npm - bulkhead-runtime - Versions diffs - 2026.4.5-beta.7 → 2026.4.5-beta.8 - Mend

bulkhead-runtime 2026.4.5-beta.7 → 2026.4.5-beta.8

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/README.md CHANGED Viewed

@@ -49,6 +49,8 @@ const result = await workspace.run({
 ## Use Cases
+![Use Cases](docs/assets/use-cases.png)
 ### SaaS -- one agent per customer
 Customer A's agent can never see Customer B's tokens, data, or conversation history.
@@ -95,6 +97,8 @@ await platform.deleteWorkspace(ws.userId);
 ## How It Works
+![Architecture](docs/assets/architecture.png)
 When `workspace.run()` executes, Bulkhead spawns a **child process** with 5 layers of kernel isolation: user namespace, PID namespace, mount namespace (pivot_root), optional network namespace, and cgroups v2 resource limits. The agent **never runs in your application's process** and **cannot see anything outside its sandbox**.
 > **[Read the full isolation architecture &rarr;](docs/isolation.md)**

package/dist/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "bulkhead-runtime",
-  "version": "2026.4.5-beta.7",
+  "version": "2026.4.5-beta.8",
   "description": "Multi-tenant AI agent runtime with OS-level isolation. Sandboxed execution, encrypted credentials, private memory per tenant — one server, no Docker.",
   "license": "MIT",
   "repository": {

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "bulkhead-runtime",
-  "version": "2026.4.5-beta.7",
+  "version": "2026.4.5-beta.8",
   "description": "Multi-tenant AI agent runtime with OS-level isolation. Sandboxed execution, encrypted credentials, private memory per tenant — one server, no Docker.",
   "license": "MIT",
   "repository": {