|
|
|
|
|
|
by andix
32 days ago
|
|
|
Is a container breach really the relevant problem to solve for agents? VMs provide better isolation, that's true. But does it matter? Even sandboxed agents usually have a lot of capabilities. Adding backdoors to code by installing breached packages, abusing some access tokens to cause harm, and much more. |
|
|
> Adding backdoors to code by installing breached packages, abusing some access tokens to cause harm, and much more.
But it doesn’t mean stricter isolation (ie separate kernel space) is a bad thing. One less attack surface in other words. It’s 100% relevant and matters.