zlacker

[return to "Coding Agent VMs on NixOS with Microvm.nix"]
1. clawsy+o2[view] [source] 2026-02-01 08:38:45
>>secure+(OP)
we run ~10k agent pods on k3s and went with gvisor over microvms purely for density. the memory overhead of a dedicated kernel per tenant just doesn't scale when you're trying to pack thousands of instances onto a few nodes. strict network policies and pid limits cover most of the isolation gaps anyway.
◧◩
2. alexze+MOb[view] [source] 2026-02-04 18:42:44
>>clawsy+o2
This is a big reason for our strategy at Edera (https://edera.dev) of building hypervisor technology that eliminates the standard x86/ARM kernel overhead in favor of deep para-virtualization.

The performance of gVisor is often a big limiting factor in deployment.

[go to top]