Dev Containers - Fix the Shit That Actually Breaks

The basic devcontainer.json templates are complete garbage for anything beyond a hello world app. I've seen devs waste entire sprints fighting with broken templates that work fine in isolation but shit the bed the moment you add Postgres. These patterns survived actual production use.

Multi-Service Architecture with Docker Compose

Most real applications need more than one container. Your app needs a database, maybe Redis, possibly an API gateway. The Docker Compose integration lets you define multiple services while keeping your dev environment contained.

The docs are comprehensive but completely fucking useless when Postgres won't connect and your demo is in 6 hours. Here's what actually works:

{
  "name": "Full Stack App",
  "dockerComposeFile": ["../docker-compose.yml", "../docker-compose.dev.yml"],
  "service": "app",
  "workspaceFolder": "/workspace",
  "shutdownAction": "stopCompose",
  "customizations": {
    "vscode": {
      "extensions": [
        "ms-python.python",
        "ms-vscode.vscode-typescript-next"
      ]
    }
  },
  "forwardPorts": [3000, 8000, 5432, 6379],
  "postCreateCommand": "npm install && pip install -r requirements.txt"
}

The corresponding docker-compose.dev.yml gives you the full stack:

version: '3.8'
services:
  app:
    build:
      context: .
      dockerfile: .devcontainer/Dockerfile
    volumes:
      - ../..:/workspace:cached
      - node_modules:/workspace/node_modules
    command: sleep infinity
    depends_on:
      - db
      - redis
    
  db:
    image: postgres:15-alpine
    restart: unless-stopped
    volumes:
      - postgres-data:/var/lib/postgresql/data
    environment:
      POSTGRES_PASSWORD: postgres
      POSTGRES_USER: postgres
      POSTGRES_DB: devdb
    
  redis:
    image: redis:7-alpine
    restart: unless-stopped
    volumes:
      - redis-data:/data

volumes:
  postgres-data:
  redis-data:
  node_modules:

This setup gives you application isolation while maintaining service dependencies. The sleep infinity command keeps the main container running so VS Code can attach to it.

Features - The Right Way to Add Tools

Features are pre-built tool packages that beat writing custom Dockerfile commands. The official feature collection includes over 150 tools, and the syntax lets you specify exact versions and configurations.

Community features exist but most are abandoned shitshows that worked once on the author's laptop in 2022. I spent 3 hours debugging a community Docker-in-Docker feature that was hardcoded for Ubuntu 18.04. Stick to the official ones unless you hate yourself.

{
  "features": {
    "ghcr.io/devcontainers/features/node:1": {
      "version": "18",
      "nodeGypDependencies": true,
      "nvmVersion": "0.39.0"
    },
    "ghcr.io/devcontainers/features/python:1": {
      "version": "3.11",
      "installTools": true,
      "optimize": true
    },
    "ghcr.io/devcontainers/features/docker-in-docker:2": {
      "version": "24.0",
      "enableNonRootDocker": true,
      "moby": true
    },
    "ghcr.io/devcontainers/features/kubectl:1": {
      "version": "1.28"
    },
    "ghcr.io/devcontainers/features/github-cli:1": {
      "installDirectlyFromGitHubRelease": true,
      "version": "2.35.0"
    }
  }
}

Configuration reality checks:

• Pin major versions for stability ("version": "18" not "latest") - learned this the hard way when a minor Node update broke our entire CI pipeline for 6 hours
• nodeGypDependencies: true saves you from native module hell - spent 4 hours debugging bcrypt failures before I found this
• enableNonRootDocker: true prevents the Docker-in-Docker permission nightmare - trust me, the error messages are useless
• installDirectlyFromGitHubRelease: true for tools that actually update (GitHub CLI breaks weekly with package managers)

Advanced Lifecycle Hooks

The basic postCreateCommand runs once after container creation, but complex setups need more control. Here are all the lifecycle hooks and when to use each.

