Mastodawn

"The infrastructure for the world needs to catch up with where AI agents are -- quite pointedly, agents break the container model." Mark Cavage, President and COO, Docker, Inc.

Now, #Docker and NanoCo (creators of NanoClaw) are working on that infrastructure with an integration between the minimalist alternative to #OpenClaw and #DockerSandboxes that further isolates #AIagents within a #microVM for safer business use. https://www.techtarget.com/searchitoperations/news/366640195/NanoClaw-AI-agents-find-a-home-in-Docker-Sandboxes

NanoClaw AI agents find a home in Docker Sandboxes

The minimal, containerized alternative to the viral OpenClaw gets an added dose of isolation from Docker microVMs, as 'AI claws' proliferate.

TechTarget

Is that art?

Contrast runs confidential container deployments on Kubernetes at scale.

Contrast is based on the #Kata Containers and provides an implementation of the confidential containers concept. Confidential containers are Kubernetes pods that are executed inside a confidential #microVM and provide strong hardware-based isolation from the surrounding environment. This works with unmodified containers in a lift-and-shift approach.
#kubernetes
https://github.com/edgelesssys/contrast

GitHub - edgelesssys/contrast: Deploy and manage confidential containers on Kubernetes

Deploy and manage confidential containers on Kubernetes - edgelesssys/contrast

GitHub

OSTechNix Feb 9

Learn how smolBSD creates minimal (10 MB) NetBSD VMs that boot in 10ms. Full UNIX system, Docker-like workflow, runs on QEMU and Firecracker.

Full guide here: https://ostechnix.com/build-10mb-netbsd-vms-boot-10ms-smolbsd/

#smolbsd #netbsd #microvm #unix #virtualmachine #opensource #qemu #firecracker

How to Build 10MB NetBSD VMs That Boot in 10ms Using smolBSD - OSTechNix

Learn how smolBSD creates minimal 10 MB NetBSD VMs that boot in 10ms. Full UNIX system, Docker-like workflow, runs on QEMU and Firecracker.

OSTechNix

HoldMyType Feb 2

tying fireations service #microvm #gitlab #devops
#nix
dude simplifies it all and didn't even hesitate to share
https://github.com/thpham/nixos-fireactions/tree/main

Jason Haruska Jan 21

How I connect microvm.nix VMs to my home network VLANs.

VMs get deterministic MAC addresses derived from their hostname, so the router handles all DNS and IP assignment.

https://haruska.com/til/microvm-nix-vlan-networking

#nix #microvm-nix #homelab #networking #selfhosted

microvm.nix VLAN Networking

I use NixOS and microvm.nix for my homelab server. My home network is set up with VLANs to segregate traffic including self-hosted services. For my homelab server, each virtual machine is configured to be on its appropriate VLAN.

haruska.com

AI Sparkup Jan 10

AI 에이전트가 코드를 실행할 때: 컨테이너만으론 부족한 이유

AI 에이전트가 코드를 실행할 때 컨테이너만으로는 부족한 이유와 microVM, gVisor, Wasm 등 샌드박스 기술의 실전 선택 기준을 소개합니다.

https://aisparkup.com/posts/8084

Reddit Tech VN Bot Dec 16

#AIAnToan #Sandboxing #KhoaHocDuLieu #AIQuanLy

Giới hạn hành vi tự chủ của agent AI thông qua sandboxing – bài viết phân tích rủi ro từ truy cập tool không kiểm soát, lộ trình mạng/hệ thống, và các giải pháp như Docker, Firecracker, gVisor. Tìm hiểu cách tối ưu an toàn trong sản phẩm.

#AIUnsafe #AnToanCongNghe #QuanLyAI #Container #MicroVM #GVisor #DevOps #Cybersecurity

https://www.reddit.com/r/programming/comments/1po8ar9/sandboxing_ai_agents_practical_ways_to_limit/

tuxiqae Dec 9

The #nix #microvm project added #darwin support!

https://github.com/microvm-nix/microvm.nix/issues/154#event-21442108737

#microvmnix #NixOS #nixdarwin

aarch64-darwin support? · Issue #154 · microvm-nix/microvm.nix

We would like to use microvm to provide staging and build environments for developers, but a few of them use apple hardware/software. I can't find a way to use this project to run aarch64-linux vm ...

GitHub

Show thread