Cells for NetBSD: kernel-enforced, jail-like isolation (netbsd-cells.petermann-digital.de)

Cells for NetBSD is an early-stage NetBSD-native system that provides lightweight, kernel-enforced, jail-like isolation for running multiple workloads on one host. It adds hardening profiles, supervised service execution, volume-backed persistence with built-in backup/restore, and centralized logging/metrics, managed via a host-side control plane (cellmgr) with an optional TUI (cellui). The project is aiming to bridge the gap between chroot and full virtualization while emphasizing explicit operational boundaries, with pre-release ISOs available for evaluation.