Lifecycle hooks fail silently like everything else in Docker land, and the error messages tell you jack shit about what went wrong. Here's what each hook actually does and exactly how they'll break on you:

{
  "onCreateCommand": "git config --global user.email 'dev@company.com'",
  "updateContentCommand": ["pip", "install", "-r", "requirements.txt"],
  "postCreateCommand": "npm install && npm run build:dev",
  "postStartCommand": "npm run dev:services",
  "postAttachCommand": "echo 'Container ready for development'"
}

When Each Hook Runs (and how they break):

• onCreateCommand: Container first created (git config, system setup) - fails if you try to access mounted volumes that aren't ready yet
• updateContentCommand: Source code changes (dependency updates) - gets skipped randomly if VS Code thinks nothing changed
• postCreateCommand: After creation and updates (build steps) - this is where 90% of container failures happen
• postStartCommand: Container starts (start background services) - don't start long-running processes here, they'll be killed
• postAttachCommand: VS Code connects (status messages, environment checks) - only use for quick checks, anything slow blocks VS Code startup

Custom Dockerfile Integration

When features aren't enough, integrate your own Dockerfile. The build configuration gives you full control while maintaining dev container compatibility.

Custom Dockerfiles give you power but also enough rope to hang yourself and your entire team. Here's the least fucked approach I've found after breaking production exactly once:

{
  "build": {
    "dockerfile": "Dockerfile.dev",
    "context": "..",
    "args": {
      "NODE_VERSION": "18",
      "PYTHON_VERSION": "3.11",
      "INSTALL_ZSH": "true",
      "USERNAME": "vscode"
    },
    "target": "development"
  }
}

The corresponding Dockerfile.dev uses multi-stage builds for development and production:

ARG NODE_VERSION=18
ARG PYTHON_VERSION=3.11

FROM mcr.microsoft.com/devcontainers/base:ubuntu AS base
ARG USERNAME=vscode
ARG INSTALL_ZSH=false

## Install base development tools
RUN apt-get update && apt-get install -y \
    git \
    curl \
    vim \
    htop \
    build-essential

## Install ZSH if requested
RUN if [ "$INSTALL_ZSH" = "true" ]; then \
      apt-get install -y zsh \
      && chsh -s /bin/zsh $USERNAME; \
    fi

FROM base AS development
## Development-specific setup
RUN apt-get install -y \
    debugger-tools \
    development-headers

## Install Node.js
RUN curl -fsSL https://deb.nodesource.com/setup_${NODE_VERSION}.x | bash - \
    && apt-get install -y nodejs

## Install Python
RUN add-apt-repository ppa:deadsnakes/ppa \
    && apt-get update \
    && apt-get install -y python${PYTHON_VERSION} python${PYTHON_VERSION}-dev

FROM base AS production
## Production-optimized image
COPY --from=development /usr/bin/node /usr/bin/node
COPY --from=development /usr/bin/npm /usr/bin/npm
RUN apt-get autoremove -y && apt-get clean

This gives you a development container with all the debugging tools and a lean production image from the same source.

Environment Variable Management

Real projects need different configurations for different environments. The container environment variables support multiple patterns:

{
  "containerEnv": {
    "NODE_ENV": "development",
    "DEBUG": "*",
    "PORT": "3000",
    "DATABASE_URL": "postgresql://postgres:postgres@db:5432/devdb",
    "REDIS_URL": "redis://redis:6379",
    "API_BASE_URL": "http://localhost:8000"
  },
  "remoteEnv": {
    "LOCAL_WORKSPACE_FOLDER": "${localWorkspaceFolder}",
    "PATH": "${containerEnv:PATH}:/workspace/node_modules/.bin"
  }
}

Environment Variable Types:

• containerEnv: Set inside the container (database URLs, debug flags)
• remoteEnv: VS Code remote variables (workspace paths, extended PATH)
• Variables support substitution with ${localWorkspaceFolder} and ${containerEnv:VARIABLE}

Volume and Mount Optimization

File performance makes or breaks your development experience. The mount configuration offers several optimization strategies:

{
  "mounts": [
    "source=${localWorkspaceFolder},target=/workspace,type=bind,consistency=cached",
    "source=${localWorkspaceFolder}/node_modules,target=/workspace/node_modules,type=volume",
    "source=dev-container-cache,target=/root/.cache,type=volume",
    "source=${env:HOME}/.ssh,target=/root/.ssh,type=bind,readonly"
  ]
}

