What is Nostr?
Gabriele Svelto /
npub18a9…u4at
2024-04-04 12:21:23

Gabriele Svelto on Nostr: In the light of the #xz backdoor, if you're a #RustLang developer, I recommend you ...

In the light of the #xz backdoor, if you're a #RustLang developer, I recommend you familiarize yourself with cargo vet:

https://mozilla.github.io/cargo-vet/

Auditing your dependencies, or relying on external audits, adds an important layer of protection.

It's not a silver bullet against bad dependencies as there's no such thing. However adding more layers of protection makes attackers' lives harder and this is one of them.
Author Public Key
npub18a9mwvktyhlwqznq7mw8v2c96g9sv69vv8wxgnu9gn82zqmmv3vqu9u4at