Comment by andix
3 days ago
Is a container breach really the relevant problem to solve for agents? VMs provide better isolation, that's true. But does it matter?
Even sandboxed agents usually have a lot of capabilities. Adding backdoors to code by installing breached packages, abusing some access tokens to cause harm, and much more.
The claim here in your second part is valid.
> Adding backdoors to code by installing breached packages, abusing some access tokens to cause harm, and much more.
But it doesn’t mean stricter isolation (ie separate kernel space) is a bad thing. One less attack surface in other words. It’s 100% relevant and matters.
In a world where we're getting one local privilege escalation vulnerability a week, I think that VM isolation can still be a significant benefit.