Hello collectible Coca Cola! (ps. Do not collect Coca Cola. I bought many cans of original Coca Cola right before the "New Coke" thing, stuck them in a closet, and very shortly after that they ate holes in the cans and spilled over everything in the closet. There's probably still Coca Cola in my childhood closet.) #cocacola #lock #rust

Alt...

Coca Cola bottle with faded label, canning jar, with a ding in the lip, making it useless for canning, and a rusty lock.

Oops, forgot about this lock! Two weeks in acid did not improve things. #rust

Alt...

Lock encrusted with green stuff

Alt...

Same lock with wet green stuff after rinsing

Hi infosec exchange. I guess I live here now.

If you're interested in what I'm up to, I'm on the NixOS steering committee, which takes up most of my freetime, along with other open source projects, most notibly being the primary maintainer of eza.

I work in healthtech, specifically using computer vision to reduce hospital/surgery waitlists in a way that doesn't just try to squeeze the people that work there, but actually give them the support they need. I work with doctors as well, so it's not like we're just causing them trouble, it's very cool.

I just wrote a blog post about why I think calling some large language models "open source" is kind of marketing spin, if you wonder what I think of that, here is a link:

https://point.free/blog/open-weights-not-open-source/

I'm a big fan of stuff like #rust, #elixir, #nixos. You've probably seen me around before here. Hi again. o/

#introduction

Fearless Concurrency on the GPU

#CUDA #Rust #Performance

https://hgpu.org/?p=30880

Build your project Zig-style via @caleb https://lobste.rs/s/a1nops #rust #zig
https://fnordig.de/2026/06/16/build-your-project-zig-style/

How memory safety CVEs differ between Rust and C/C++

>> In Rust, any memory safety bug triggerable from safe code is a library soundness CVE. In C/C++, it's usually "your fault" for misusing the API. CVE counts mislead.

#rustlang #rust

Alt...

Image: How memory safety CVEs differ between Rust and C/C++ >> In Rust, any memory safety bug triggerable from safe code is a library soundness CVE. In C/C++, it's usually "your fault" for misusing the API. CVE counts mislead. #rustlang #rust

Fearless Embedded Rust: Driving a Lego Car with a Pico W https://lobste.rs/s/suw9dp #rust
https://dystroy.org/blog/picomobile/

Abbaye is a Static Site Generator (#SSG) for your #software releases, for those of us who can't or won't use a full-featured software forge.

This release simply fixes some minor issues and introduces #git branch/tag inclusion/exclusion when building the browsable repository as well as the https-cloneable one.

I had some work-in-progress branches on another project and wanted to publish a release for a small fix, and i saw that my work branches were still there, so… there you have it.

This release also includes an #AUR package but shhhhh! it's not 100% ready yet :D

Anyway, enjoy this release with abbaye self-update!

Here's Abbaye's 0.7.1 page, as built with Abbaye itself: https://vit.am/~ololduck/abbaye/0.7.1/

For the next release, i plan to add artifact categories so we can present artifacts in a more structured way. If you look at the "downloads" section, you'll see it's starting to be a bit crowded and unclear what does what.

#Rust #SmallWeb #Rustlang #StaticSiteGenerator

JUST IN: A native Rust rewrite of RivetKit

>> Rivet 2.3 rewrites its core runtime (RivetKit) in native Rust for better performance, adds a sleek new dashboard, and introduces fine-grained actor lifecycle controls.

#rustlang #rust

Alt...

Image: JUST IN: A native Rust rewrite of RivetKit >> Rivet 2.3 rewrites its core runtime (RivetKit) in native Rust for better performance, adds a sleek new dashboard, and introduces fine-grained actor lifecycle controls. #rustlang #rust

Bit of honesty. As a rehabilitating software engineer the last 5 years have been rough since I first became ill during the pandemic. Was limping along with odd freelance jobs here and there, just enough to pay the bills, but these have dried up.

Need to start promoting myself again and #GetFediHired. Ideally freelance work as this gives me the time flexibility I need but will also consider full-time if something comes along.

