Stream: wg-secure-code

Topic: static analysis tooling


Tony Arcieri (Jan 15 2019 at 17:06, on Zulip):

Every time I make a Zulip topic I'm always confused whether one exists :confused:

Tony Arcieri (Jan 15 2019 at 17:07, on Zulip):

anywho, guess we didn't have one for this?

Tony Arcieri (Jan 15 2019 at 17:07, on Zulip):

@Shnatsel oops I dup'd https://github.com/rust-secure-code/wg/issues/24

Shnatsel (Jan 15 2019 at 19:23, on Zulip):

Well, you did get a really great discussion going in the dup, so I'm just closing #24 and moving over to yours. Thanks for getting the ball rolling!

Shnatsel (Mar 20 2019 at 22:21, on Zulip):

Rust Tools Team has started a "Tell us your sorrows" thread, seeking feedback on missing pieces in Rust tooling.
https://internals.rust-lang.org/t/tools-team-tell-us-your-sorrows/9657

Shnatsel (Mar 20 2019 at 22:22, on Zulip):

I have already complained about non-functional MSAN, regressed state of ASAN, and lack of security update infrastructure.
There's probably something to add about static analysis, but I'm not sufficiently knowledgeable about that area to comment. We do have an issue on the bug tracker about it: https://github.com/rust-secure-code/wg/issues/22

Shnatsel (Mar 20 2019 at 22:27, on Zulip):

As well as missing Angora (https://github.com/rust-secure-code/wg/issues/17) which I will probably comment on once I have the time

DevQps (Mar 20 2019 at 22:29, on Zulip):

Thanks for providing the links! Interesting to read the discussion! I hope some kind of initiative will come out from this to maybe implement some of our idea's.

Last update: Nov 11 2019 at 22:10UTC