An interesting blog post by @bagder@mastodon.social about security in curl

  • robinm@programming.dev
    link
    fedilink
    arrow-up
    6
    ·
    edit-2
    11 months ago

    That’s a very, very good read on how to make a very complex C project safer in practice. To sum-up: make it possible to introduce new module in a memory safe language (Rust in this case), make it harder to write bugs in C since the C part is not going to disappear overnight, and use as much tooling as you can to find any existing or newly introduced bugs (both memory bugs a logique error).