[voigt]

Great work! Nice to see some progress in this direction.

The WasmEdge team also tamed their crun OCI runtime to run containers as well as wasm modules. [1]

So running wasm along with your pods is not exactly new.

Though it yet needs to be proven what’s the better approach: a shim on CRI level or integration in OCI level…

[1] https://wasmedge.org/book/en/kubernetes.html

[cpuguy83]

The main advantage to doing it at the shim level is I can run multiple wasm containers from a single wasm runtime more easily.

I did look at implementing this at the OCI layer (also really cool that crun does this!) but decided to go another way.

[sitkack]

WasmEdge is unfortunate in that it is >20kloc of C/C++, obviating many of the security properties of Wasm itself. Many folks would have liked to see something like safe Rust. Of course there will always be issues with codegen, but at least that has had research around the application of formal methods.

Is there a WasmEdge replacement shim using Wasmtime?