I think we should be selling Rust as a high security, high performance language.
Regarding security, this is what I see:
No Exceptions, which allows warnings for unused Err Results meaning all errors can be provably caught and handled
No Garbage collector
What I think could be done better:
- Better unit testing. I know it’s possible to plug into coveralls.io, but would be really nice if that could be done through cargo. Some way to generate a report indicating which lines had and had not been tested and how many times every line had been tested by unit tests. Or make it easier to automatically plug into coveralls.io
- Dependent types and taint analysis could be nice. Taint analysis could probably be done compile time.
Related interesting link:
Plus security is extremely important to my own project, it’s why I picked Rust!
What security features am I missing? What do you see that could improve Rust’s security?