The xz attack shell script

This page summarizes the projects mentioned and recommended in the original post on news.ycombinator.com

SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com
featured
  1. pants

    The Pants Build System

    > C/C++'s header system with conditional inclusion

    Wouldn't it be more accurate to say something like "older build systems"? I don't think any of the things you listed are "modern". Which isn't a criticism of their legacy! They have been very useful for a long time, and that's to be applauded. But they have huge problems, which is a big part of why newer systems have been created.

    FWIW, I have been using pants[0] (v2) for a little under a year. We chose it after also evaluating it and bazel (but not nix, for better or worse). I think it's really really great! Also painful in some ways (as is inevitably the case with any software). And of course it's nearly impossible to entirely stomp out "genrules" use cases. But it's much easier to get much closer to true hermeticity, and I'm a big fan of that.

    0: https://www.pantsbuild.org/

  2. SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo
  3. nixpkgs

    Nix Packages collection & NixOS

    I'm not familiar with Bazel, but Nix in it's current form wouldn't have solved this attack. First of all, the standard mkDerivation function calls the same configure; make; make install process that made this attack possible. Nixpkgs regularly pulls in external resources (fetchUrl and friends) that are equally vulnerable to a poisoned release tarball. Checkout the comment on the current xz entry in nixpkgs https://github.com/NixOS/nixpkgs/blob/master/pkgs/tools/comp...

  4. deno-cliffy

    Command line framework for deno 🦕 Including Commandline-Interfaces, Prompts, CLI-Table, Arguments Parser and more...

  5. conan

    Conan - The open-source C and C++ package manager

  6. conan-center-index

    Recipes for the ConanCenter repository

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts

  • Conan: Your Embedded Cross-Compilation Champion

    2 projects | dev.to | 13 Jul 2024
  • Compiling CrowCPP on Windows and about to kms

    3 projects | /r/cpp | 8 Mar 2023
  • Is there a timeline for when Boost 1.81 will be added to Conan Center or vpkg's repository?

    3 projects | /r/cpp | 22 Dec 2022
  • C++ for scientific programming?

    6 projects | /r/cpp | 27 Jul 2022
  • [Ques] How to get imgui docking branch for conan package manager?

    2 projects | /r/cpp | 6 Mar 2022