Mount Performance Strategies:

• Use consistency=cached for source code (faster reads, eventual consistency)
• Use named volumes for node_modules (avoids slow cross-platform file sync)
• Cache directories like .cache, .npm, .pip in volumes
• Bind mount SSH keys and Git config as readonly

Platform-Specific Optimizations:

• macOS: Use VirtioFS file sharing in Docker Desktop
• Windows: Ensure WSL2 backend, store source code in WSL filesystem
• Linux: Bind mounts work well, consider user namespace mapping for permissions

Dev containers are slow as hell if you don't configure them right. I've watched npm installs take 18 minutes that take 45 seconds natively. I've seen webpack builds timeout because Docker Desktop's file sync is a joke. Fix your setup or waste your entire career waiting for containers to boot.

File System Performance - The Biggest Bottleneck

File I/O between your host OS and the container is where performance dies. Docker Desktop file sharing on Windows and Mac is notoriously slow, but there are proven optimization strategies and performance tuning guides.

File I/O is what kills dev containers. The official docs dance around this because Docker doesn't want to admit their Mac/Windows performance is dogshit. Here's what actually matters:

Volume Strategy by File Type:

{
  "mounts": [
    "source=${localWorkspaceFolder},target=/workspace,type=bind,consistency=cached",
    "source=node_modules,target=/workspace/node_modules,type=volume",
    "source=pip_cache,target=/home/vscode/.cache/pip,type=volume",
    "source=cargo_cache,target=/usr/local/cargo/registry,type=volume",
    "source=go_cache,target=/go/pkg,type=volume"
  ]
}

Don't fuck this up:

• Source code: Bind mount with consistency=cached (you need to edit these files, obviously)
• Dependencies: Named volumes or your npm install will take forever (node_modules, Python packages, Go modules)
• Build artifacts: Named volumes (dist/, build/, .next/) - don't sync build output back to your host
• Caches: Named volumes (.cache/, .npm/, .pip/) - cache invalidation is hard enough without slow I/O

Real performance numbers from my M1 MacBook Pro (16GB):

• Bind mounted node_modules: npm install takes 4+ minutes for a React app, CPU fans spinning like a jet engine
• Volume mounted node_modules: actually tolerable at 52 seconds
• Native (no container): 28 seconds, the way God intended

Platform-Specific Optimizations

macOS with Apple Silicon:

{
  "build": {
    "dockerfile": "Dockerfile",
    "args": {
      "BUILDPLATFORM": "linux/arm64"
    }
  },
  "mounts": [
    "source=${localWorkspaceFolder},target=/workspace,type=bind,consistency=cached"
  ],
  "containerEnv": {
    "DOCKER_DEFAULT_PLATFORM": "linux/arm64"
  }
}

Enable VirtioFS file sharing in Docker Desktop settings. Made a massive difference on my TypeScript project - file ops went from "take a shit" slow to merely "sip coffee" slow. Warning: VirtioFS requires Docker Desktop 4.6+ and completely breaks on M1 Macs with macOS 12.3 compatibility issues - enjoy your kernel panics and forced reboots.

Windows with WSL2:

{
  "mounts": [
    "source=${localWorkspaceFolder},target=/workspace,type=bind,consistency=cached"
  ],
  "containerEnv": {
    "DOCKER_BUILDKIT": "1",
    "COMPOSE_DOCKER_CLI_BUILD": "1"
  }
}

Critical Windows setup (or you'll hate your life):

• Store your code in WSL2 filesystem (/home/username/projects/) - accessing /mnt/c/ is 10x slower and will kill your sanity
• Don't store code on Windows filesystem and access via /mnt/c/ - learned this during a 2-hour debugging session where webpack was taking 8 minutes per build
• Use Docker Desktop WSL2 backend, not Hyper-V - Hyper-V causes random "access denied" errors that make no sense
• Windows Defender will scan every file operation in your container - add exclusions or watch your CPU melt
• WSL2 memory usage grows infinitely - restart it weekly or watch 16GB of RAM disappear

Linux (Best Performance):

{
  "mounts": [
    "source=${localWorkspaceFolder},target=/workspace,type=bind",
    "source=${localWorkspaceFolder}/node_modules,target=/workspace/node_modules,type=bind"
  ]
}

Linux can bind mount everything because there's no VM layer. File performance is near-native.

