Aria Desires on Nostr: this latest edition of "Android team posting nothing but Ws for adopting Rust" is ...
this latest edition of "Android team posting nothing but Ws for adopting Rust" is super important because it identifies that:
*you don't have to actually rewrite all your old unsafe C/C++ code to get the benefits of adopting safe languages, in terms of reducing vulnerabilites*
because they identify that most bugs are in new/changed code (with exponential decay!), so if you preferentially write new code in a safe language, your vulnerabilities crater even though most of your code is still unsafe!
https://security.googleblog.com/2024/09/eliminating-memory-safety-vulnerabilities-Android.html
*you don't have to actually rewrite all your old unsafe C/C++ code to get the benefits of adopting safe languages, in terms of reducing vulnerabilites*
because they identify that most bugs are in new/changed code (with exponential decay!), so if you preferentially write new code in a safe language, your vulnerabilities crater even though most of your code is still unsafe!
https://security.googleblog.com/2024/09/eliminating-memory-safety-vulnerabilities-Android.html