TypeScript

Winsage
June 19, 2026
Microsoft has introduced the Microsoft Execution Containers (MXC) SDK to establish Windows as a reliable operating system for autonomous agents, focusing on containment, identity, and manageability. The MXC framework serves as a policy-driven execution layer for agents on Windows and Windows Subsystem for Linux (WSL), allowing developers to set access permissions using JSON or TypeScript. It employs process and session isolation for agent containment and identity. Future enhancements will include micro-VM support for high-risk tasks and integration with Windows 365 for cloud PC workloads. IT teams can manage MXC policies through Entra ID and Intune, while Defender and Purview provide protection and observability. The MXC framework is built on Microsoft's security initiatives, including Secure Boot and passwordless sign-in, allowing agents to inherit a secure foundation. However, early commentary expresses caution regarding MXC's perception as a comprehensive security solution, noting issues with overly permissive policies and the lack of outbound network filtering. Other platforms, such as Linux, are also enhancing security for agents with kernel-level isolation and secure environments like NVIDIA's OpenShell runtime. Various projects are focusing on agent sandboxes within Kubernetes, employing technologies like gVisor and Kata Containers for isolation. Overall, no singular dominant platform security model for AI agents has emerged, with Windows' MXC still considered nascent compared to existing solutions in Linux and Kubernetes ecosystems.
Tech Optimizer
May 3, 2026
On April 4, 2026, Earendil reported on Absurd, an execution system built solely on Postgres, which has been in production for five months and has received several updates. Recent developments include the introduction of Software Development Kits (SDKs) for TypeScript, Python, and an experimental Go SDK, as well as a command-line interface (CLI) called absurdctl and a Habitat dashboard for monitoring and management. Absurd's architecture is resilient, utilizing a checkpointed step model for durable agent workflows, but currently lacks features like partitioning and built-in push scheduling, focusing on reliability and simplicity.
Winsage
February 16, 2026
WinApps and WinBoat are two solutions for running Windows applications on Linux. WinApps, developed since 2020 by Ben Curtis, allows users to run a genuine copy of Windows in a virtual machine (VM) and export individual applications to the Linux desktop using Microsoft's Remote Desktop Protocol (RDP). It supports various methods, including Docker, Podman, and KVM virtualization, with KVM offering extensive customization but requiring a more complex setup. WinBoat, a newer application at version 0.9.0, simplifies the user experience by automating much of the setup process and requires only Docker and FreeRDP to be installed. WinBoat is designed for ease of use, making it accessible for users less comfortable with technical configurations. Both tools allow users to run Windows software that may not work well under WINE, but running a full Windows OS in a VM involves licensing, maintenance, and resource considerations.
Tech Optimizer
February 12, 2026
Constructive has launched a Postgres platform focused on security, implementing Row-Level Security (RLS) policies at table creation to prevent vulnerabilities from application-side configurations. The platform targets back-end development teams, particularly those using AI-assisted tools, and aims to enforce permissions and maintain data integrity directly at the database level. Constructive's open-source developer tools have surpassed 100 million downloads, including SQL parsers and migration systems. The platform allows teams to select access models and generates tables with embedded access rules, reducing the need for manual RLS configurations. It features a migration strategy ensuring reproducible security guarantees and validates RLS within CI/CD pipelines through automated checks. The serverless execution layer supports functions in multiple languages while adhering to the same permission model. Constructive's parsing technology is used in various Postgres-related platforms, and the company has filed provisional patents for its security compiler that transforms schemas into secure configurations. Constructive reports its tools are operational across over 10 million databases and is currently in a commercial private beta for enterprise teams.
Search