From a single pod to per-user runtimes

Why a multi-tenant worker pool was the wrong abstraction the moment users brought their own MCP servers.

Amy TeamMarch 3, 20261 min read

A multi-tenant worker pool is the obvious shape until users bring their own code. Once a customer can install an MCP server, "shared pool" stops meaning "efficient" and starts meaning "your blast radius is everyone."

We moved to per-user Fly machines for any run that touches user-supplied tools. Cold start is 800ms p50, which we hide behind the planning phase. The accounting got simpler too: a machine's lifetime is the run, so there's no garbage-collecting pods that almost-but-not-quite finished.

More in Amy Engineering

View all →

Amy Engineering

How is Amy's credit system

How we ship a credit-based ledger that survives partial failures, refunds, and webhook re-deliveries — without losing a single cent.

Henry NgApril 22, 20263 min read

Amy Engineering

How we sandbox untrusted browser tools

Running an agent's browser actions next to production data is a footgun. Here's the isolation model we landed on.

Amy TeamApril 7, 20261 min read

Amy Engineering

Observability for long-running agent runs

Traces work great until your span outlives your trace exporter. Notes from instrumenting eight-hour agent jobs.

Amy TeamMarch 31, 20261 min read