Only did a quick skim of the readme, but a few questions which I would like some...

appcypher · 2025-05-30T15:11:55 1748617915

> How is it so fast? Is it making any trade offs vs a traditional VM? Is there potential the VM isolation is compromised?

It is a lighweight VM and uses the same technology as Firecracker

> Can I run a GUI inside of it?

It is planned but not yet implemented. But it is absolutely possible.

> Do you think of this as a new Vagrant?

I would consider Docker for VMs instead. In a similar way, it focuses on dev ops type use case like deplying apps, etc.

> How do I get data in/out?

There is an SDK and server that help does that and file streaming is planned. But right now, you can execute commands in the VM and get the result back via the server

westurner · 2025-05-30T15:57:05 1748620625

> I would consider Docker for VMs instead.

Native Containers would probably solve here, too.

From https://news.ycombinator.com/item?id=43553198 :

>>> ostree native containers are bootable host images that can also be built and signed with a SLSA provenance attestation; https://coreos.github.io/rpm-ostree/container/

And also from that thread:

> How should a microkernel run (WASI) WASM runtimes?

What is the most minimal microvm for WASM / WASI, and what are the advantages to running WASM workloads with firecracker or microsandbox?

appcypher · 2025-05-30T16:24:26 1748622266

> What is the most minimal microvm for WASM / WASI,

By setting up an image with wasmtime for example.

> and what are the advantages to running WASM workloads with firecracker or microsandbox?

I can think of stronger isolation or when you have legacy stuff you need to run alongside.

westurner · 2025-05-30T19:39:13 1748633953

From https://e2b.dev/blog/firecracker-vs-qemu

> AWS built [Firecracker (which is built on KVM)] to power Lambda and Fargate [2], where they need to quickly spin up isolated environments for running customer code. Companies like E2B use Firecracker to run AI generated code securily in the cloud, while Fly.io uses it to run lightweight container-like VMs at the edge [4, 5].

"We replaced Firecracker with QEMU" (2023) https://news.ycombinator.com/item?id=36666782

"Firecracker's Kernel Support Policy" describes compatible kernel configurations; https://github.com/firecracker-microvm/firecracker/blob/main...

/? wasi microvm kernel [github] https://www.google.com/search?q=wasi+microvm+kernel+GitHub :

- "Mewz: Lightweight Execution Environment for WebAssembly with High Isolation and Portability using Unikernels" (2024) https://arxiv.org/abs/2411.01129 similar: https://scholar.google.com/scholar?q=related:b3657VNcyJ0J:sc...