appsec.fyi

A somewhat curated list of links to various topics in application security.

Rust

LinkExcerpt
Why Rust mutexes look like they doComments are not a concurrency strategy. One of the common complaints I hear from systems programmers who try Rust is about mutexes, and specifically about the Rust Mutex API. The complaints usually go something like this:
Rust Software Security: A Current State AssessmentRust is a programming language that is growing in popularity. While its user base remains small, it is widely regarded as a cool language. According to the Stack Overflow Developer Survey 2022, Rust has been the most-loved language for seven straight years.
Async/AwaitIn this post, we explore cooperative multitasking and the async/await feature of Rust. We take a detailed look at how async/await works in Rust, including the design of the Future trait, the state machine transformation, and pinning.
A full featured, fast Command Line Argument Parser for RustIt is a simple-to-use, efficient, and full-featured library for parsing command line arguments and subcommands when writing console/terminal applications. Here's a gif of them in action!
RocketRocket is an async web framework for Rust with a focus on usability, security, extensibility, and speed. Visiting localhost:8000/hello/John/58, for example, will trigger the hello route resulting in the string Hello, 58 year old named John! being sent to the browser.