turbohz@programming.dev to Rust@programming.devEnglish · 1 day agocrates.io: Malicious crates faster_log and async_println | Rust Blogblog.rust-lang.orgexternal-linkmessage-square9linkfedilinkarrow-up138arrow-down10
arrow-up138arrow-down1external-linkcrates.io: Malicious crates faster_log and async_println | Rust Blogblog.rust-lang.orgturbohz@programming.dev to Rust@programming.devEnglish · 1 day agomessage-square9linkfedilink
minus-squarefartsparkles@lemmy.worldlinkfedilinkarrow-up5·edit-21 day agoBoth faster_log and async_println were purely malicious packages (not taken over and turned malicious). I know faster_log is typosquatting / luring fast_log users but I’m not sure about about async_println (which was a clone of the malicious faster_log). async_std::print is a thing so I guess trying to lure users who search crates before docs :shrug:
minus-squarenebeker@programming.devlinkfedilinkEnglisharrow-up2·1 day agoI mean, if you want your prints to be asynchronous you’re looking for trouble to begin with. The previous statement is a joke.
Both faster_log and async_println were purely malicious packages (not taken over and turned malicious).
I know faster_log is typosquatting / luring fast_log users but I’m not sure about about async_println (which was a clone of the malicious faster_log).
async_std::print is a thing so I guess trying to lure users who search crates before docs :shrug:
I mean, if you want your prints to be asynchronous you’re looking for trouble to begin with.
The previous statement is a joke.