@release_candidate @mvilain @stefano
Sure, cgroups and namespaces are implementation details on Linux. But probably(*) the specification of a container doesn't require that those specific technologies are used. Docker/podman on a macintosh runs in a VM, and if I recall correctly, docker on NetBSD works similarly.
(*) I didn't look it up