Mainly routine software supply chain attacks to unexamined dependencies pulled in by a mess of vibe-coding.
(Though it would also give some protection against growth hacking or kludge expedience that goes a little too naughty. We're already seeing some questionable behavior there, as some rush to get their functionality working first.)
Since containers are for fairly trusted code, and relatively easy to break out of, compared to a good VM.
alt Hacker News
Mainly routine software supply chain attacks to unexamined dependencies pulled in by a mess of vibe-coding.
(Though it would also give some protection against growth hacking or kludge expedience that goes a little too naughty. We're already seeing some questionable behavior there, as some rush to get their functionality working first.)
Since containers are for fairly trusted code, and relatively easy to break out of, compared to a good VM.