add terminal-based dev environment as alternative to devcontainers

[CMonnin]

Describe your improvement

Adds a podman + apptainer dev environment as an editor-agnostic alternative to the existing VSCode devcontainers. This lets contributors who don't use VSCode (e.g. nvim, Emacs, etc.) get the same reproducible tooling without needing Docker or the devcontainer CLI.

Existing .devcontainer/ configs are unchanged.

Two flavors matching the existing devcontainer structure:

• prototyping: scilus/scilus:2.0.2 base with nextflow, nf-test, poetry 1.8.5, apptainer, and gh CLI
• devops: python:3.13-slim base with nextflow, nf-test, poetry 2.0.1, apptainer, gh CLI, node 20, act, actionlint, shellcheck, prettier, and editorconfig-checker

Launcher script (.dev/dev) builds and runs the selected flavor with podman, bind-mounting the repo at /workspace. Named volumes persist .venv, .cache, and .nextflow across sessions. Supports extra bind mounts via -v flags for working with external dirs.

Usage

.dev/dev                          # prototyping (default)
.dev/dev devops                   # devops flavor
.dev/dev -v /path:/path bash      # mount extra directories

Note: The dev launcher script is podman-specific (uses --userns=keep-id and :U volume flags). The Dockerfiles are standard and can be built and run with any container runtime
(Docker, podman, etc.).

Note: When running nf-test inside the container, use --profile apptainer,devcontainer instead of the default docker profile (e.g. nf-test test --profile
apptainer,devcontainer).

Type of improvement

• Development container
• Development tools

Describe how to test your improvement

1. Install podman on the host if not already present
2. Run .dev/dev from the repo root — it should build the prototyping image and drop into a bash shell
3. Inside the container, verify tools: nf-test version && nextflow -version && poetry --version && gh --version
4. Run .dev/dev devops and verify: nf-test version && nextflow -version && poetry --version && act --version && actionlint --version && node --version && prettier --version
5. Test apptainer execution: nf-test test <module_test_path> --profile apptainer,devcontainer
6. Test extra volume mounts: .dev/dev -v /tmp:/tmp and verify /tmp is accessible inside the container
7. Confirm .devcontainer/ is untouched and still works for VSCode users

Checklist before requesting a review

• Ensure the syntax is correct (EditorConfig and Prettier must pass) — N/A, only Dockerfiles and shell script
• Run the test suites if your changes affect any module — no module changes
• Regenerate the Poetry lock file if you have updated the dependencies — no dependency changes
• Ensure the documentation is up-to-date — usage documented in PR description

Tested and working on Void Linux (kernel 6.18 and kernel 7.03) with rootless podman. Other distros may need adjustments.

[CMonnin]

not sure if there's any interest in this but i don't use vscode or devcontainers so this is an alternative

[arnaudbore]

@CMonnin

Please advise :)

$ ./.dev/dev
STEP 1/23: FROM scilus/scilus:2.0.2
Error: error creating build container: short-name "scilus/scilus:2.0.2" did not resolve to an alias and no unqualified-search registries are defined in "/etc/containers/registries.conf"

Is there a way to get as much common building info as possible at the same place instead of duplicating code ?

[CMonnin]

@CMonnin

Please advise :)

$ ./.dev/dev
STEP 1/23: FROM scilus/scilus:2.0.2
Error: error creating build container: short-name "scilus/scilus:2.0.2" did not resolve to an alias and no unqualified-search registries are defined in "/etc/containers/registries.conf"

Is there a way to get as much common building info as possible at the same place instead of duplicating code ?

do you mean between the devcontainers and these separate dockerfiles?

[CMonnin]

nf version needs to be moved to 25 to match CI

[gdevenyi]

I think this PR should include some documentation updates on how this tool is intended to be used for development.

[AlexVCaron]

I think this PR should include some documentation updates on how this tool is intended to be used for development.

Yes, once it works, some upgrades to the installation procedures on nf-neuro-documentation will need to be done.

