Thor Galle

I've seen #OrbStack being hyped on HackerNews and elsewhere, mostly for running AI agents. However, it provides full read-write access to your entire macOS host as a feature that can't be disabled. Welp.

https://docs.orbstack.dev/architecture#security
> Linux machines are considered trusted because OrbStack provides integration with macOS, but support for isolated machines without integration is planned.

That kind of the defeats the point of using a VM?

See also https://github.com/orgs/orbstack/discussions/2269 & https://github.com/orbstack/orbstack/issues/169

Architecture · OrbStack Docs

OrbStack runs Linux machines and Docker containers on a highly optimized lightweight VM with low resource usage and seamless macOS integration. Custom services, advanced file sharing, and efficient networking deliver fast, powerful performance on Apple Silicon.

Apr 11 at 7:58amWeb
Show threadThor GalleApr 11

The extra QoL features and integrations are helpful though, I just wish you could configure them.

And I wish I realized this before I ran a experiment with an agent bypassing permissions. Luckily, nothing went wrong.