i-probably-didnt-backdoor-this
fenix
i-probably-didnt-backdoor-this | fenix | |
---|---|---|
5 | 19 | |
148 | 574 | |
- | 5.6% | |
0.0 | 9.5 | |
9 months ago | 4 days ago | |
Dockerfile | Nix | |
Apache License 2.0 | Mozilla Public License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
i-probably-didnt-backdoor-this
-
Can rustc generate identical binaries, with the same hash, from the same souce code?
It's well explored for Linux (I wrote documentation for this in the past: https://github.com/kpcyrd/i-probably-didnt-backdoor-this)
- I-probably-didnt-backdoor-this – experiment on supply-chain security
- A practical experiment on supply-chain security using reproducible builds
- Using Reproducible Builds to reproduce 3rd party packages
- i-probably-didnt-backdoor-this: Using Reproducible Builds to verify a Rust Binary
fenix
-
Use nix-shell or systemPackages
Rustup works as is. Though note that Nix supplants all such toolchain installers such as Rustup, nvm, etc. I.e. instead of Rustup there is fenix.
-
Can rustc generate identical binaries, with the same hash, from the same souce code?
Fenix ( https://github.com/nix-community/fenix ) has tooling or picking a specific toolchain or even nightly. You can then build with the following nix code:
- Fenix: Rust toolchains and rust-analyzer nightly for Nix
-
Annoucing fenix monthly, Rust toolchains updated 1st of every month
Fenix monthly is a new branch similar to the main branch, but only updated on the 1st of every month, for cases where you want to use rust nightly but don't need it to be updated very often.
- Fenix - Rust toolchains and rust-analyzer nightly for Nix
- Show HN: Fenix – Rust toolchains and Rust-analyzer nightly for Nix
-
Why this overlay doesn't work?
The issue should be fixed once the nix-vscode-extension and fenix patches are merged. The latter will happen automatically once CI passes.
-
Have a few questions about NixOS
4. I would suggest Mozilla's Rust overlay or fenix or similar instead of Rustup - that would be more of the "Nix-way" to acquire the toolchain and you can still manage multiple versions. Not sure what the Ruby equivalent is, I don't do Ruby.
-
Oops, I Did It Again...I Made A Rust Web API And It Was Not That Difficult
To follow along, you'll need a stable Rust toolchain. See the install page for instructions to install rustup for your platform. You should prefer this method to your distribution's package manager. If you're a NixOS freak, I recommend fenix.
- Fenix: rust toolchains for all channels and rust-analyzer nightly
What are some alternatives?
nginx-waf - Nginx + ModSecurity WAF
rust-overlay - Pure and reproducible nix overlay of binary distributed rust toolchains
docker-bloodhound - BloodHound Docker Ready to Use
nixos-flake-example - This is a demo NixOS config, with optional flakes support. Along with notes on why flakes is useful and worth adopting.
platform_external_vanadium - Vanadium integration for GrapheneOS. See https://github.com/GrapheneOS/Vanadium for the Vanadium build configuration and patches.
Nightlies - Nightly builds for DuckieTV
openvas-docker - A Docker container for Openvas
anyhow - Flexible concrete Error type built on std::error::Error
in-toto - in-toto is a framework to protect supply chain integrity.
nixpkgs - Nix Packages collection & NixOS
gokart-action - Integrate GoKart security static analysis to GitHub Actions
nix-cargo-integration - Library to easily and effortlessly integrate Cargo projects with Nix.