“Rust has a HUGE supply chain security problem”
https://kerkour.com/rust-supply-chain-security-standard-library
> any of these dependencies can compromise not only the final program, but also the developers' workstations, Continuous Integration systems and more.
It really does look like it's only a matter of time until this gets exploited
Baldur Bjarnason /
npub1z8…7xck7
2024-07-02 10:10:09
Author Public Key
npub1z8u5kqzzndfhjuhpuj6gtry6ggnrs2tpaavetcah0leqh7fgn8fs27xck7Published at
2024-07-02 10:10:09Event JSON
{
"id": "2201fcc845718b922b14535e3968a603f74b4f50c87459c4244073202344217a",
"pubkey": "11f94b00429b537972e1e4b4858c9a4226382961ef5995e3b77ff20bf92899d3",
"created_at": 1719915009,
"kind": 1,
"tags": [
[
"proxy",
"https://toot.cafe/users/baldur/statuses/112716350069806515",
"activitypub"
]
],
"content": "“Rust has a HUGE supply chain security problem”\n\nhttps://kerkour.com/rust-supply-chain-security-standard-library\n\n\u003e any of these dependencies can compromise not only the final program, but also the developers' workstations, Continuous Integration systems and more.\n\nIt really does look like it's only a matter of time until this gets exploited",
"sig": "f39031b74c41715b654d3c398b6be3f82c2ebe5d251211ff484f811f81aab470a103ba93d2d14a0c0c08a8d1c8cb04774592e73026230bbd955d3e878a734306"
}