Memory and CPU Optimization

Dev containers inherit Docker Desktop's resource limits, which default to conservative values. Real development needs more resources.

Docker Desktop Resource Configuration:

• Memory: 8GB minimum (16GB for large projects)
• CPU: 4-6 cores for build-heavy projects
• Swap: 2GB (prevents OOM kills during builds)
• Disk: 100GB+ for multiple project containers

Container-Specific Resource Limits:

{
  "runArgs": [
    "--memory=4g",
    "--cpus=2.0",
    "--shm-size=1g"
  ]
}

Memory optimization patterns:

{
  "containerEnv": {
    "NODE_OPTIONS": "--max-old-space-size=2048",
    "JAVA_OPTS": "-Xmx1g -Xms512m",
    "PYTHONUNBUFFERED": "1"
  }
}

Build Performance and Layer Caching

Container build times kill productivity when they take 5+ minutes. Multi-stage builds and proper layer caching dramatically improve rebuild performance.

Build times will destroy your soul if you don't cache layers properly. I've watched a 6-layer Dockerfile take 12 minutes to rebuild because someone moved COPY package.json to the wrong spot. Here's what actually works:

Optimized Dockerfile for Caching:

FROM mcr.microsoft.com/devcontainers/base:ubuntu AS base

## Install system packages first (rarely change)
RUN apt-get update && apt-get install -y \
    build-essential \
    curl \
    git \
    && rm -rf /var/lib/apt/lists/*

## Install language runtime (changes occasionally)
ARG NODE_VERSION=18
RUN curl -fsSL https://deb.nodesource.com/setup_${NODE_VERSION}.x | bash - \
    && apt-get install -y nodejs

## Copy package files (change when dependencies change)
COPY package*.json ./
RUN npm ci --only=production && npm cache clean --force

## Copy source code (changes frequently)
COPY . .
RUN npm run build

Build optimization strategies:

• Put frequently changing files (source code) in later layers
• Combine related RUN commands to reduce layers
• Use .dockerignore to exclude unnecessary files
• Pin base image versions to avoid surprise changes

Docker BuildKit for Faster Builds:

{
  "build": {
    "dockerfile": "Dockerfile",
    "options": ["--build-arg", "BUILDKIT_INLINE_CACHE=1"]
  },
  "containerEnv": {
    "DOCKER_BUILDKIT": "1"
  }
}

Hot Reload and File Watching

Development servers need to detect file changes and rebuild automatically. This is tricky with containers because file system events don't always propagate correctly.

Node.js/React Hot Reload:

{
  "forwardPorts": [3000],
  "containerEnv": {
    "WATCHPACK_POLLING": "true",
    "FAST_REFRESH": "true"
  },
  "postCreateCommand": "npm install",
  "postStartCommand": "npm run dev"
}

Python Django Auto-Reload:

{
  "forwardPorts": [8000],
  "containerEnv": {
    "PYTHONUNBUFFERED": "1",
    "DJANGO_SETTINGS_MODULE": "project.settings.development"
  },
  "postCreateCommand": "pip install -r requirements-dev.txt",
  "postStartCommand": "python manage.py runserver 0.0.0.0:8000"
}

File watching troubleshooting:

• Use polling mode for file watchers (slower but reliable across platforms)
• Increase file watcher limits: echo 'fs.inotify.max_user_watches=524288' >> /etc/sysctl.conf
• Exclude node_modules and build directories from watchers
• Hot reload randomly stops working when your laptop sleeps - restart the dev server, not the container
• File events get lost on Windows WSL2 cross-filesystem issues if you edit files from VS Code on the Windows side instead of inside the container

Network Performance Optimization

Container networking adds latency, especially for database connections and API calls. Optimize network configuration for development workflows using Docker networking best practices.

