Cyber Security news and links to cyber security stories that could make you go hmmm. The content is exactly as it is consumed through RSS feeds and wont be edited (except for the occasional encoding errors).
This community is automagically fed by an instance of Dittybopper.
Rust from this sounds like npm or any other similar system. You end up with dependencies that have dependencies and so on. A project can quickly end up with massive amount of code that is unauditable and probably not used.
The best you can do is be careful when changing versions and, more importantly, only use external dependencies that you actually trust and need.
If a crate only takes 35 lines to reproduce. Why is the author worried that it is unmaintained?
That crate is probably done, it does what it needs to do. And at 35 lines there's not a lot of room for bugs.
Just use the crate instead of rewriting the same 35 lines for each project that needs them.
Or publish your own 35 line crate as an alternative. Then you can use your 35 lines instead of that guy's 35 lines.
I don't understand the LoC bit. First he says the project+dependencies is 3.6MLoC. then says that the Linux kernel is 27.8MLoC, then says his project is 7. 7 what? 7%? That's not right. 7MLoC? I thought it was 3.6MLoC.
great blog, too bad no rss or atom feed, at least not one I could find, what is wrong with providing an rss or atom feed? are people just lazy? do they just dont know about these wonderful standards?