author of smol machines here, it has no relation to firecracker.
It runs ontop of the libkrun vmm forked with optimizations, which is the underlying lib powering podman as well.
open source, will contribute upstream when possible: https://github.com/smol-machines/libkrun
Upthread the implication seems to be that smolmachines would be in some way a replacement for orbstack to run docker containers
But it seems more like a completely different way to run isolated workloads?
smol machines is a virtual machine, akin to firecracker but designed to run locally as well
It also has container-inages support built-in with crun so you can create a VM with a container running by default.
You can also just... run docker inside of it.
good stuff man i just installed it and its super fast im just not sure is this really secure to run untrusted code i can't find any white papers
the underlying vmm is libkrun: https://github.com/libkrun/libkrun is battle tested and used for podman.
It provides kernel isolation for running untrusted code which is a security boundary that traditional containers can't guarantee.
I'm engaged with a third party security penetration company for their review, and will be happy to share it publicly when it is available.
thank you. definitely enjoying smol. this is a very nice alternative to docker, orbstack even firecracker