XTP: Make Squishy Software

While I was at Cloudflare, I loved working on the Workers platform. Their decision to embed a programmable layer into the CDN has transformed the company into something far bigger.<p>This made me realize that every app should be extensible as deeply as possible - going beyond HTTP APIs and Webhooks.<p>Today, we&#x27;ve opened up our platform making it simple to bring next-generation extensibility to your application &amp; safely execute end-user code in-process.<p>I believe we&#x27;ve all faced the desire to run user code, and as modern products become increasingly engrained in our workflows and stacks, this desire is stronger than ever. XTP makes it safe and easy to do this leveraging the power of WebAssembly. On top of this secure core, XTP provides authorization, code uploading, testing, simulation &amp; validation, as well as easy to use SDKs to load and execute user code.<p>We&#x27;re excited to open up this platform in public beta &amp; are eager for your feedback!

Congrats, I do really like the idea and especially the slogan!<p>Would recommend to explain the following terms on the landing page more thorughly:<p>25 Members 5 Apps 300 Authorized Guests 25 Extension Points 3k simulation runs<p>I would guess Members would be employees from my company who have access configure XTP and Guests would be the number of customer logins? And simulation runs is also self explanatory after reading the article, but I can&#x27;t figure out what &quot;Extension Points&quot; and &quot;Apps&quot; could mean.<p>After looking further down the page I noticed that parts(?) of XTP are open source, now I&#x27;m more interested! How much does XTP differ from extism?

Reminds me of an idea: instead of having lots of orthogonal endpoints or using GraphQL, accept WASM modules as requests and provide the service as functions in the WASM environment.

Cool idea!<p>FWIW, when experimenting with stuff like that, I never had a good experience with WASM. It might be nice for “traditionally compiled” languages, but for stuff like JS or Python (which is what you’d usually like to expose to users, rather than C++) it’s not that great of an experience, and at least for JS the runtimes aren’t compatible with common JS runtimes.<p>What I think is a bunch more promising in this area is Deno[0], which is a fully sandboxed-by-default JavaScript runtime, and as of Deno 2.0 recently is also compatible with Node APIs.<p>Based on the logos on their Subhosting[1] product landing page, they even seem to have a couple major companies using it for this very purpose.<p>[0]: <a href="https:&#x2F;&#x2F;deno.com&#x2F;" rel="nofollow">https:&#x2F;&#x2F;deno.com&#x2F;</a><p>[1]: <a href="https:&#x2F;&#x2F;deno.com&#x2F;subhosting" rel="nofollow">https:&#x2F;&#x2F;deno.com&#x2F;subhosting</a>