Kubernetes’ RuntimeClass is a node-level resource that lets you specify which container runtime handles a Pod’s containers. By default, Kubernetes uses your cluster’s primary runtime (e.g. runc). With RuntimeClass you can opt particular Pods into alternative runtimes—such as gVisor or Kata Containers—that provide stronger isolation or specialized sandboxing. This tutorial walks through configuring two popular sandbox runtimes on containerd, defining RuntimeClass objects, and launching Pods with custom runtimes.