infer
sydent
infer | sydent | |
---|---|---|
42 | 710 | |
14,708 | 282 | |
0.3% | 1.8% | |
9.9 | 6.5 | |
5 days ago | 19 days ago | |
OCaml | Python | |
MIT License | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
infer
-
An Introduction to Temporal Logic (With Applications to Concurrency Problems)
I think most development occurs on problems that can't be formally modeled anyway. Most developers work on things like, "can you add this feature to the e-commerce site? And can the pop-up be blue?" which isn't really model-able.
But that's not to say that formal methods are useless! We can still prove some interesting aspects of programs -- for example, that every lock that gets acquired later gets released. I think tools like Infer[0] could become common in the coming years.
[0]: https://fbinfer.com/
- Should I Rust or should I Go
-
Enforcing Memory Safety?
Using infer, someone else exploited null-dereference checks to introduce simple affine types in C++. Cppcheck also checks for null-dereferences. Unfortunately, that approach means that borrow-counting references have a larger sizeof than non-borrow counting references, so optimizing the count away potentially changes the semantics of a program which introduces a whole new way of writing subtly wrong code.
-
Interesting ocaml mention in buck2 by fb
Meta/Facebook are long time OCaml users, their logo is on the OCaml website. Their static analysis tool and its predecessor are both written in OCaml.
-
CISA Director Easterly's comments about cyber security. Agree or disagree?
Then this idea that the US government will tell tech companies how to write secure software. Let's get this straight, the private sector, especially big tech is miles ahead of US government in this regard. Microsoft literally invented threat modelling and modern exploit mitigations. Facebook has the best appsec processes pretty much in the whole world, including their own cutting edge code analyzer. AWS uses formal verification everywhere. Meanwhile the US government itself runs mission-critical systems that's almost literally held together by bubble gum and toothpicks. Maybe they could dial down the arrogance a tad, get their own shit together, learn how this cyber stuff is actually done and only then try lecturing everyone else.
-
A plan for cybersecurity and grid safety
Efforts: Dependabot, CodeQL, Coverity, facebook's Infer tool, etc
-
A quick look at free C++ static analysis tools
I notice there isn't fbinfer. It's pretty cool, and is used for this library.
-
silly guy
"Move fast, break stuff" is a great approach when you aren't pushing the broken bits to production. Fuck, even Facebook, the big "move fast, break stuff" company, uses tools to detect errors in its continuous integration toolchain. https://fbinfer.com/
- OCaml 5.0 Multicore is out
-
Beyond Functional Programming: The Verse Programming Language (Epic Games' new language with Simon Peyton Jones)
TBH, there's a non-zero amount of non-"ivory tower" tools you may have used that are written in functional languages. Say, Pandoc or Shellcheck are written in Haskell; Infer and Flow are written in OCaml. RabbitMQ and Whatsapp are implemented in Erlang (FB Messenger was too, originally; they switched to the C++ servers later). Twitter backend is (or was, at least) written in Scala.
sydent
- Discord is nuking Nintendo Switch emulator devs and their entire servers
-
Qilin: A Starter Project Template For Every Open Source Project
GitHub Discussions can also be a great place for support as long as these are regularly monitored. Another option along the same lines is Discourse and the Open Source Matrix which is used by quite a few Open Source and community-based projects.
-
A man has been swatted 47 times for making a joke about Norm Macdonald
Tangential: the article notes that Telegram is an “encrypted messaging app”. While this is technically true, it's worth keeping in mind that it's not end-to-end encrypted, so it's less secure in that regard than, say, Signal or even WhatsApp. Telegram does have opt-in end-to-end encrypted one-on-one chats, but those are very inconvenient to use.
For a properly encrypted chat app, including group chats (opt-in), try Matrix instead: https://matrix.org/
- Matrix is a decentralized messaging ecosystem worth checking out
-
Launching Default End-to-End Encryption on Messenger
I'd love something like the Matrix [0] data model (JSON messages aggregated in an eventually-consistent chatroom CRDT) transmitted over something like simplex for metadata resistance.
[0] https://matrix.org
-
Meta is pulling the plug on Messenger chats on Instagram
Trillian mod here. There's this new thing called Beeper, works on matrix.org. It's not as the good old times, but I'm currently using whatsapp, FB messenger, discord, telegram, signal, imessage and a few more. It's not Cerulean experience, but it's... slowly improving.
- Show HN: Beeper Mini – iMessage Client for Android
- Um pouco da realidade de Copacabana - principalmente aos finais de semana
- O Fazueli está destruindo o Sul do Brasil
-
Connect to Element One in Element X?
I'm trying to change my account provider from "matrix.org" to whatever Element One needs, and for the life of me I just don't understand what values I have to put where to be able to log in. I tried `element.io`, which takes me to sso.element.io but this doesn't seem like the right thing (no credentials work as I expect.
What are some alternatives?
SonarQube - Continuous Inspection
matrix-docker-ansible-deploy - 🐳 Matrix (An open network for secure, decentralized communication) server setup using Ansible and Docker
Spotbugs - SpotBugs is FindBugs' successor. A tool for static analysis to look for bugs in Java code.
matrix-synapse - The Matrix Synapse homeserver for Docker / k8s - deprecated, use upstream
Error Prone - Catch common Java mistakes as compile-time errors
Mattermost - Mattermost is an open source platform for secure collaboration across the entire software development lifecycle..
FindBugs - The new home of the FindBugs project
apprise-api - A lightweight REST framework that wraps the Apprise Notification Library
PMD - An extensible multilanguage static code analyzer.
Synapse - Synapse: Matrix homeserver written in Python/Twisted.
Checkstyle - Checkstyle is a development tool to help programmers write Java code that adheres to a coding standard. By default it supports the Google Java Style Guide and Sun Code Conventions, but is highly configurable. It can be invoked with an ANT task and a command line program.
Mastodon - Your self-hosted, globally interconnected microblogging community