Link to my blog: https://chrisdell.info/

#TypeScript #Rust #Embedded

zlib-rs in Firefox https://lobste.rs/s/erc2po #browsers #release #rust
https://trifectatech.org/blog/zlib-rs-in-firefox/

Async Task Locals From Scratch by @PolyWolf https://lobste.rs/s/0i8vld #rust
https://wolfgirl.dev/blog/2026-06-16-async-task-locals-from-scratch/

🔗 Rust Tutorial For PHP and JavaScript Developers
https://youtu.be/lJdqrDFswns?si=xs8_bE4e1JwIsZHu
#php #javascript #rust #tutorial

How memory safety CVEs differ between Rust and C/C++ https://lobste.rs/s/tmeqrk #c #rust
https://kobzol.github.io/rust/2026/06/15/how-memory-safety-cves-differ-between-rust-and-c-cpp.html

Deno merged a major port of console/inspect from JS to Rust, slashing 01_console.js by 83%, shrinking the snapshot, and keeping output identical.

#rustlang #rust

Alt...

Image: Deno merged a major port of console/inspect from JS to Rust, slashing 01_console.js by 83%, shrinking the snapshot, and keeping output identical. #rustlang #rust

Symbolica: high-performance computer algebra library for Python and Rust https://lobste.rs/s/lglu8f #python #rust
https://github.com/symbolica-dev/symbolica

夜明け　Світанок明けぬはずの夜が明けた
Мої очі починають горіти

https://www.pixiv.net/novel/show.php?id=26322958

<>

#night #never #supposed #finally #sunlight #like #lethal #weapon #pierce #mercilessly #sharply #eyeballs #hurt #death #everywhere #desolate #scorched #desert #countless #kind #scattered #with #smell #burn #rust #dawn #illuminate #disaster

Happy to announce another confirmed talk for the #FPIndia #Bangalore June #meetup!

Srijan will talk about Formalising #MachineLearning for Functional Languages!

https://hasgeek.com/fpindia/bangalore-fp-june-2026-meetup/

#Haskell #PureScript #Typescript #Rust #Erlang #Scala #OCaml #FormalMethods #AI

Apropos of nothing, some crate stats from crates.io:

• ~10% of published crate versions include a build script.
• ~4% of published crate versions declare a proc macro.
• ~23% of published crate versions have one or more unsafe {} blocks.

#Rust

I'm thinking of writing a rust script to create an anki deck given a video file and a subtitle track.

One thing I'm not sure I should do, is how do I get a snapshot from a video file?

Does anyone know a good way to do this?

The script will go through all the timestamps in the provided subtitle file and take screenshots.

#tech #techsupport #SoftwareDev #rust

4 years, 65 versions, and now iroh 1.0. Here's to the next chapter and stability: a wire protocol you can depend on, with plenty of incremental features on the roadmap.

Dial keys, stay connected.

https://www.iroh.computer/blog/v1

#p2p #iroh #networking
#rust
#python #nodejs #kotlin #swift

yserver is a modern X11 server written from scratch in Rust, and designed to run full Linux desktops while dropping Xorg’s legacy baggage.

#rustlang #rust

does anybody know #rust in #copenhagen ? I want to make a suite of Arcium programs. It uses ZK and they develop tools to prove any sort of anon computation. There are primitives to learn and 4-8 programs to build. With react frontend or even rust -> wasm with browser and desktop app. it could raise capital when MVP ready. message/reply for info

RE: https://expressional.social/@alexdp/116755408131425625

does anybody know #rust in #copenhagen #nordics #europe ? I want to make a suite of Arcium programs. It uses zero-knowledge proofs (#cryptography) and they develop tools to prove any sort of anon computation. There are primitives to learn and 4-8 programs to build. With react frontend or even rust -> wasm with browser and desktop app. it could raise capital when MVP ready. message/reply for info

