DOCKLOG
Technical Documentation
Docklog is a CLI-based log aggregator designed for real-time stream processing, filtering, and data masking across Docker container environments.
Core Logic
The utility interfaces directly with the Docker Socket (/var/run/docker.sock) to discover and attach to container log streams. It implements a non-blocking ingestion pipeline that applies regex-based transformations and keyword filters before terminal or file serialization.
Operational Scenarios
- Local Debugging: Aggregating logs from multiple microservices into a single, chronologically sorted terminal stream.
- Security Compliance: Real-time redaction of IPv4 addresses, emails, and authorization tokens to prevent PII leakage in shared environments.
- Anomaly Detection: High-speed filtering for specific error patterns or status codes using standard regex engines.
Technical Environment
Optimized for environments where engineers require high-fidelity log visibility without the overhead of heavy-weight observability stacks (ELK/Loki).
- Runtime: Statically compiled binary (Go 1.21+), zero external dependencies.
- Access: Requires read access to the Docker daemon.
- Output: Supports standard ANSI color-coded text and structured JSON.