Skip to main contentCrate axocoatl_isolation
Source pub use error::*;pub use firecracker::*;pub use oci_sandbox::*;pub use session_sandbox::*;pub use tier::*;pub use vsock::*;pub use wasmtime_sandbox::*;
- error
- firecracker
- Firecracker microVM isolation for untrusted code execution.
Requires Linux + KVM. Feature-gated behind
firecracker-isolation. - oci_sandbox
- youki-based OCI container sandbox for tool execution.
Linux-only. Feature-gated behind
oci-isolation. - podman
- Podman detection, setup, and lifecycle for session sandboxes.
- pty
- Interactive PTY-backed terminals running inside a session sandbox.
- session_sandbox
- Per-session OCI container sandbox.
- tier
- vsock
- Virtio-vsock communication for Firecracker microVMs.
Host-side client that connects to the guest tool executor.
- wasmtime_sandbox
- Wasmtime WASM sandbox for isolated tool execution.
Uses wasmtime 43 with WASIp1 for core module support.