Rust makes it easy to add dependencies to your project: edit your
Cargo.toml(or usecargo addto have it changed for you from the command line), and you get to use the crate. But do you know what you’ve added to your project? Are you sure you can trust those lines of code?
Source: Comparing Rust supply chain safety tools, an article by Andre Bogus.
How to “do” enums is a common problem in Go, given that it doesn’t have “real” enums like other languages.
Source: Safer Enums, an article by Nate Finch.
In this article, we would like to dive a bit further into the latest major milestone we have reached: Win32k Lockdown, which greatly reduces the capabilities of the content process when running on Windows. Together with two major earlier efforts (Fission and RLBox) that shipped before, this completes a sequence of large leaps forward that will significantly improve Firefox’s security.
Source: Improved Process Isolation in Firefox 100, an article by Gian-Carlo Pascutto.