Tangential, but are there any easy ways to run server applications on bare metal in a way that removes the need for an underlying OS in order to decreases the overall attack surface an attacker can look for exploits in? (Mainly talking about applications written in Go(TinyGo), Rust, and C++ that can be easily compiled to run on bare metal)
From what I gather a unikernel is what you are searching for. Many exists
- https://github.com/unikraft/unikraft
- https://github.com/hermitcore/rusty-hermit
are the one that comes to my quick search.