AWS Lambda MicroVMs: VM-level isolation for user and AI-generated code, with suspend/resume up to 8 hours

AWS announced Lambda MicroVMs, a new serverless compute primitive that provides VM-level isolation for executing user or AI-generated code. It's built on Firecracker, the same virtualization technology that powers over 15 trillion monthly Lambda Function invocations. The key value proposition: you no longer have to choose between isolation, launch speed, and state retention.

Key features

• VM-level isolation per user or per job — each gets their own MicroVM, limiting blast radius from malicious or buggy code.
• Near-instant launch and resume speeds via Firecracker microVMs.
• State preservation — you can suspend and resume execution for up to 8 hours.
• HTTPS URL per MicroVM supporting HTTP/2, gRPC, and WebSockets.

How to get started

Create a MicroVM image from your Dockerfile, then launch MicroVMs from that image. Each MicroVM gets a dedicated HTTPS URL for connectivity.

Use cases

Multi-tenant applications that execute code supplied by end users or AI: interactive coding environments, data analytics platforms, coding assistants, vulnerability scanning platforms.

Pricing

You pay for baseline compute resources while your MicroVM is running, and only for the active duration of additional resources consumed when your workload exceeds the baseline.

Availability

Available June 22, 2026 in US East (N. Virginia), US East (Ohio), US West (Oregon), Asia Pacific (Tokyo), and Europe (Ireland). Accessible via AWS Lambda console, AWS CloudFormation, AWS Cloud Development Kit, or the Agent Toolkit for AWS.