Modern systems increasingly rely on isolation mechanisms—especially with the rise of AI agents and sandboxed execution—but there are many different approaches and they each have different strengths and tradeoffs.
We'll cover:
• Linux namespaces and cgroups
• Node isolates and runtime isolation
• Isolation methods commonly used in agent frameworks and harnesses
• Containers and container runtimes
• Virtual machines and KVM
• Architecture-level isolation patterns
• Practical tradeoffs and real-world use cases
Sam has run production workloads at scale across Kubernetes, containers, VMs, lambdas, Node isolates, and sandboxing platforms like E2B, and will share lessons from deploying these systems in practice.
About Sam Currie
Currently CEO of Heyo Computer, previously head of Infrastructure at Flatfile and Obvious.ai. Startup rat, drummer, and search & rescue first responder, now located in Buena Vista
Hosted by Netlify