It seems great from a security perspective, and a little bit nice from a networking perspective.
The "one IP per container" approach (instead of shared IPs) is similar to how kubernetes pods work.
I can see the decision to do it this way being related to their private secure cloud infrastructure for AI tools.