Service Connection Pooling:

{
  "dockerComposeFile": "docker-compose.yml",
  "service": "app",
  "containerEnv": {
    "DATABASE_URL": "postgresql://postgres:postgres@db:5432/devdb?pool_size=20&max_overflow=30",
    "REDIS_URL": "redis://redis:6379/0?socket_keepalive=true"
  }
}

Database Performance Tuning for Development:

## docker-compose.yml
services:
  db:
    image: postgres:15-alpine
    command: >
      postgres -c shared_buffers=256MB
               -c max_connections=20
               -c effective_cache_size=1GB
               -c maintenance_work_mem=64MB
               -c checkpoint_completion_target=0.7
               -c wal_buffers=16MB
    environment:
      POSTGRES_PASSWORD: postgres

Network debugging commands:

## Inside container - test service connectivity
ping db
nc -zv redis 6379
wget -q --spider http://[service-name]:[port]/health && echo "API is up"

## Host machine - test port forwarding (replace with your actual ports)
curl -I http://localhost:[port]
netstat -tlnp | grep :[port]

IDE Performance Optimization

VS Code performance inside containers depends on extension efficiency and remote server optimization.

Extension Performance Settings:

{
  "customizations": {
    "vscode": {
      "extensions": [
        "ms-python.python",
        "ms-vscode.vscode-typescript-next"
      ],
      "settings": {
        "files.watcherExclude": {
          "**/node_modules/**": true,
          "**/.git/objects/**": true,
          "**/.git/subtree-cache/**": true,
          "**/dist/**": true,
          "**/build/**": true
        },
        "search.exclude": {
          "**/node_modules": true,
          "**/bower_components": true,
          "**/.git": true
        },
        "typescript.preferences.includePackageJsonAutoImports": "off",
        "typescript.suggest.autoImports": false
      }
    }
  }
}

Remote server optimization:

{
  "remoteEnv": {
    "VSCODE_AGENT_FOLDER": "/tmp/.vscode-server"
  },
  "mounts": [
    "source=vscode-server-cache,target=/tmp/.vscode-server,type=volume"
  ]
}

Performance monitoring:

• Use VS Code's "Developer: Reload Window" when performance degrades
• Monitor container resources with docker stats
• Check VS Code output logs for performance warnings
• Disable unnecessary extensions in container environments

Benchmarking Your Setup

Measure performance to validate optimizations. Here are realistic benchmarks for common development tasks:

Node.js Project Benchmarks:

## Fresh install time
time npm ci
## Target: <60 seconds on Mac, <30 seconds on Linux

## Hot reload response time  
## Change a file, measure time to see changes in browser
## Target: <2 seconds

## Build time
time npm run build
## Target: <2 minutes for medium projects

## Test suite time
time npm test
## Target: <30 seconds for unit tests

Container startup benchmarks:

## Container rebuild time
time docker build -t myapp .
## Target: <3 minutes with good caching

## VS Code connection time
## From "Reopen in Container" to editor ready
## Target: <30 seconds for simple containers, <2 minutes for complex

Use these benchmarks to identify performance regressions when you change container configurations.

Dev containers break in the stupidest ways possible and Docker's error messages are useless. When everything's fucked at 3am, these systematic debugging steps actually work.

Container-Level Debugging

When Nothing Works - Debug from the Bottom Up:

## 1. Check if Docker daemon is responsive
docker version
docker system info

## 2. Verify container can be built manually
cd .devcontainer
docker build --progress=plain -t debug-container . 2>&1 | tee build.log

## 3. Test container runs without VS Code
docker run -it --rm debug-container /bin/bash

## 4. Check resource usage
docker stats $(docker ps -q)

## 5. Inspect container configuration
docker inspect <container-id>

Advanced Build Debugging:

## Build with no cache to see all steps
docker build --no-cache --progress=plain -t debug .

## Build specific stages in multi-stage Dockerfile
docker build --target development -t debug-dev .
docker build --target production -t debug-prod .

