A fast and lightweight fully featured OCI runtime and C library for running containers

CLI tool for spawning and running containers according to the OCI specification.

youki is an implementation of the OCI runtime-spec in Rust, similar to runc.

• Youki @ GitHub.

The Container Security Platform. Application Kernel for Containers.

gVisor provides a strong layer of isolation between running applications and the host operating system. It is an application kernel that implements a Linux-like interface. Unlike Linux, it is written in a memory-safe language (Go) and runs in userspace.

gVisor includes an Open Container Initiative (OCI) runtime called runsc that makes it easy to work with existing container tooling. The runsc runtime integrates with Docker and Kubernetes, making it simple to run sandboxed containers.

• gVisor @ GitHub.