A rootless, daemonless, low level container runtime for Linux written in Rust that aims to be compliant with the OCI Runtime Spec. Similar to Youki, runC, and crun.
https://github.com/homebrew-ec-foss/bento.rs
Yes, the container runtime and all the containers it spawns runs without host root privileges.
Pros - Reduced attack surface, runtime vulnerabilities will not result in host root access, optimal for multi tenant scenarios.
Cons - User space overhead, especially in networking, complexity in capabilities, device nodes, cgroup management
No long running background daemon process to spawn and manage containers.
Pros - Simple, efficient, secure
Cons - No supervision / auto restarts, cold starts may be slower
https://blog.quarkslab.com/digging-into-runtimes-runc.html
https://iximiuz.com/en/posts/oci-containers/
OCI Runtime Spec (the relevant parts)