## Check BuildKit cache
docker buildx du
docker buildx prune

Container Runtime Inspection:

## Get inside a failing container
docker run -it --entrypoint /bin/bash your-image

## Check processes inside container  
docker exec <container-id> ps aux

## Monitor system calls (advanced debugging)
docker exec <container-id> strace -p 1

## Check container logs in real-time
docker logs -f <container-id>

VS Code Remote Connection Debugging

VS Code's remote connection is held together by duct tape and prayer. The VS Code remote development architecture has so many moving parts, any one can shit the bed and bring down your whole workflow.

Connection Failure Systematic Debug:

1. Check VS Code Server Installation:

## Inside container
ls -la /vscode/vscode-server/bin/
## Should contain VS Code server binaries

## Check server startup logs
cat /tmp/vscode-remote-containers-*.log

2. Verify Port Forwarding:

## On host machine
netstat -tulpn | grep :forwarded-port

## Inside container
nc -zv localhost 3000  # Test specific port

3. Extension Debugging:

{
  "customizations": {
    "vscode": {
      "settings": {
        "remote.extensionKind": {
          "ms-python.python": ["workspace"]
        }
      }
    }
  }
}

VS Code Performance Debugging:

• Open VS Code command palette: "Developer: Show Running Extensions"
• Check CPU usage of extensions in "Developer: Show Extension Performance"
• Monitor memory with "Developer: Show Process Explorer"
• Reset extension host: "Developer: Restart Extension Host"

File System Performance Debugging

File operations between host and container are the biggest performance bottleneck. Here's how to diagnose and fix file system performance issues:

File Sync Performance Testing:

## Create test files to measure sync speed
time dd if=/dev/zero of=testfile bs=1M count=100

## Test directory listing performance  
time find . -name "*.js" | wc -l

## Monitor file operations
## macOS:
fs_usage -w -f filesys | grep docker

## Linux:  
inotifywait -m -r /path/to/workspace

Volume Mount Debugging:

## Check mount performance
docker exec <container> df -h
docker exec <container> mount | grep workspace

## Test volume vs bind mount performance
docker run --rm -v /tmp/test:/data alpine time dd if=/dev/zero of=/data/test bs=1M count=100

Docker Desktop File Sharing Issues:

## Check Docker Desktop file sharing settings
docker system info | grep -i sharing

## Reset Docker Desktop file sharing (Mac/Windows)
## Docker Desktop → Settings → Resources → File Sharing → Reset to defaults

Network and Service Discovery Debugging

Multi-container setups fail when services can't find each other. Docker networking debugging requires understanding Docker's networking model.

Docker networking is a clusterfuck of overlapping concepts. Forget the theory - here's how to debug when services can't talk to each other:

Network Connectivity Testing:

## Inside app container, test service connectivity
ping db
nc -zv redis 6379
## Test API health endpoint if it exists
wget -q --spider http://[service-name]:[port]/health && echo "API responds"

## Check DNS resolution
nslookup db
dig redis

## List available services  
cat /etc/hosts

Docker Compose Network Debugging:

## List networks
docker network ls

## Inspect network configuration
docker network inspect <network-name>

## Check service connectivity matrix
docker-compose exec app ping db
docker-compose exec api curl redis:6379

Advanced Network Debugging:

## Trace network packets
docker exec <container> tcpdump -i any port 5432

## Check routing table
docker exec <container> route -n

## Monitor network connections
docker exec <container> netstat -tulpn

Memory and Resource Debugging

Container resource limits cause mysterious crashes and performance issues. Docker resource management debugging helps identify resource constraints.

Resource limits cause random crashes and nobody tells you why. Here's how to figure out what's actually killing your containers using Docker resource monitoring:

Memory Usage Analysis:

## Check container memory limits
docker stats --no-stream

## Memory usage inside container
docker exec <container> free -h
docker exec <container> cat /proc/meminfo

## Check for OOM kills
docker exec <container> dmesg | grep -i "killed process"

CPU Performance Debugging:

## CPU usage per process
docker exec <container> top -b -n1

## CPU limits and throttling
docker exec <container> cat /sys/fs/cgroup/cpu/cpu.stat

## I/O wait times
docker exec <container> iostat -x 1

Disk Usage and Performance:

## Check disk usage
docker exec <container> df -h

## Find large files
docker exec <container> du -h --max-depth=2 / | sort -hr

## I/O performance testing
docker exec <container> dd if=/dev/zero of=testfile bs=1M count=1000 conv=fdatasync

Extension and Configuration Debugging

VS Code extensions in containers have unique failure modes. Understanding extension architecture in remote contexts helps debug extension issues.

