Claude Bot 8bfe2c8015 Implement container option for Bun.spawn with ephemeral cgroupv2 and rootless namespaces ...

This adds Linux-only container support to Bun.spawn allowing process isolation
through cgroupv2, user namespaces, PID namespaces, network namespaces, and
optional overlayfs.

Features:
- Ephemeral cgroupv2 creation with memory and CPU limits
- Rootless user namespace support with UID/GID mapping
- PID namespace isolation
- Network namespace isolation with loopback setup
- Optional overlayfs filesystem isolation
- Proper cleanup and resource management
- Comprehensive error handling
- Linux-only conditional compilation

JavaScript API:
```js
spawn({
  cmd: ["echo", "hello"],
  container: {
    cgroup: true,
    userNamespace: true,
    pidNamespace: true,
    networkNamespace: true,
    memoryLimit: 128 * 1024 * 1024,
    cpuLimit: 50,
    overlayfs: { ... }
  }
})
```

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <noreply@anthropic.com>

2025-08-25 13:41:10 +00:00

..

analysis

ci: run clang-format on .h files too (#14597)

2024-10-15 16:54:49 -07:00

scripts

[publish images] Upgrade self-reported Node.js version from 22.6.0 to 24.3.0 (v2) (#20772)

2025-07-02 12:06:08 -07:00

sources

Implement container option for Bun.spawn with ephemeral cgroupv2 and rootless namespaces

2025-08-25 13:41:10 +00:00

targets

Add Windows code signing setup for x64 builds (#22022)

2025-08-22 03:53:57 -07:00

toolchains

ci: musl builds (#15154)

2024-11-15 21:01:55 -08:00

tools

Bump WebKit (#22072)

2025-08-23 00:31:53 -07:00

CompilerFlags.cmake

Compress debug symbols in debug builds

2025-05-19 03:47:07 -07:00

Globals.cmake

cmake: do not accept too-new LLVM versions (#20955)

2025-07-10 18:20:51 -07:00

Options.cmake

Add Windows code signing setup for x64 builds (#22022)

2025-08-22 03:53:57 -07:00

Policies.cmake

Reapply "Convert build scripts to CMake (#13427)"

2024-09-11 08:24:50 -07:00

Sources.json

add HTTPParser (#20049)

2025-05-31 16:21:08 -07:00