https://docs.docker.com/ai/sandboxes/ Any idea on how that compares to this docker feature in development?
replyDocker containers use cgroups and namespaces etc (the usual kernel level isolation)
replyDocker sandboxes use microvms (i.e. hardware level isolation)
Bubblewrap uses the same technology as containers
I am unsure about seatbelt.