I've been successful with getting incus running with this for sandboxing the opencode session. I plan on writing a blog post on it.