just wanted to say

[coderofsalvation]

This is awesome, thank you for this. I tried running a python function and it seems quite fast too!

In the last years I've been observing & rethinking exactly the same phenomenon as this project seems to adress: offering a alternative to container bloat & complexity. Sometimes scaling jobs horizontally is fine without kubernetes but using ssh (https://github.com/coderofsalvation/clussh e.g.) or Nats.io. I realized how 'trusted' CGI would save so much development/maintenance time. I think the adoption of this project will grow inherent to the people realizing the container-dungeons they find themselves in.

Tips:

Perhaps the description of this repo could include these (albeit cringy) words: serverless, FaaS, PaaS, baremetal, lowcode, polyglot e.g.

(That way I would have found it earlier I think. I really think this project is heavily underrated, I might do a video on it soon)

Another suggestion: you could mention in the docs/UI using https://github.com/containers/bubblewrap for untrusted processes (it allows sandboxing processes on a real lowlevel, and is a quite popular solution to the notorious slow startup time of kubernetes/docker ephemeral containers). Ultimately shipping templates with bubblewrap, nice, or ionice would be epic. Where can I submit templates?

Sidenote: I'm also curious how it could play with fellow go-binaries like nats.io, websocketd and pocketbase.

Anyways, just my few cents, you can consider this issue done btw.

[reddec]

Thanks! I will keep this issue open for a while to think about it more

[coderofsalvation]

cool ❤

NOTE: Yesterday I tried bubblewrap inside trusted-cgi, it works but once you run trusted-cgi inside a docker, then docker needs some special securityflags for bubblewrap to create namespaces (which I haven't figured out).