Nucleus

Containers & Orchestration

A minimalist, declarative container runtime for Linux that provides ultra‑lightweight, security‑hardened isolation using Nix and kernel primitives

Track releases GitHub

Rust Latest v0.3.3 · 2mo ago Security brief →

Features

Extremely low cold‑start overhead (≈12 ms) compared with Docker (~500 ms)
Declarative production deployment via NixOS module, TOML config, and reproducible Nix closures
Zero‑overhead isolation using cgroups, namespaces, seccomp, Landlock and optional gVisor kernel
Supports both ephemeral agent sandboxes and full‑featured networked services with health checks and systemd integration
Rich policy controls: per‑service seccomp JSON allowlists, capability TOML policies, Landlock rules with SHA‑256 pinning

Recent releases

View all 6 releases →

No releases yet

We'll surface new releases as they're published — check back soon.

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Releases

View all →

Releases per week

Apr 4

Apr 11

Apr 18

Apr 25

May 2

May 9

May 16

May 23

May 30

Jun 6

Jun 13

Cadence 0.5 / wk

Last release 69d

Tracked 6

Community

GitHub stars 86

Contributors 90d 1

Open issues 0

Open PRs 0

Stars/wk velocity 0.0

About

Stars

Forks

Languages

Rust TLA Nix

View on GitHub

Install & Platforms

Platforms

linux

Alternative to

Docker

Similar tools

Cortex

pathway