Show HN: Vmette – hardware-isolated microVM sandbox for local AI agents (macOS)

Category: security

Tags: microvm, sandbox, ai-agents, macos, security, cli-tool, rust

Score: 8.0/10 (Innovation: 8, Technical: 9, Documentation: 8, Utility: 7)

Vmette is a hardware-isolated microVM sandbox for macOS that lets you run untrusted AI agents locally without risking the host system. It boots a full Linux VM in ~1 second using Apple's Virtualization.framework and offers pluggable rootfs providers, making it a novel and practical security boundary for local agent workflows.

Target audience: backend devs, devops, security engineers, ai engineers

Repository: https://github.com/chamuka-inc/vmette · Rust · MIT

View on Hacker News