Description
AI coding work can be isolated in microVM-based sandboxes instead of running directly on the host. It is useful for developers who want a tighter boundary around automated code changes and command execution.
Isolation depends on configuration. Limit mounted paths, avoid sharing secrets by default, and review network access when agents work with untrusted code.