OptinMonster supply chain attack hits 1.2 million sites

An active supply-chain attack targeted over 1.2 million WordPress sites using OptinMonster, TrustPulse, and PushEngage plugins operated by Awesome Motive. Attackers injected malicious JavaScript into legitimate files served through Awesome Motive's CDN endpoints. The malware activates when a logged-in administrator accesses the site, creating backdoor admin accounts (developer_api1 and randomized dev_xxxxxx accounts) and installing a self-hiding PHP plugin. The backdoor provides unauthenticated code execution through a web shell and eval endpoint. Stolen credentials are exfiltrated to tidio.cc, a lookalike domain mimicking the legitimate tidio.com. The breach likely originated from compromised Awesome Motive servers or their BunnyNet CDN account. The campaign began in late April 2026 and remained active through mid-June, affecting OptinMonster (over 1 million installations), TrustPulse, and PushEngage users.

Pulse ID: 6a2ec0e674b2d14b332499fa
Pulse Link: https://otx.alienvault.com/pulse/6a2ec0e674b2d14b332499fa
Pulse Author: AlienVault
Created: 2026-06-14 14:55:34

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#BackDoor #CDN #CyberSecurity #ELF #Endpoint #InfoSec #Java #JavaScript #Malware #Mimic #OTX #OpenThreatExchange #PHP #RAT #RDP #Rust #SupplyChain #Word #Wordpress #bot #AlienVault

My RustWeek 2026 talk is now up on YouTube! In case you didn't get to see it IRL (and didn't catch it on the livestream), you can enjoy it at https://www.youtube.com/watch?v=SWRL4JpaR2I. I had so much fun and I'm so grateful I got to gush about absurd optimizations with so many people!

The code I'm demonstrating is published at https://codeberg.org/bal-e/oosi. I'm still working on publishing a version of the phonebook library with my final code, but I hope it will be up in a week. I'm not sure I'll have the time to publish a written version of the talk's contents, but ping me if you'd like that :)

#programming #rust #optimization #rustweek

Iroh 1.0 - Dial Keys, not IPs https://lobste.rs/s/cslljn #distributed #rust
https://www.iroh.computer/blog/v1

Comparison and Benchmarking of Rust Decimal Crates https://lobste.rs/s/odh8si #performance #rust
https://wubingzheng.github.io/en/Decimal-Crates-Comparison.html

Diplomat: Multi-language FFI for Rust Libraries https://lobste.rs/s/mgbtd6 #rust
http://manishearth.github.io/blog/2026/06/14/diplomat-multi-language-ffi-for-rust-libraries/

zinnia: a modular 64-bit Unix-like kernel written in Rust https://lobste.rs/s/0ichrt #osdev #programming #rust
https://zinnia-os.org/

FFI in Miri at 8000 segfaults per second https://lobste.rs/s/daehjf #video #compilers #rust
https://youtu.be/9X-ngiKo_Y0

repo-slopscore: Detecting AI/LLM contributions in git repositories via commit history analysis https://lobste.rs/s/7s8fwa #release #rust #vcs
https://slopscan.ava.pet/

I have yanked `time` v0.3.48 due to the ecosystem fallout.

I want to by clear that there without explicitly testing compatibility with various crates, this was impossible to detect with current tooling. `cargo semver-checks` doesn't show anything and my linting is already as strict as any crate I'm aware of.

Situations like this will continue arising until there is funding for tooling to detect this sort of breakage before it happens

#Rust #RustLang #programming #coding

Massive corporations are using `time`, yet only two provide any level of funding for me (one of which I would not consider "massive"). I'd be shocked if FAANG employees did not spend time unnecessarily today to handle the fallout from me releasing a new version.

If you work at a company that uses `time`, bring it up with management. Your company is spending far more on salaries to investigate this than it would cost to fund a proper solution.