Extension Installation Debugging:

## Check extension installation logs
cat ~/.vscode-server/extensions/extensions.json

## Manually install extensions
code-server --install-extension ms-python.python

Configuration Override Issues:

{
  "customizations": {
    "vscode": {
      "settings": {
        "python.analysis.logLevel": "Trace",
        "typescript.preferences.includePackageJsonAutoImports": "off"
      }
    }
  }
}

Settings Hierarchy Debugging:
VS Code settings have complex inheritance in remote contexts:

1. Default settings
2. User settings (synced from host)
3. Workspace settings (from .vscode/settings.json)
4. Dev container settings (from devcontainer.json)

Use "Preferences: Open Settings (JSON)" to see effective settings.

Automated Health Checks and Monitoring

Production-grade dev containers need health monitoring. Implement health checks that catch issues before they break development workflow using Docker Compose health checks.

Container Health Checks:

HEALTHCHECK --interval=30s --timeout=10s --start-period=60s --retries=3 \
  CMD wget --quiet --tries=1 --spider http://localhost:[port]/health || exit 1

Service Health Monitoring:

services:
  db:
    image: postgres:15-alpine
    healthcheck:
      test: ["CMD-SHELL", "pg_isready -U postgres"]
      interval: 10s
      timeout: 5s
      retries: 5
      start_period: 30s
  
  api:
    depends_on:
      db:
        condition: service_healthy

Development Environment Monitoring Script:

#!/bin/bash
## dev-health-check.sh

echo "=== Dev Container Health Check ==="

## Check container status
if ! docker ps --format "table {{.Names}}	{{.Status}}" | grep -q "Up"; then
    echo "❌ No running containers found"
    exit 1
fi

## Check VS Code server
if ! pgrep -f vscode-server > /dev/null; then
    echo "❌ VS Code server not running"
    exit 1
fi

## Check file sync performance
start_time=$(date +%s%N)
touch /tmp/sync-test-$$
end_time=$(date +%s%N)
sync_time=$(( (end_time - start_time) / 1000000 ))

if [ $sync_time -gt 1000 ]; then
    echo "⚠️  File sync slow: ${sync_time}ms"
else
    echo "✅ File sync: ${sync_time}ms"
fi

## Check memory usage
memory_percent=$(free | grep Mem | awk '{printf "%.0f", $3/$2 * 100.0}')
if [ $memory_percent -gt 90 ]; then
    echo "⚠️  High memory usage: ${memory_percent}%"
else
    echo "✅ Memory usage: ${memory_percent}%"
fi

echo "=== Health Check Complete ==="

Monitoring Integration in devcontainer.json:

{
  "postAttachCommand": "./scripts/dev-health-check.sh",
  "customizations": {
    "vscode": {
      "tasks": [
        {
          "label": "Health Check",
          "type": "shell",
          "command": "./scripts/dev-health-check.sh",
          "group": "build"
        }
      ]
    }
  }
}

Nuclear options when everything is fucked:

## Delete everything and start over (sometimes faster than debugging)
docker system prune -a --volumes
docker volume prune
rm -rf .devcontainer && git checkout .devcontainer

## Kill all containers and rebuild from scratch
docker kill $(docker ps -q) && docker rm $(docker ps -aq)
docker rmi $(docker images -q) --force

## Reset Docker Desktop entirely (last resort)
## On Mac: Docker Desktop → Troubleshoot → Reset to factory defaults
## On Windows: Docker Desktop → Settings → Reset → Uninstall → Reinstall

The key is having debugging tools ready before you need them, not scrambling to create them when everything is broken at 3am. Sometimes "delete everything and start over" is faster than debugging Docker's networking stack.