Originally posted by kpedersen
View Post
Developed at the Georgia Institute of Technology, Rudra is a static analyzer able to report potential memory safety bugs in Rust programs. Rudra has been used to scan the entire Rust package registry and identified 264 new memory safety bugs.
CVEs (Common Vulnerabilities and Exposures) in Rust programs:
Weasel
"If I programmed in Rust, would I need a sound static analyzer?
Yes, the advantages of a sound static analyzer are needed for reasons that are similar to those in the C or C++ case. A C++ borrow checker (or a Rust one) does not bring the aforementioned advantages."
Comment