A 20 year old bug in GTA San Andreas surfaced in Windows 11 24H2

1. serde

   1 200 9,825 8.7 Rust

   Serialization framework for Rust

   

   You misunderstood. Game developers should use a _good_ third–party library, not a _bad_ one. At a minimum they should be able to read the source code so that they know it is good. Thus open source libraries should be at the top of the list.

   If you don't know what “good” looks like, take a look at [Serde](https://serde.rs/). It’s for Rust, but its features and overall design are something you should attempt to approach no matter what language you’re writing in.

2. Stream

   getstream.io featured

   Stream - Scalable APIs for Chat, Feeds, Moderation, & Video. Stream helps developers build engaging apps that scale to millions with performant and flexible Chat, Feeds, Moderation, and Video APIs and SDKs powered by a global edge network and enterprise-grade infrastructure.

   

3. sanitizers

   2 56 12,019 5.4 C

   AddressSanitizer, ThreadSanitizer, MemorySanitizer

   

   You both may be right. It could be that ASAN is not instrumenting scanf (or some other random standard lib function). Though since 2015, it certainly has been. https://github.com/google/sanitizers/issues/108

   The simpler policy of "don't allow unintialized locals when declared" would also have caught it with the tools available when the game was made (though a bit ham-fisted).

4. papers

   3 88 43 4.2 Perl

   ISO/IEC JTC1 SC22 WG21 paper scheduling and management (by cplusplus)

   

   And yet, there is a good chance that C++ will start doing exactly this [1]. Because [2]:

   > The performance impact is negligible (less that 0.5% regression) to slightly positive (that is, some code gets faster by up to 1%). The code size impact is negligible (smaller than 0.5%). Compile-time regressions are negligible. Were overheads to matter for particular coding patterns, compilers would be able to obviate most of them.

   > The only significant performance/code regressions are when code has very large automatic storage duration objects. We provide an attribute to opt-out of zero-initialization of objects of automatic storage duration. We then expect that programmer can audit their code for this attribute, and ensure that the unsafe subset of C++ is used in a safe manner.

   > This change was not possible 30 years ago because optimizations simply were not as good as they are today, and the costs were too high. The costs are now negligible.

   [1] https://github.com/cplusplus/papers/issues/1401

   [2] https://www.open-std.org/jtc1/sc22/wg21/docs/papers/2023/p27...

5. terrareg

   4 9 303 9.2 Python

   Open source Terraform module registry with UI, optional Git integration and deep analysis. Demo: https://terrareg-main.gitlab-pr.dockstudios.co.uk

   

   I remember reading this and having a mini-midlife-crisis after every read

   I documented it this time :sigh: https://github.com/MatthewJohn/terrareg/commit/2231ba733a7f5...

Suggest a related project