[gdevenyi]

nf-test test fails in the container on every step:

  Command error:
    .command.run: line 298: docker: command not found

[gdevenyi]

Tests working with nf-test test --profile apptainer,devcontainer

[gdevenyi]

Needs docs on how to use.

[gdevenyi]

Swap for uv?

[gdevenyi]

uv tool install?

[gdevenyi]

uv?

[gdevenyi]

Had to add pipx to apt-get install above in 2.2.2 for it to work, still prefer uv

[gdevenyi]

apptainer has a PPA https://apptainer.org/docs/admin/latest/installation.html#install-ubuntu-packages

[gdevenyi]

apptainer has a ppa apptainer.org/docs/admin/latest/installation.html#install-ubuntu-packages

[gdevenyi]

The most likely user for nf-neuro is ubuntu, it probably makes more sense to base the test environments on it?

[gdevenyi]

uv?

[gdevenyi]

very out of date, should be 2.2.2

[gdevenyi]

Swapping to 2.2.2 causes this build error, good reason for uv

--> f33d5b5fdabb
STEP 14/23: RUN python3 -m pip install --no-cache-dir pipx
/opt/venvs/scilpy/bin/python3: No module named pip
Error: building at STEP "RUN python3 -m pip install --no-cache-dir pipx": while running runtime: exit status 1

[gdevenyi]

Another bug on bump:

--> 65374466aed4
STEP 14/22: RUN groupadd --gid ${USER_GID} ${USERNAME}     && useradd --uid ${USER_UID} --gid ${USER_GID} -m -s /bin/bash ${USERNAME}     && echo "${USERNAME} ALL=(ALL) NOPASSWD:ALL" > /etc/sudoers.d/${USERNAME}     && chmod 0440 /etc/sudoers.d/${USERNAME}
groupadd: GID '1000' already exists
Error: building at STEP "RUN groupadd --gid ${USER_GID} ${USERNAME}     && useradd --uid ${USER_UID} --gid ${USER_GID} -m -s /bin/bash ${USERNAME}     && echo "${USERNAME} ALL=(ALL) NOPASSWD:ALL" > /etc/sudoers.d/${USERNAME}     && chmod 0440 /etc/sudoers.d/${USERNAME}": while running runtime: exit status 4

[gdevenyi]

Default user is ubuntu and already present in the container now

[gdevenyi]

no need for both wget and curl

[gdevenyi]

no need for both wget and curl

[gdevenyi]

we are modern people, chmod has symbolic permissions mode

[gdevenyi]

Not needed for 2.2.2, just switch user to ubuntu

[gdevenyi]

switch to ubuntu for 2.2.2

[arnaudbore]

It looks amazing. Great work !

[Copilot]

Pull request overview

Adds a terminal/editor-agnostic container dev environment under .dev/ as an alternative to the existing VS Code .devcontainer/ setup, aiming to provide reproducible tooling via Podman + Apptainer without requiring the devcontainer CLI.

Changes:

• Added a Podman-based launcher script (.dev/dev) to build/run a selected dev “flavor” and persist caches/venvs via named volumes.
• Added two new Dockerfile-based environments (.dev/prototyping/ and .dev/devops/) with Nextflow, nf-test, Apptainer, GitHub CLI, and additional CI tooling for devops.
• Added .dev/README.md documenting usage and manual build steps.

Reviewed changes

Copilot reviewed 4 out of 4 changed files in this pull request and generated 6 comments.

File	Description
.dev/README.md	Documents the new container-based dev environment and how to use it.
.dev/prototyping/Dockerfile	Defines the “prototyping” container image with Nextflow/nf-test/Apptainer tooling.
.dev/devops/Dockerfile	Defines the “devops” container image with additional CI/dev tooling (node/act/actionlint/etc.).
.dev/dev	Podman launcher script to build/run the chosen flavor with persistent volumes and optional extra mounts.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[gdevenyi]

None of these co-pilot reviews are relevant, updated model works for me.

[gdevenyi]

Can this be merged? I'd like to use it to advance my registration too integration.