#Rust #RustLang #programming #coding

There Is Life Before Main in Rust https://lobste.rs/s/rs1t8s #rust
https://grack.com/blog/2026/06/11/life-before-main/

merman: Mermaid.js, but headless, in Rust https://lobste.rs/s/qchywn #graphics #rust
https://github.com/Latias94/merman

hax: A Rust verification tool https://lobste.rs/s/rdbc5p #formalmethods #rust
https://github.com/cryspen/hax

Bootstrapping Rust Considered Harmful https://lobste.rs/s/pjpqxb #rant #rust
https://www.ntecs.de/blog/2026-02-01-bootstrapping-rust-considered-harmful

Elixir for a Bluesky DataPlane: the choice we didn't expect https://lobste.rs/s/2ljllm #elixir #rust
https://bitcrowd.dev/why-elixir-bluesky-dataplane

Mergeable Containers: Fixing Concurrent Child Creation https://lobste.rs/s/poqzfp #rust
https://loro.dev/blog/mergeable-containers

A line-by-line translation of the OCaml runtime from C to Rust https://lobste.rs/s/k85k6w #c #ml #rust #vibecoding
https://discuss.ocaml.org/t/a-line-by-line-translation-of-the-ocaml-runtime-from-c-to-rust/18247

The Open Source Flight Sim Manifesto https://lobste.rs/s/m8q1qy #show #games #rust
https://viccuad.me/blog/open-source-flight-sim-manifesto

Only Bounds https://lobste.rs/s/srq2wf #plt #rust
https://smallcultfollowing.com/babysteps/blog/2026/06/09/only-bounds/

Fewer False Alarms, Better Coding Flow in RustRover 2026.2
#RustLang #Rust #Rustrover #Falsepositives

https://blog.jetbrains.com/rust/2026/06/09/fewer-false-positives-rustrover/

Abbaye is a Static Site Generator (SSG) for your software releases, for those of us who can't or won't use a full-featured software forge.

Phew, this version has been in the works for a while, and I'm glad to finally release it.

The big highlight of this release is a brand new repository browser that allows you to look at the code of what you would (maybe) download. That's something that was missing compared to most other software release browsers.

You can now browse:

• The availables refs (branches, tags, etc.) of the repository;
• The git history of a given ref;
• Individual commits (with collapsible diffs !);
• The code of a given ref.

Note: The code browser is only generated for branch "tips" (i.e. the latest commit on the branch) and for tags (i.e. the latest commit on the tag).

All of this still as html files without any javascript.

And with the addition of the updater in the last release, all of this is a simple abbaye self-update away!

Here's Abbaye's 0.7.0 page, as built with Abbaye itself: https://vit.am/~ololduck/abbaye/0.7.0/

#Rust #SmallWeb #Rustlang #SSG

Alt...

A screenshot showing the main repository log page showing the commit history for Abbaye

Alt...

Detailed view (with diff!) of the release commit for abbaye v0.7.0

Alt...

"refs" view detailing the branches/tags of the repository

Alt...

Viewing a file (with syntax highlighting) in the integrated file browser

This Month in Redox - May 2026 - Redox - Your Next(Gen) OS https://lobste.rs/s/6ixkjy #osdev #rust
https://www.redox-os.org/news/this-month-260531/

How Other Link Checkers Do Recursion https://lobste.rs/s/scnbr6 #distributed #rust #web
https://endler.dev/2026/how-other-link-checkers-recurse/

Today I'm releasing niri v25.11 with long-awaited config includes, Alt-Tab, true maximize, custom modes, and a bunch of other improvements! Enjoy the release notes :)

https://github.com/YaLTeR/niri/releases/tag/v25.11

#niri #smithay #wayland #rust

After five months of (on and off) development, I'm glad to announce niri v26.04! It comes packed with features:

- window blur, of course, in all its variations
- mouse cursor in window screencasts
- screencast IPC
- optional includes
- IME users can finally rename files in nautilus
- Eee PC users can finally take screenshots

Enjoy the release notes: https://github.com/niri-wm/niri/releases/tag/v26.04

#niri #wayland #rust

Alt...

Screenshot showing blurred background behind a DankMaterialShell pop-out, Alacritty, and Nautilus sidebar.

How Josh helps Rust manage code across multiple repositories via @fanf https://lobste.rs/s/1egwny #rust #vcs
https://blog.rust-lang.org/inside-rust/2026/06/04/how-josh-helps-rust-manage-code-across-multiple-repositories/