> A proper compare is about hypervisor + part of the kernel it uses versus container code + full kernel
you are leaving out the separate kernel running in the VM, it can have it's own vulnerabilities.
I think it's debateable over which has the most code, but also which has the more tested code.
And while 'proper' and 'careful' selection of apps to share vulnerabilities with can minimize the interactions of those vulnerabilities, making such a selection is very hard, and is very likely to change over time as apps grow new features.
It's very clear that we disagree over which is worse, but I think the important thing is to recognize that there is not 'one true answer', and especially the fact that what was true at some point in the past may not still be true today (let alone tomorrow)