I believe that has to do with Yggdrasil intentionally using the address range that does not intersect with IETF (?) dedicated range for public IPv6 addresses, browsers see that and treat them as internal and never report them to ICE (candidate exchange).
Technically WASI 0.1, but I used it (via Extism[0]) to implement a simple library[1] that's written in Rust, but lets you easily add login to backends in Rust, Go, and Node. Would be trivial to add other lanugages supported by Extism.
Overall I loved the dev experience. It's sort of like writing a C library that can be dynamically linked in other languages, but with much better security and much easier distribution because you don't need to worry about the OS or CPU architecture. Literally the same .wasm file everywhere.
I think the next frontier for competition is speed. Instead of constantly context-switching between multiple agents that I have working on various tasks, I want a single agent that can rip through any prompt in a few seconds, so I can stay in flow on a single task.
OMP is a fork of Pi[0], which is my preferred harness. Feels solid and minimal. I don't even use any extensions, skills, or modifications. Usually don't even use an AGENTS.md. Just create a small spec.md and/or plan.md for most experiments.
One area this is desirable is AI agents. Often you just need to spin them up for quick ephemeral tasks, but you want more isolation than containers give you. I'm still looking for a good solution here. A cool one I've been playing with recently is https://smolmachines.com/
I actually just found microsandbox this morning and it looks really solid. One thing it's lacking is GPU support. With smolmachines you can use Vulkan through virtio-gpu/Venus which is quite nice. Can you give more details on what you prefer about microsandbox?
> The fact that neither STUN nor TURN contain any way whatsoever to accomplish any kind of rendezvous without yet another signaling path boggles my mind
Interesting. Can you expound on this a bit? How does ZeroTier do it?
ZeroTier has "roots," which are nodes that relay packets and also tell you what your IP info is. Everyone in the world connects to a pool of these.
Other than relaying and STUN-like IP info reflection, they're dumb and do very little. They can't see your traffic or other information or even what virtual networks you're on.
Once both sides learn their external info, they communicate via the root to arrange P2P rendezvous. If both have IPv6 they use that, but still do a hole punch due to stateful firewalls. But with V6 it works almost 100% of the time. If one or both have V4, they do more cumbersome V4 hole punch maneuvers.
Our next-gen product, which is still in pre-release and has been shown only to some enterprise customers, is called ZeroTier Quantum. It's called that cause it's built on PQC (pqNoise to be exact) but it's also a full-scale reengineering of the whole system. But it still uses very similar techniques. Everything is in-band. No STUN, TURN, or even DNS dependencies.
reply