this post was submitted on 24 Aug 2023
64 points (93.2% liked)
Rust Programming
8191 readers
2 users here now
founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Another way to mitigate type squatting would be namespacing crates. Much easier to verify who owns the package and related packages
Doesn't really help: what if you typo the namespace instead? Same exact issue. Namespaces are useful for other things though, but not security.