Dirty Frag: a kernel zero-day vs. container and microVM sandboxes

Source: News.Ycombinator

Published:

<p>We build declaw.ai — sandboxing infrastructure for AI agents, on Firecracker microVMs. We run untrusted code we don't write and can't predict, so when Dirty Frag dropped our first question was: does our isolation boundary hold? We tested it on a deliberately unpatched kernel. It held. Here's why.

Read original article