Runc Alternatives

Similar projects and alternatives to runc

zig

816 30,631 10.0 Zig runc VS zig

General-purpose programming language and toolchain for maintaining robust, optimal, and reusable software.
kubernetes

657 106,611 10.0 Go runc VS kubernetes

Production-Grade Container Scheduling and Management
InfluxDB

www.influxdata.com sponsored

Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
podman

358 21,645 10.0 Go runc VS podman

Podman: A tool for managing OCI containers and pods.
Moby

212 67,687 10.0 Go runc VS Moby

The Moby Project - a collaborative project for the container ecosystem to assemble container-based systems
containerd

125 16,292 9.9 Go runc VS containerd

An open and reliable container runtime
dive

90 43,487 7.0 Go runc VS dive

A tool for exploring each layer in a docker image
buildkit

53 7,655 9.8 Go runc VS buildkit

concurrent, cache-efficient, and Dockerfile-agnostic builder toolkit
WorkOS

workos.com sponsored

The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
distribution-spec

54 735 7.8 Go runc VS distribution-spec

OCI Distribution Specification
kaniko

49 13,882 9.5 Go runc VS kaniko

Build Container Images In Kubernetes
youki

36 5,778 9.7 Rust runc VS youki

A container runtime written in Rust
CoreDNS

41 11,776 9.3 Go runc VS CoreDNS

CoreDNS is a DNS server that chains plugins
crun

30 2,777 9.3 C runc VS crun

A fast and lightweight fully featured OCI runtime and C library for running containers
cri-o

33 5,013 9.7 Go runc VS cri-o

Open Container Initiative-based implementation of Kubernetes Container Runtime Interface
nanos

27 2,463 9.3 C runc VS nanos

A kernel designed to run one and only one application in a virtualized environment
buildah

25 6,986 9.6 Go runc VS buildah

A tool that facilitates building OCI images.
skopeo

22 7,364 9.0 Go runc VS skopeo

Work with remote images registries - retrieving information, images, signing content
ignite

20 3,473 0.0 Go runc VS ignite

Discontinued Ignite a Firecracker microVM (by weaveworks)
cni

13 5,298 7.6 Go runc VS cni

Container Network Interface - networking for Linux containers
runtime-spec

11 3,082 6.7 Go runc VS runtime-spec

OCI Runtime Specification
plugins

11 2,061 7.9 Go runc VS plugins

Some reference and example networking plugins, maintained by the CNI team. (by containernetworking)
SaaSHub

www.saashub.com sponsored

SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a better runc alternative or higher similarity.

Suggest an alternative to runc

runc reviews and mentions

Posts with mentions or reviews of runc. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2024-03-13.

Nanos – A Unikernel
11 projects | news.ycombinator.com | 13 Mar 2024

I can speak to this. Containers, and by extension k8s, break a well known security boundary that has existed for a very long time - whether you are using a real (hardware) server or a virtual machine on the cloud if you pop that instance/server generally speaking you only have access to that server. Yeh, you might find a db config with connection details if you landed on say a web app host but in general you still have to work to start popping the next N servers.
That's not the case when you are running in k8s and the last container breakout was just announced ~1 month ago: https://github.com/opencontainers/runc/security/advisories/G... .
At the end of the day it is simply not a security boundary. It can solve other problems but not security ones.
Several container breakouts due to internally leaked fds
1 project | news.ycombinator.com | 1 Feb 2024
Container breakout through process.cwd trickery and leaked fds
1 project | news.ycombinator.com | 31 Jan 2024
US Cybersecurity: The Urgent Need for Memory Safety in Software Products
3 projects | news.ycombinator.com | 21 Sep 2023

It's interesting that, in light of things like this, you still see large software companies adding support for new components written in non-memory safe languages (e.g. C)
As an example Red Hat OpenShift added support for crun(https://github.com/containers/crun) this year(https://cloud.redhat.com/blog/whats-new-in-red-hat-openshift...), which is written in C as an alternative to runc, which is written in Go(https://github.com/opencontainers/runc)...
Run Firefox on ChromeOS
3 projects | news.ycombinator.com | 8 Aug 2023

Rabbit hole indeed. That wasn't related to my job at the time, lol. The job change came with a company-provided computer and that put an end to the tinkering.
BTW, I found my hacks to make runc run on Chromebook: https://github.com/opencontainers/runc/compare/main...gabrys...
Crun: Fast and lightweight OCI runtime and C library for running containers
7 projects | news.ycombinator.com | 4 Jun 2023

being the main author of crun, I can clarify that statement: I am not a fan of Go _for this particular use case_.
Using C instead of Go avoided a bunch of the workarounds that exists in runc to workaround the Go runtime, e.g. https://github.com/opencontainers/runc/blob/main/libcontaine...
Best virtualization solution with Ubuntu 22.04
8 projects | /r/linuxquestions | 28 May 2023

runc
Bringing Memory Safety to sudo and su - with Ferrous Systems and Tweedegolf
1 project | /r/rust | 27 Apr 2023

Not OP, but if I had to guess, a lot of this can be picked up by just observing common security issues in the Linux space, since similar mistakes and oversights have caused quite a few real-world CVEs in the past, e.g. this random example of a TOCTTOU vulnerability in runc.
Containers - entre historia y runtimes
3 projects | dev.to | 26 Apr 2023
[email protected]+incompatible with ubuntu 22.04 on arm64 ?
2 projects | /r/docker | 25 Apr 2023
A note from our sponsor - SaaSHub
www.saashub.com | 24 Apr 2024

SaaSHub helps you find the best software and product alternatives Learn more →