registry
 A storage service for Docker images. **Docker Hub** is the most popular—like GitHub for Docker images.
 
-### Volume
-Persistent storage that survives when containers are deleted. Use for databases, logs, and user files.
-
-### Network
+### Volumes
+Persistent storage that survives when containers are deleted. Essential for databases, logs, and user-generated content.
+
+#### Types of Volumes:
+1. **Named Volumes**: Managed by Docker. Best for persistent data like databases.
+   ```bash
+   # Create a volume
+   docker volume create pg_data
+   # Run container with named volume
+   docker run -d -v pg_data:/var/lib/postgresql/data postgres
+   ```
+2. **Bind Mounts**: Maps a host path to a container path. Best for development.
+   ```bash
+   # Mount current directory to /app
+   docker run -d -v $(pwd):/app node:18-alpine
+   ```
+3. **Tmpfs Mounts**: Stored in host memory (RAM). Best for sensitive or temporary data.
+   ```bash
+   docker run -d --tmpfs /app/cache my-app
+   ```
+
+### Networks
 Allows containers to communicate with each other securely.
 
+#### Network Drivers & Use Cases:
+1. **Bridge (Default)**: Best for standalone containers that need to talk to each other on the same host.
+   - **Use Case**: Connecting a frontend container to a backend container.
+   ```bash
+   docker network create my-net
+   docker run -d --net my-net --name db mysql
+   docker run -d --net my-net --name app my-app
+   ```
+2. **Host**: Removes isolation between host and container (shares host IP).
+   - **Use Case**: High-performance apps where network overhead must be minimal.
+   ```bash
+   docker run -d --network host nginx
+   ```
+3. **Overlay**: Connects multiple Docker daemons together.
+   - **Use Case**: Microservices spread across multiple physical servers (Docker Swarm).
+4. **None**: Disables all networking.
+   - **Use Case**: Secure batch processing jobs with no external access needed.
+   ```bash
+   docker run -d --network none alpine
+   ```
+
 ## Quick Start Workflow
 
 **1. Create a Dockerfile**
@@ -159,4 +198,4 @@ Docker has revolutionized software development and deployment because:
 * **DevOps Integration**
   Perfect fit for CI/CD pipelines, enabling automated testing and deployment workflows.
 
-Ready to dive deeper? Let's explore Docker installation and setup in the next section! 🚀
+Ready to dive deeper? Let's explore Docker installation and setup in the next section! 🚀 

docusaurus.config.ts

@@ -9,7 +9,7 @@ dotenv.config();
 
 const config: Config = {
   title: "recode hive",
-  tagline: "Dinosaurs are cool",
+  tagline: "Learn, Build & Grow with Open Source",
   favicon: "img/favicon.ico",
 
   url: "https://www.recodehive.com",
@@ -213,6 +213,24 @@ const config: Config = {
         //   type: "search",
         //   position: "right",
         // },
+        {
+          type: "html",
+          position: "right",
+          value: `<a href="https://github.com/recodehive" target="_blank" rel="noopener noreferrer" aria-label="GitHub" title="GitHub" class="navbar__link navbar-social-icon">
+            <svg width="20" height="20" viewBox="0 0 24 24" fill="currentColor" aria-hidden="true">
+              <path d="M12 2C6.477 2 2 6.484 2 12.017c0 4.425 2.865 8.18 6.839 9.504.5.092.682-.217.682-.483 0-.237-.008-.868-.013-1.703-2.782.605-3.369-1.343-3.369-1.343-.454-1.158-1.11-1.466-1.11-1.466-.908-.62.069-.608.069-.608 1.003.07 1.531 1.032 1.531 1.032.892 1.53 2.341 1.088 2.91.832.092-.647.35-1.088.636-1.338-2.22-.253-4.555-1.113-4.555-4.951 0-1.093.39-1.988 1.029-2.688-.103-.253-.446-1.272.098-2.65 0 0 .84-.27 2.75 1.026A9.564 9.564 0 0112 6.844c.85.004 1.705.115 2.504.337 1.909-1.296 2.747-1.027 2.747-1.027.546 1.379.202 2.398.1 2.651.64.7 1.028 1.595 1.028 2.688 0 3.848-2.339 4.695-4.566 4.943.359.309.678.92.678 1.855 0 1.338-.012 2.419-.012 2.747 0 .268.18.58.688.482A10.019 10.019 0 0022 12.017C22 6.484 17.522 2 12 2z"/>
+            </svg>
+          </a>`,
+        },
+        {
+          type: "html",
+          position: "right",
+          value: `<a href="https://discord.gg/b6ffxhXRNH" target="_blank" rel="noopener noreferrer" aria-label="Discord" title="Discord" class="navbar__link navbar-social-icon">
+            <svg width="20" height="20" viewBox="0 0 24 24" fill="currentColor" aria-hidden="true">
+              <path d="M20.317 4.37a19.791 19.791 0 00-4.885-1.515.074.074 0 00-.079.037c-.21.375-.444.864-.608 1.25a18.27 18.27 0 00-5.487 0 12.64 12.64 0 00-.617-1.25.077.077 0 00-.079-.037A19.736 19.736 0 003.677 4.37a.07.07 0 00-.032.027C.533 9.046-.32 13.58.099 18.057a.082.082 0 00.031.057 19.9 19.9 0 005.993 3.03.078.078 0 00.084-.028c.462-.63.874-1.295 1.226-1.994a.076.076 0 00-.041-.106 13.107 13.107 0 01-1.872-.892.077.077 0 01-.008-.128 10.2 10.2 0 00.372-.292.074.074 0 01.077-.01c3.928 1.793 8.18 1.793 12.062 0a.074.074 0 01.078.01c.12.098.246.198.373.292a.077.077 0 01-.006.127 12.299 12.299 0 01-1.873.892.077.077 0 00-.041.107c.36.698.772 1.362 1.225 1.993a.076.076 0 00.084.028 19.839 19.839 0 006.002-3.03.077.077 0 00.032-.054c.5-5.177-.838-9.674-3.549-13.66a.061.061 0 00-.031-.03zM8.02 15.33c-1.183 0-2.157-1.085-2.157-2.419 0-1.333.956-2.419 2.157-2.419 1.21 0 2.176 1.096 2.157 2.42 0 1.333-.956 2.418-2.157 2.418zm7.975 0c-1.183 0-2.157-1.085-2.157-2.419 0-1.333.955-2.419 2.157-2.419 1.21 0 2.176 1.096 2.157 2.42 0 1.333-.946 2.418-2.157 2.418z"/>
+            </svg>
+          </a>`,
+        },
         {
           type: "html",
           position: "right",