[friendofmine]

Huh what's the benefit

[dawg91]

It's a hardened, security-first implementation. WASM runtime specifically is for isolating tool sandboxes

[verdverm]

WASM has issues with certain languages, why WASM and not OCI?

[ForHackernews]

Docker is not a security boundary?

[verdverm]

That's defined in context, security is a spectrum with tradeoffs

OCI supports far more and has a much bigger ecosystem