[KillerDiller]

The point here I think is that "nobody" seriously believes in container isolation purely through namespacing. It's sufficient for some scenarios, but we can expect the hypercontainer-based OCI runtime to gain much more momentum. It's only logical that Microsoft will skip namespacing entirely and go straight to a unified Windows/Linux container runtime based on their Hyper-V investment. Hyper-V isolation has been the only production-approved runtime for Windows containers already, and it's how Azure Container Instances works under the hood (that's my understanding at least).