interesting choice - doesn't that then mean that container to container integration is going to be harder and a lot of overhead per-container? I would have thought a shared VM made more sense. I wonder what attracted them to this.
It seems great from a security perspective, and a little bit nice from a networking perspective.
The "one IP per container" approach (instead of shared IPs) is similar to how kubernetes pods work.
I can see the decision to do it this way being related to their private secure cloud infrastructure for AI tools.
I like the security aspect. Maybe DNS works, and you can use that for communication between containers?