smolVM

Open-source micro VMs for running AI agents, browser tasks, and computer-use workflows

smolVM is an open-source framework from CelestoAI for spinning up lightweight, isolated virtual machine environments specifically designed for AI agents that need to execute code, control browsers, or perform computer-use tasks. Unlike full cloud VM providers, smolVM prioritizes fast fork/spawn times (sub-200ms), minimal overhead, and snapshot-and-restore support so agents can checkpoint and resume mid-task without starting over. The project supports three primary use cases: sandboxed code execution (Python, Node, Bash), browser agent workflows (Playwright/Puppeteer with a persistent browsing context), and full desktop computer-use tasks (via a lightweight VNC layer). Each VM is isolated with Linux namespaces and cgroups, with optional filesystem overlays so you can pre-warm environments with dependencies already installed. It's designed to be self-hosted on any Linux server or Kubernetes cluster. smolVM fills a genuine gap between "run code in a subprocess" (no isolation) and full cloud VMs (slow and expensive). As agentic coding assistants become standard, the infrastructure layer for running their tool calls safely is becoming a real problem — smolVM is an open-source bet that this layer shouldn't be locked up in a SaaS product. CelestoAI is positioning it as the self-hosted alternative to Freestyle and similar commercial sandboxing platforms.

Panel Reviews

The Builder

Developer Perspective

Ship

“Sub-200ms fork time is the headline number, and it holds up in testing. The snapshot/restore support is what makes this special — being able to checkpoint an agent mid-task and retry from that point without re-running expensive setup steps saves real money on long agentic workflows.”

The Skeptic

Reality Check

Skip

“Self-hosted sandboxing is a sysadmin headache. The isolation model relies on Linux namespaces, which have a long history of escape vulnerabilities — running untrusted agent-generated code here needs careful hardening. Early project, limited docs, and no SOC 2. Not enterprise-ready.”

The Futurist

Big Picture

Ship

“Compute sandboxing is becoming AI's next infrastructure layer — the thing every agentic system needs but nobody wants to build twice. Open-source here is the right call; just as databases and caches became infrastructure commodities, execution sandboxes will too.”

The Creator

Content & Design

Ship

“For automated screenshot, design review, and browser-based creative workflows, having isolated browser sandboxes that don't bleed state between runs is genuinely useful. A Figma scraper running in smolVM is cleaner than anything I've cobbled together with Docker.”