| ▲ | throwaway6734 13 hours ago | |
https://docs.docker.com/ai/sandboxes/ Any idea on how that compares to this docker feature in development? | ||
| ▲ | figmert 12 hours ago | parent [-] | |
Docker containers use cgroups and namespaces etc (the usual kernel level isolation) Docker sandboxes use microvms (i.e. hardware level isolation) Bubblewrap uses the same technology as containers I am unsure about seatbelt. | ||