Co-builder on this project,

To answer your questions :)

- How would I use these microVms and what is the cloudflare worker for?

This is unlikely the right solution for you, it's more geared towards people building kilocode (because they have an agent that independently writes code + executes that code).

The microvm's are for developers running locally wanting to execute untrusted code written by an ai - example is running codex or gemini-cli. Cloudflare workers are for users who want their own "sandbox infra" so they can execute untrusted code written by ai with their production app (not local hopefully)!

- I currently run a regular set of docker containers to run my code, how does this compare?

Very little difference for your use case unless you expect to do more hostile coding.

But I'll try to explain why VM's are different than containers in the security area:

Containers are not considered as production-level security boundary. One of the main reason is because containers share the kernel with the host machine running the container.

Security penetration engineers do not consider exploiting `some` linux kernels to be high effort because depending on the version, libraries, etc there are CVE's to exploit: https://www.cisa.gov/known-exploited-vulnerabilities-catalog...

However, virtual machines are battle tested sandbox tech designed to have strong protection by having host and the VM have individual operating systems AND dedicated virtualized hardware. This is also the main environment you can rent from big providers. Some more info here: https://www.wiz.io/academy/containers-vs-vms

So this product is a microVM which combines security of VM's + a layer to make it easy and fast like containers to get the best of both worlds.