multipass
bubblewrap
Our great sponsors
multipass | bubblewrap | |
---|---|---|
128 | 75 | |
7,204 | 3,557 | |
2.6% | 1.6% | |
9.9 | 6.7 | |
6 days ago | 8 days ago | |
C++ | C | |
GNU General Public License v3.0 only | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
multipass
-
k8s-snap (Canonical Kubernetes) pour un déploiement simple et rapide d’un cluster k8s …
Multipass orchestrates virtual Ubuntu instances
-
VMs on macOS using Apple's native Virtualization.Framework
If you just need Ubuntu then you can try "Multipass" from Canonical (https://multipass.run/). Works quite well on my M2 Air. I haven't tried using Linux GUI with it though as I need only terminal based VMs.
-
Simulate an Ubuntu-like VM inside macOS
I have been using Multipass [0] for a while and it works great to quickly spin up an Ubuntu environment on my MacBook. It supports cloud config in case you want a custom instance.
It seems to be limited to running Ubuntu instances only (at least, I haven't figured out how to run other Linux instances) but if you want a quick clean Ubuntu VM I would recommend it.
Multipass is pretty clutch for trivial VMs on MacOs for sure. I use it for a bunch of ssh jump boxes running vpns to different sites. The macOS build does not support custom images (lest not without [some truly insane hacks](https://github.com/canonical/multipass/issues/1260#issuecomm...) , which doesn’t really matter for what I use it for but it is kind of a bummer. If you need something with a little more grunt but don’t want to go full blown with writing your own QEMU tooling or fussing with something like UTM or Parallels, [quickemu](https://github.com/quickemu-project/quickemu) is a really nice qemu wrapper with sane defaults that can expose a whole lot of power if you need it.
-
Lima: A nice way to run Linux VMs on Mac
How does it compare to https://multipass.run/?
-
Hands-on Kubernetes and maybe go for a certification
If you have a reasonably beefy computer, you can always try setting up Multipass and set up 2-3 nodes for a k8s cluster, it's how I'm doing my own certification training. I do have a k3s Raspberry Pi cluster, but with Pi prices being what they are still it'd almost be cheaper to do a cloud setup. ☹️
-
Colima: Container runtimes on macOS (and Linux) with minimal setup
Whenever I need a VM on my MacOS I reach out to Multipass[1].
It is a project by Canonical and has a decent amount of features to get the job done. However, it only supports Ubuntu VMs and has some rough edges.
-
Moving from TrueNAS to Linux. Is it right move?
For my selfhosted stuff, I use a combination of docker and multipass ( https://multipass.run/), Ubuntu.
-
Would it be possible to spin up an unconfigured Kubernetes multi-node cluster using minikube ?
Multipass was a big help for me learning kubeadm. Super easy to spin up Ubuntu VMs and kill them when you’re done. Virtualbox or libvirt would work too, but I found multipass to be easier for ephemeral headless instances
-
Are there things like Ephemeral Virtual Machines that can be used in CI system?
Vagrant or Multipass would be my first guesses. There isn't anything else out there that is going to orchestrate VMs the way you want.
bubblewrap
- I reduced the size of my Docker image by 40% – Dockerizing shell scripts
- Exploring Podman: A More Secure Docker Alternative
-
Using GitLab Kubernetes Runners to Build Melange Packages
Recently, I came across Chainguard and wrote the article How to build Docker Images with Melange and Apko. As a fervent supporter of Kubernetes and GitLab CI, I was eager to experiment with building images using Melange in this particular setup. GitLab's shared Runners work seamlessly with Bubblewrap, eliminating the need for additional configurations. This post is intended for enthusiasts like myself, interested in hosting their own Kubernetes Runners and leveraging the Kubernetes Runner Type of Melange.
- how strong is the steam (runtime) sandbox for games?
- Server-side sandboxing: Containers and seccomp
-
A Study of Malicious Code in PyPI Ecosystem
```
This is basically manually invoking what Flatpak does:
https://github.com/containers/bubblewrap
This is also useful for more than just security. E.G., you can test how your app would behave on a fresh install by masking your user configuration files. I personally also have a tool that uses it to basically bundle all dependencies from an entire Linux distribution in order to make highly portable AppImages— Been meaning to post that, will get around to it eventually maybe.
The flags above should hide your user data (`--tmpfs`), disable network access (`--unshare-all`), hide/virtualize devices and OS state (`--dev` and `--proc`), and make the rest of the root filesystem read-only (`--ro-bind`— Including the insecure X11 socket in `/tmp`, which you might want to expose for GUI apps).
Check them against `bwrap --help`; I might have omitted one or two more things you'd need.
- Bubblewrap – Low-level unprivileged sandboxing tool used by Flatpak
-
Firejail: Light, featureful and zero-dependency security sandbox for Linux
While trying to find out more comparison information, found this light on details issue:
https://github.com/containers/bubblewrap/issues/81
It mentions nsjail and minijail.
- Getting VS Codium setup properly with Flatpak without defeating the purpose of Flatpak?
-
How I published a gratitude journaling app for iOS and Android using SvelteKit and Capacitor
After some research I had nailed down that I would have to use either bubblewrap, PWABuilder or Capacitor. Since all those worked with Progressive Web Apps, I set out to start with building a PWA.
What are some alternatives?
lima - Linux virtual machines, with a focus on running containers
firejail - Linux namespaces and seccomp-bpf sandbox
wsl-environments
colima - Container runtimes on macOS (and Linux) with minimal setup
podman-compose - a script to run docker-compose.yml using podman
docker-images - Official source of container configurations, images, and examples for Oracle products and projects
UTM - Virtual machines for iOS and macOS
flatpak - Linux application sandboxing and distribution framework
gluetun - VPN client in a thin Docker container for multiple VPN providers, written in Go, and using OpenVPN or Wireguard, DNS over TLS, with a few proxy servers built-in.
podman - Podman: A tool for managing OCI containers and pods.
AdGuardHome - Network-wide ads & trackers blocking DNS server
flathub - Issue tracker and new submissions