More

vrn21 · 2026-03-07T15:12:44 1772896364

the link is over here, somehow link changed on its own : https://vrn21.com/blog/rl-env

vrn21 · 2026-03-03T09:27:37 1772530057

  Location: India
  Remote: Yes
  Willing to relocate: Yes
  Technologies: Rust, Python, Docker, Linux, Terraform, K8s, Sandboxes
  Résumé/CV: vrn21.com/resume
  Email: hello@vrn21.com

I'm KV, upcoming grad, previously interned at 3 startups [1x YC], where most of my work has revolved around Systems [Rust, Python, Docker, Linux]; You could see more info at my resume: [vrn21.com/resume]

And I've built some projects like: sandbox for agents with firecracker and rust [ https://github.com/vrn21/bouvet ] ; a key value store in rust[ https://github.com/hrefto/shorterdb ]; a serverless FaaS platform with WASM and rust [ https://github.com/orbit-serverless/server ]; a postgres extension with pgrx for full text search using tantivy, bm25, rust [ https://github.com/vrn21/pdb ]

vrn21 · 2026-02-23T20:37:21 1771879041

so user gets all of the dependencies and apps in userspace to run as well? but each of the command runs in its own more secure shell of some sorts?

edunteman · 2026-02-23T20:45:19 1771879519

Correct, your PATH resolves to your local tools as if it was unprotected bash, but syscalls are filtered/virtualized

vrn21 · 2026-02-24T07:43:11 1771918991

from a utilitarian perspective, can we swap this instead of a e2b or some other provider? since this doesnt require n number of micrvovm kernals and rootfs hanging round?

edunteman · 2026-02-24T17:53:42 1771955622

Exactly, that’d be the intention. For compute-heavy or long running jobs you’d still probably want a dedicated VM like on E2B but for quick stuff, bVisor

vrn21 · 2026-02-13T17:23:21 1771003401

no on noticing it?

vrn21 · 2026-02-11T13:35:27 1770816927

Location: India Remote: Yes Willing to relocate: Yes to anywhere (if provided with VISA) Technologies: Rust, Python, Docker, Terraform, Linux, Infra/Systems/Backend Résumé/CV: vrn21.com/resume Email: hello [at] vrn21 [dot] com

upcoming grad with 3 prior internships [1x yc]: rl envs, linux, filesystems. recently built a sandbox for agents with rust and firecracker as well btw: github.com/vrn21/bouvet

vrn21 · 2026-02-04T19:55:30 1770234930

link not found btw

vrn21 · 2026-01-28T21:16:00 1769634960

lol thanks for the compliments, generated both the testimonials after giving the mcp server to both opus and gemini and asked their feedback on it.

it is supposed to be directly used by agents, so they are kind of my end users, hence it made sense to get their testimonials :)

vrn21 · 2026-01-28T21:13:29 1769634809

my ideal scenario is a cloud web model getting access to a sandbox to run commands and read/write to files. but yeah it could be used as an alternative to bash and read write tools.

I did not get your second question exactly, but yeah microvms can be considered one of the secure ways to run your agent

aghilmort · 2026-01-28T22:35:56 1769639756

Basically, just thinking that it’s more ideal to have the tool call the micro VM versus the agent, doing it in the sense of its mandated by the tool call

vrn21 · 2026-01-28T21:07:58 1769634478

every syscall on containers run on the kernal with full privelages, so if needed one can break out of the container and get access to the host

ripped_britches · 2026-01-29T07:47:36 1769672856

> with full privs

No that’s just a misconfigured container then.

Unless there is an exploit on an unpatched kernel bug, a properly configured container shouldn’t allow break out

vrn21 · 2026-01-28T21:00:30 1769634030

Luis wrote an excellent blog about it btw: https://www.luiscardoso.dev/blog/sandboxes-for-ai