Remix.run Logo
binsquare 6 hours ago

author of smol machines here, it has no relation to firecracker.

It runs ontop of the libkrun vmm forked with optimizations, which is the underlying lib powering podman as well.

open source, will contribute upstream when possible: https://github.com/smol-machines/libkrun

glenjamin 5 hours ago | parent | next [-]

Upthread the implication seems to be that smolmachines would be in some way a replacement for orbstack to run docker containers

But it seems more like a completely different way to run isolated workloads?

binsquare 4 hours ago | parent [-]

smol machines is a virtual machine, akin to firecracker but designed to run locally as well

It also has container-inages support built-in with crun so you can create a VM with a container running by default.

You can also just... run docker inside of it.

zuzululu 5 hours ago | parent | prev [-]

good stuff man i just installed it and its super fast im just not sure is this really secure to run untrusted code i can't find any white papers

binsquare 4 hours ago | parent [-]

the underlying vmm is libkrun: https://github.com/libkrun/libkrun is battle tested and used for podman.

It provides kernel isolation for running untrusted code which is a security boundary that traditional containers can't guarantee.

I'm engaged with a third party security penetration company for their review, and will be happy to share it publicly when it is available.

zuzululu 2 hours ago | parent [-]

thank you. definitely enjoying smol. this is a very nice alternative to docker, orbstack even firecracker