lazarus
Lazarus - an IDE and GUI toolkit for use with Free Pascal. This is an unofficial mirror of the Lazarus SubVersion repository and is for convenience use only. It is synced every 15 minutes. For submitting patches or bug reports, go to http://bugs.freepascal.org (by graemeg)
security
Embargoed security issues that will be made public after a fix is made available. Use https://github.com/nim-lang/security/security (by nim-lang)
| lazarus | security | |
|---|---|---|
| 1 | 2 | |
| 355 | 4 | |
| - | - | |
| 9.9 | 0.0 | |
| almost 3 years ago | about 3 years ago | |
| Pascal | ||
| GNU General Public License v3.0 or later | - |
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
lazarus
Posts with mentions or reviews of lazarus.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2021-05-24.
-
Fixated on end-user security, FOSS developers neglect their own...
I can't trust language package managers either, especially non-mainstream ones... Nim package manager used to not validate secure connections by default until very recently. Lazarus doesn't even use a secure protocol (uses http://, not https://). Chicken Scheme doesn't either. It's time for a new mantra "don't roll your own software downloaders" to complement "don't roll your own crypto"...
security
Posts with mentions or reviews of security.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2021-05-24.
-
Fixated on end-user security, FOSS developers neglect their own...
I can't trust language package managers either, especially non-mainstream ones... Nim package manager used to not validate secure connections by default until very recently. Lazarus doesn't even use a secure protocol (uses http://, not https://). Chicken Scheme doesn't either. It's time for a new mantra "don't roll your own software downloaders" to complement "don't roll your own crypto"...
-
Could this plan to save free CIs from crypto miners work? It would also improve open-source security in general.
Because despite all the talk about "SuPpLy ChAiN aTtAcKs" people still do things like intentionally not verifying HTTPS certificates... I swear, we should just start saying "don't roll your own software downloader" as often as we say "don't roll your own crypto", and leave writing software downloaders to security professionals...
What are some alternatives?
When comparing lazarus and security you can also consider the following projects:
bad_actor_poc
Elm - Compiler for Elm, a functional language for reliable webapps.