Another challenge is a shift from sandboxing your own application to running untrusted, 3rd-party code in the cloud (e.g, for AI agents or a plugin system).
Devs are forced to build an entire isolation infrastructure from scratch, or to use a complex compute platform like RunPod or Modal for simple code execution. You end up having to manage the ops overhead just for a simple feature.
We found this exact issue quite frustrating and needed an API with its primary feature being dead-simple, high-security ephemeral execution. And so we're building Stonebox, an API that provides that strong, gVisor-based isolation for arbitrary code without any of the setup or maintenance complexity.
Devs are forced to build an entire isolation infrastructure from scratch, or to use a complex compute platform like RunPod or Modal for simple code execution. You end up having to manage the ops overhead just for a simple feature.
We found this exact issue quite frustrating and needed an API with its primary feature being dead-simple, high-security ephemeral execution. And so we're building Stonebox, an API that provides that strong, gVisor-based isolation for arbitrary code without any of the setup or maintenance complexity.
Here's our approach if you're curious: https://stonebox.plust.click/