thnx a ton brother !

Although nice pictures but the content is rather vague and I still don't know how this WASI works. Code examples would be helpful.

There are many architectures to compile for: at least arm64 and amd64 these days, soon risc-v. wasm lets you compile to one target. The capability-based permissions model is powerful I think, and can be applied at the module level so dependencies can be sandboxed cheaply and thoroughly. This is not possible cheaply today with containers.

Using containers also leaves open the large attack surface of the Linux kernel, which was not designed with this use in mind. WASI is built from the ground up for simplicity and security.

There's a lot of attacks that can be done from within a container that let you escape the container and affect the hosting environment. Which means if the application running on the container is at all vulnerable to remote code executive attacks your hosting environment is as risk. Using a sandboxed environment like WASM can help shut down this category of attack entirely. Prevention by design is the best protection. Additionally if you need to run uncontrolled/user-written code a sandboxed runtime is basically essential for security. Browsers are a common example of this but there are other use-cases.

That happen with niche presentations, in this case Systems Programming (make a poll asking developers about what "Posix" is, I guess the vast majority don't know). The same happens when a guy explains monads using Haskell or other non-mainstream language.

I have watched this one and much more presentations by Lin Clark and I think that she can present very difficult subjects in a very understandable way, but let's keep in mind that those are still very difficult subjects. I think that to fully understand the subject of WASI, you need to have some knowledge about systems programming, have some experience with lower level languages like C, understand how you interact with the OS, know about POSIX, the Web standards and WebAssembly itself, but also understand the capability-based security model, which is quite a big and difficult subject. In my own talks about WASI I have always highly recommended talks by Lin Clark, but you need to have some basic understanding about the subjects I mentioned to understand the concept of WASI. I hope that what I wrote will help you get some background and maybe later the talks about WebAssembly and WASI will be easier to grasp. Good luck!

@@rpocztarski I do have some understanding of the areas that you pointed out. Maybe its just not enough.

@@Rajibahmed I agree with you, even wrote my own mini-wasi implementation some time ago along with a basic wasm interpreter for fun, I think she doesn't have a target, she tries to explain as if we were beginners, glossing over so much, and at the same time expects a lot of knowledge. It feels like a managerial presentation, one where you have to explain to your bosses and get them dissy about what you are doing.

Didn’t knew Java could be written using Rust, Go, C, C++, Assembly script. Boomer

Well I was thinking she did not mention unix pipes once ( StdIn, StdOut, StdErr) so back the the 1970s

java runtime has garbage collection & other abstractions. WebAssembly is a lower level runtime that is much closer to native assembly instructions.

2025: New, exciting extension for WASM: automatic garbage collection. Finally, we can write code without thinking about all that low level boomer stuff like allocating memory manually. But Java is so 1990s...

@@eventually-consistent Hey, thanks for comparing me to a Ballistic Missile Submarine! Like a Boomer, I also am a powerful strategic asset that fills the enemies of our nation with fear.