Meet container: Apple’s Open-Source Swift Tool for Running Linux Containers as Lightweight VMs on Apple Silicon

Apple analysis group not too long ago launched the container project. It is an open-source command-line instrument written in Swift. It creates and runs Linux containers as light-weight digital machines on a Mac. The mission ships below the Apache 2.0 license and targets Apple silicon.

Containers are the way you ship reproducible environments from a laptop computer to a datacenter. Apple now provides a local path that avoids a single always-on Linux VM.

What is Apple’s container ?

container is a CLI instrument that can be utilized to construct photographs, run containers, and transfer photographs to and from registries. It consumes and produces OCI-compatible container photographs. So you possibly can pull from Docker Hub or GitHub Container Registry and run these photographs. You can even push photographs you construct to any commonplace registry.

container makes use of the open-source Containerization Swift package deal. That package deal handles low-level container, picture, and course of administration. The instrument requires a Mac with Apple silicon. Intel Macs are usually not supported. Apple helps container on macOS 26, which provides virtualization and networking enhancements. You can run it on macOS 15, however with networking limitations.

How container Runs Your Containers

Most macOS container instruments run one shared Linux VM that hosts each container. Apple takes a unique path. container runs a separate light-weight VM for every container you create. Apple describes three properties of this design:

• Security: Each container has the isolation of a full VM. A minimal set of core utilities and dynamic libraries reduces useful resource use and assault floor.
• Privacy: You mount solely the information every VM wants, as an alternative of sharing every little thing.
• Performance: These containers use much less reminiscence than full VMs. Boot occasions are similar to containers in a shared VM.

The runtime integrates a number of macOS frameworks. It makes use of the Virtualization framework for the VMs, and the vmnet framework for networking. It makes use of XPC for interprocess communication, launchd for service administration, and Keychain companies for registry credentials.

The management airplane has just a few shifting elements. container system begin launches container-apiserver, a launch agent. The apiserver then begins an XPC helper container-core-images for picture administration and the native content material retailer. It additionally begins container-network-vmnet for the digital community. For every container, it launches container-runtime-linux, the per-container administration helper.

Interactive Explainer