Google has debuted the GKE Agent Sandbox, providing kernel-level isolation for AI agent code using gVisor technology. The company also introduced a hypercluster capability that allows a single control plane to manage up to one million accelerator chips across thousands of nodes.