|
|
|
|
|
|
by stefanha
800 days ago
|
|
|
Languages with capability-based security may not be supply chain safe. For example, Pony allows third-party libraries to use the unsafe FFI by default. I think Pony is close to a supply chain safe programming language, but it looks like it's not safe by default. I don't know enough about Pony to understand whether this is a fundamental design issue or just a question of carefully invoking the compiler to avoid unsafe features. |
|
|