Y
Hacker News
new
|
ask
|
show
|
jobs
by
urlportz
30 days ago
Agreed. Having the isolation boundary at the VM/container layer feels much more predictable for experimentation-heavy workflows compared to relying purely on OS-level restrictions.