[moondev]

This is why I like that you can "go run" golang programs without installing them. Anywhere golang is installed it will automatically build cache and run the binary for whatever platform you are on.

For example

   go run sigs.k8s.io/kind@latest create cluster

I wonder if something like this exists for rust

[PaulDavisThe1st]

Absolute no possible exploit path there at all

[taftster]

Unless you are reviewing the source of everything and compiling it all yourself, then you're executing someone else's binary.

[naniwaduni]

Is it really an exploit when you're explicitly running code that you expressly trust (even if you probably shouldn't necessarily)?

[_carbyau_]

Isn't an exploit explicitly a subversion of trust?

If you shouldn't trust it but you do anyway and someone uses that against you - they exploited your trust.

[michaelmior]

That is nice, but it still requires installation of golang which is obviously something that can't be guaranteed.

[steveklabnik]

“cargo install” is the Rust equivalent.