Virtual machines. I can't ask claude to figure out an issue on the hw host w/o falling back to per-action confirmations or giving it full unconditional access. When everything runs on one host I can organize controllable sandbox escapes for Claude and let it work in huge batches with minimal attention.
> won't be using
Well, that's your choice to avoid efficient agentic workflows
> misunderstood
There are no containers on mac, there are VMs hosting containers and subtractive sandbox filtering syscalls.
Why do you need agents patching your kernel to enable efficient agentic workflows? Are those agents working on building a kernel? If they're just building some web backend or whatever, I don't see why any of this is needed.
Virtual machines. I can't ask claude to figure out an issue on the hw host w/o falling back to per-action confirmations or giving it full unconditional access. When everything runs on one host I can organize controllable sandbox escapes for Claude and let it work in huge batches with minimal attention.
> won't be using
Well, that's your choice to avoid efficient agentic workflows
> misunderstood
There are no containers on mac, there are VMs hosting containers and subtractive sandbox filtering syscalls.
> get as much
FW 13 is great, FW 16 is a disaster.