An Efficient Multi-Sandbox Container Runtime
Kuasar offers a standard sandbox abstraction
based on the sandbox API
Balanced security, isolation, speed, and resource utilization
Kuasar is an efficient container runtime that provides cloud-native, all-scenario container solutions by supporting multiple sandbox techniques. Written in Rust, it offers a standard sandbox abstraction based on the sandbox API. Additionally, Kuasar provides an optimized framework to accelerate container startup and reduce unnecessary overheads. Kuasar is licensed under Apache 2.0. and free for personal or commercial use absolutely. We welcome contributors!
In the current state of development, no single underlying container technology can support all cloud-native scenario requirements well. Our goal is to provide a better way to manage and balance enterprises’ requirements for container isolation, security, general, speed, and resource consumption.
Kuasar makes the sandbox first-class citizen, providing a unified way for sandbox access and management, and improving sandbox O&M efficiency.
Kuasar has built-in support for mainstream sandboxes, including Cloud-Hypervisor, WasmEdge, etc., and supports running multiple sandboxes on a single node.
Kuasar introduces a single resident sandboxer process to replace all the shim processes, providing 2× startup speed and 99% overhead reduction.
Kuasar is committed to building an open and neutral multi-sandbox technique ecosystem.
All sandbox technologies are welcome in Kuasar.
Kuasar is fully written in Rust, which means high performance, high security and low overhead.
Kuasar has clear sandbox device management logic, no longer confused with container’s, which effectively reduce resource residual problems.