Our great sponsors
yaml-cpp | rustsec | |
---|---|---|
12 | 33 | |
4,788 | 1,521 | |
- | 2.7% | |
7.1 | 9.5 | |
15 days ago | 7 days ago | |
C++ | Rust | |
MIT License | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
yaml-cpp
-
yaml-cpp VS rapidyaml - a user suggested alternative
2 projects | 5 Feb 2022
-
How do you manage third-party libraries
FetchContent_Declare(yaml-cpp GIT_REPOSITORY https://github.com/jbeder/yaml-cpp.git GIT_TAG yaml-cpp-0.7.0 GIT_SHALLOW TRUE ) set(YAML_CPP_BUILD_TESTS OFF) FetchContent_MakeAvailable(yaml-cpp)
-
Templated lambdas with unknown type during invocation
As you can see, I'm trying to coerce some YAML::Node to get some unknown type:
-
How to deal with unmaintained crates? (eg. yaml-rust)
Some context, In my day job, I'm working on a custom format that is based on yaml but extends it. We're still using C++, so we the used yaml-cpp as a base for our parser and it was great for that purpose. laying with rust on Advent of Code lately I also got sent back to reality... Not having rust enums, match, great string handling, iterators when working with my AST was hard. So I wanted to try to implement the same parser in Rust as an example to my teammates of how great rust can be.
-
Libraries
yaml-cpp
-
yaml-cpp eclipse
Hi, this is a library (https://github.com/jbeder/yaml-cpp), I tried to add it but unfortunately I can't, and I can't find any instructions.
-
Beginner: ExternalProject_Add link and include directory
cmake_minimum_required(VERSION 3.0.0) project(cmaketest VERSION 0.1.0) include(CTest) enable_testing() include(ExternalProject) ExternalProject_Add(yaml PREFIX 3rd_party GIT_REPOSITORY https://github.com/jbeder/yaml-cpp/ INSTALL_COMMAND "" ) add_executable(cmaketest main.cpp) set(CPACK_PROJECT_NAME ${PROJECT_NAME}) set(CPACK_PROJECT_VERSION ${PROJECT_VERSION}) include(CPack)
-
Modern yaml library with clear docs
I've found is yaml-cpp. The API seems fine
-
I need help with list project
If you want a file format that has more readability, YAML is probably your best bet.
-
How to read from a file
Can this not be parsed as YAML? (https://github.com/jbeder/yaml-cpp)
rustsec
-
Rust Tooling: 8 tools that will increase your productivity
cargo-audit is a simple Cargo tool for detecting vulnerable Rust crates. You can install it with cargo install cargo-audit, use cargo audit and you’re done! Any vulnerable crates will appear below, like so:
-
Rust Offline?
Further we use cargo-auditable and cargo-audit as part of both our pipeline and regular scanning of all deployed services. This makes our InfoSec and Legal super happy since it means they can also monitor compliance with licenses and patch/update timings.
-
Sudo and Su Being Rewritten in Rust for Memory Safety
Yeah your decade old single header libs get so many audits by comparison.
https://github.com/RustSec/rustsec/tree/main/cargo-audit
https://mozilla.github.io/cargo-vet/
cargo is not npm
-
A CVE has been issued for hyper. Denial of Service possible
PSA: before filing CVEs for other people's projects, file an issue with https://rustsec.org instead
-
Should atomics be unsafe?
Historically, such serious bugs get communicated broadly and addressed very quickly via security advisory blog posts and on https://rustsec.org.
-
Rust from a security perspective, where is it vulnerable?
For known vulnerabilities we have the rustsec vulnerability database. You could have a look over there for inspiration. There's also the related cargo-audit for checking dependencies for known vulnerabilities.
-
capnproto-rust: out-of-bound memory access bug
Would be cool if this was also reported to https://rustsec.org/ that way cargo audit could pick up and alert the users about it.
-
`cargo audit` can now scan compiled binaries
P.S. I also made scanning binaries 5x faster in the latest release of cargo audit.
-
My Rust development workflow (after 3+ years)
Thanks to cargo and the community, project maintenance is straightforward in rust. You'll need to install cargo-outdated and cargo-audit:
-
Mental models for learning Rust
Use the automated tools to assist you in the maintenance of your projects: rustfmt, clippy, cargo update, cargo outdated and cargo-audit.
What are some alternatives?
Boost.PropertyTree - Boost.org property_tree module
opensnitch - OpenSnitch is a GNU/Linux interactive application firewall inspired by Little Snitch.
ArduinoJson - 📟 JSON library for Arduino and embedded C++. Simple and efficient.
vulndb - [mirror] The Go Vulnerability Database
json - JSON for Modern C++
gosec - Go security checker
RapidJSON - A fast JSON parser/generator for C++ with both SAX/DOM style API
crates.io - The Rust package registry
JsonCpp - A C++ library for interacting with JSON.
ripasso - A simple password manager written in Rust
JSON++ - A JSON parser in C++
advisory-db - Security advisory database for Rust crates published through crates.io