Software Ecologist, Architect, Modeler | Optimizer of Teams and Individuals | Domain-Driven Design and Systems Transformation
Well, you don't say. "CISA looked at C/C++ projects and found a lot of C/C++ code." Beyond the obvious, maybe you'll be happy with the pitch for Rust, which is obvious. *** Link in comment ***
C/C++ still has a place in the world. I really don't get their paranoia. It's a very powerful language for performance-critical applications, not easy to write but that's a fair trade-off for the performance you get. It's not for everyone, but not everyone was born to be an astronaut. Stretching a bit, Assembly is not memory-safe and I don't see anyone complaining about RyuJIT, HotSpot, V8, or LLVM. Maybe because that way is easier to embed a backdoor. =))
Am I the only one who feels pain when C and C++ are mentioned as if they were exchangeable?
I wonder what their stance is on the reference implementations and toolchains for all of these memory-safe languages, i.e. LLVM for Rust, CPython and derivatives (like Anaconda) for Python, OpenJDK and derivatives (like Zulu) for Java, etc
Software Ecologist, Architect, Modeler | Optimizer of Teams and Individuals | Domain-Driven Design and Systems Transformation
2wWhat a strange journal. https://www.theregister.com/AMP/2024/06/28/cisa_open_source/