Gabriele Svelto on Nostr: In the light of the #xz backdoor, if you're a #RustLang developer, I recommend you ...
In the light of the #xz backdoor, if you're a #RustLang developer, I recommend you familiarize yourself with cargo vet:
https://mozilla.github.io/cargo-vet/
Auditing your dependencies, or relying on external audits, adds an important layer of protection.
It's not a silver bullet against bad dependencies as there's no such thing. However adding more layers of protection makes attackers' lives harder and this is one of them.
https://mozilla.github.io/cargo-vet/
Auditing your dependencies, or relying on external audits, adds an important layer of protection.
It's not a silver bullet against bad dependencies as there's no such thing. However adding more layers of protection makes attackers' lives harder and this is one of them.