Thor GalleApr 11

I've seen #OrbStack being hyped on HackerNews and elsewhere, mostly for running AI agents. However, it provides full read-write access to your entire macOS host as a feature that can't be disabled. Welp.

https://docs.orbstack.dev/architecture#security
> Linux machines are considered trusted because OrbStack provides integration with macOS, but support for isolated machines without integration is planned.

That kind of the defeats the point of using a VM?

See also https://github.com/orgs/orbstack/discussions/2269 & https://github.com/orbstack/orbstack/issues/169

Architecture · OrbStack Docs

OrbStack runs Linux machines and Docker containers on a highly optimized lightweight VM with low resource usage and seamless macOS integration. Custom services, advanced file sharing, and efficient networking deliver fast, powerful performance on Apple Silicon.

Show threadThor Galle

The extra QoL features and integrations are helpful though, I just wish you could configure them.

And I wish I realized this before I ran a experiment with an agent bypassing permissions. Luckily, nothing went wrong.

Apr 11 at 7:58amWeb