The claim here in your second part is valid.

> Adding backdoors to code by installing breached packages, abusing some access tokens to cause harm, and much more.

But it doesn’t mean stricter isolation (ie separate kernel space) is a bad thing. One less attack surface in other words. It’s 100% relevant and matters.

In a world where we're getting one local privilege escalation vulnerability a week, I think that VM isolation can still be a significant benefit.