fenix
i-probably-didnt-backdoor-this
Our great sponsors
fenix | i-probably-didnt-backdoor-this | |
---|---|---|
19 | 5 | |
562 | 148 | |
7.1% | - | |
9.5 | 0.0 | |
about 18 hours ago | 8 months ago | |
Nix | Dockerfile | |
Mozilla Public License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
fenix
-
Use nix-shell or systemPackages
Rustup works as is. Though note that Nix supplants all such toolchain installers such as Rustup, nvm, etc. I.e. instead of Rustup there is fenix.
-
Can rustc generate identical binaries, with the same hash, from the same souce code?
Fenix ( https://github.com/nix-community/fenix ) has tooling or picking a specific toolchain or even nightly. You can then build with the following nix code:
- Fenix: Rust toolchains and rust-analyzer nightly for Nix
-
Annoucing fenix monthly, Rust toolchains updated 1st of every month
Fenix monthly is a new branch similar to the main branch, but only updated on the 1st of every month, for cases where you want to use rust nightly but don't need it to be updated very often.
- Fenix - Rust toolchains and rust-analyzer nightly for Nix
- Show HN: Fenix – Rust toolchains and Rust-analyzer nightly for Nix
-
Why this overlay doesn't work?
The issue should be fixed once the nix-vscode-extension and fenix patches are merged. The latter will happen automatically once CI passes.
-
Have a few questions about NixOS
4. I would suggest Mozilla's Rust overlay or fenix or similar instead of Rustup - that would be more of the "Nix-way" to acquire the toolchain and you can still manage multiple versions. Not sure what the Ruby equivalent is, I don't do Ruby.
-
Oops, I Did It Again...I Made A Rust Web API And It Was Not That Difficult
To follow along, you'll need a stable Rust toolchain. See the install page for instructions to install rustup for your platform. You should prefer this method to your distribution's package manager. If you're a NixOS freak, I recommend fenix.
- Fenix: rust toolchains for all channels and rust-analyzer nightly
i-probably-didnt-backdoor-this
-
Can rustc generate identical binaries, with the same hash, from the same souce code?
It's well explored for Linux (I wrote documentation for this in the past: https://github.com/kpcyrd/i-probably-didnt-backdoor-this)
- I-probably-didnt-backdoor-this – experiment on supply-chain security
- A practical experiment on supply-chain security using reproducible builds
- Using Reproducible Builds to reproduce 3rd party packages
- i-probably-didnt-backdoor-this: Using Reproducible Builds to verify a Rust Binary
What are some alternatives?
rust-overlay - Pure and reproducible nix overlay of binary distributed rust toolchains
nginx-waf - Nginx + ModSecurity WAF
nixos-flake-example - This is a demo NixOS config, with optional flakes support. Along with notes on why flakes is useful and worth adopting.
docker-bloodhound - BloodHound Docker Ready to Use
Nightlies - Nightly builds for DuckieTV
platform_external_vanadium - Vanadium integration for GrapheneOS. See https://github.com/GrapheneOS/Vanadium for the Vanadium build configuration and patches.
anyhow - Flexible concrete Error type built on std::error::Error
openvas-docker - A Docker container for Openvas
nixpkgs - Nix Packages collection & NixOS
in-toto - in-toto is a framework to protect supply chain integrity.
nix-cargo-integration - Library to easily and effortlessly integrate Cargo projects with Nix.
gokart-action - Integrate GoKart security static analysis to GitHub Actions