Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://hachyderm.io/users/inthehands/statuses/111242494370349985">Paul Cantrell (inthehands@hachyderm.io)'s status on Monday, 16-Oct-2023 12:09:21 JST</a><a href="https://hachyderm.io/@inthehands" title="inthehands@hachyderm.io"><img src="https://gnusocial.jp/avatar/53259-48-20231130154634.webp" width="48" height="48" alt="Paul Cantrell" style="position: absolute; left: 0; top: 0;">Paul Cantrell</a><div><a href="https://hci.social/@chrisamaphone/111242436786813026" rel="in-reply-to">in reply to</a><ul><li><li><a href="https://gnusocial.jp/user/89261" title="airspeedswift@mastodon.social">Ben Cohen</a></li></ul></div></section><article><p><a href="https://hci.social/@chrisamaphone">@chrisamaphone</a> <a href="https://mastodon.social/@airspeedswift">@airspeedswift</a> <br>Yes, in C/C++, which still accounts for a •substantial• portion of new code written, and of code in production, and of critical vulnerabilities.</p><p>The C++ world in particular has been in turmoil in recent years over the battle between “just don’t write bugs” vs “mitigate with better tooling” vs “C/C++ are the cigarettes of p-langs.” This in particularly set the cat amongst the pigeons:</p><p><a href="https://media.defense.gov/2022/Nov/10/2003112742/-1/-1/0/CSI_SOFTWARE_MEMORY_SAFETY.PDF" rel="nofollow noreferrer">https://media.defense.gov/2022/Nov/10/2003112742/-1/-1/0/CSI_SOFTWARE_MEMORY_SAFETY.PDF</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/2191188#notice-4305150">In conversation</a><time datetime="2023-10-16T12:09:21+09:00" title="Monday, 16-Oct-2023 12:09:21 JST">Monday, 16-Oct-2023 12:09:21 JST</time> <span>from <span><a href="https://hachyderm.io/@inthehands/111242494370349985" rel="external" title="Sent from hachyderm.io via ActivityPub">hachyderm.io</a></span></span><a href="https://hachyderm.io/@inthehands/111242494370349985">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
Paul Cantrell (inthehands@hachyderm.io)'s status on Monday, 16-Oct-2023 12:09:21 JSTPaul Cantrell
in reply to
- chris martens
- Ben Cohen
@chrisamaphone @airspeedswift
Yes, in C/C++, which still accounts for a •substantial• portion of new code written, and of code in production, and of critical vulnerabilities.
The C++ world in particular has been in turmoil in recent years over the battle between “just don’t write bugs” vs “mitigate with better tooling” vs “C/C++ are the cigarettes of p-langs.” This in particularly set the cat amongst the pigeons:
https://media.defense.gov/2022/Nov/10/2003112742/-1/-1/0/CSI_SOFTWARE_MEMORY_SAFETY.PDF
In conversationMonday, 16-Oct-2023 12:09:21 JST from hachyderm.iopermalink

Public

Embed Notice

HTML Code

Corresponding Notice