docker-gen

docker-gen is a utility that watches Docker events/templates and generates files (typically reverse-proxy routing config such as Nginx/HAProxy) based on container metadata, enabling dynamic service configuration without manual edits.

Evaluated Apr 04, 2026 (21d ago)
Homepage ↗ Repo ↗ Infrastructure docker templates reverse-proxy configuration-generation devops infrastructure automation
⚙ Agent Friendliness
26
/ 100
Can an agent use this?
🔒 Security
21
/ 100
Is it safe for agents?
⚡ Reliability
35
/ 100
Does it work consistently?

Score Breakdown

⚙ Agent Friendliness

MCP Quality
0
Documentation
20
Error Messages
0
Auth Simplicity
60
Rate Limits
0

🔒 Security

TLS Enforcement
20
Auth Strength
20
Scope Granularity
0
Dep. Hygiene
40
Secret Handling
30

Primary risk is operational: docker-gen typically needs access to the Docker daemon or socket, which can be high-privilege. Template rendering can be a vector for misconfiguration if untrusted container labels/metadata are used. There’s no evidence here of end-user TLS/auth controls since it’s not an external network service.

⚡ Reliability

Uptime/SLA
0
Version Stability
50
Breaking Changes
50
Error Recovery
40
AF Security Reliability

Best When

You need rapid, container-driven regeneration of proxy/router config in self-managed Docker hosts.

Avoid When

You require a stable, strongly typed remote API contract (this is a local generator/sidecar pattern).

Use Cases

  • Generate load balancer/reverse-proxy configuration from running Docker containers
  • Automatic routing updates when containers start/stop
  • Run as a sidecar/container in Docker environments for dynamic infrastructure configuration

Not For

  • Producing a generic application API for consumption by clients
  • Use as a secure secrets management system
  • Environments where Docker metadata is unavailable or templates cannot be rendered safely

Interface

REST API
No
GraphQL
No
gRPC
No
MCP Server
No
SDK
No
Webhooks
No

Authentication

OAuth: No Scopes: No

No client authentication is described because docker-gen is typically run locally in the same environment and connects to the Docker engine (which may require Docker daemon access). Any security posture depends on how you grant Docker socket/daemon permissions.

Pricing

Free tier: No
Requires CC: No

Open-source/self-hosted utility; pricing depends on your infrastructure and any orchestration you run it under.

Agent Metadata

Pagination
none
Idempotent
False
Retry Guidance
Not documented

Known Gotchas

  • docker-gen is sidecar/template-driven; there is no stable remote API to call for queries
  • it relies on Docker event streams/metadata; behavior depends heavily on Docker socket/permissions and template correctness
  • generated config reload semantics (and idempotency) depend on your chosen target process (e.g., nginx reload) rather than docker-gen itself

Alternatives

Traefik (dynamic discovery + built-in config generation) Caddy with Docker integration nginx-proxy/letsencrypt-nginx-proxy-companion HashiCorp Consul/nomad service discovery with a templating layer Kubernetes-native ingress controllers (if on K8s)

Full Evaluation Report

Comprehensive deep-dive: security analysis, reliability audit, agent experience review, cost modeling, competitive positioning, and improvement roadmap for docker-gen.

AI-powered analysis · PDF + markdown · Delivered within 30 minutes

$99

Package Brief

Quick verdict, integration guide, cost projections, gotchas with workarounds, and alternatives comparison.

Delivered within 10 minutes

$3

Score Monitoring

Get alerted when this package's AF, security, or reliability scores change significantly. Stay ahead of regressions.

Continuous monitoring

$3/mo
API endpoint ↗ Agent guide ↗ Report inaccuracy

Scores are editorial opinions as of 2026-04-04.

8642
Packages Evaluated
17761
Need Evaluation
586
Need Re-evaluation
Community Powered