|
|
|
|
|
|
by insanitybit
7 days ago
|
|
|
> Memory safety is just a tiny part of over all security. No, it's a pretty massive part with disproportionate severity. > If a LLM can transcode correctly, then it should also output 100% correct C code. Translating code seems to largely rely on having a strong suite of existing tests, not on ability to code correctly. It's unclear if LLMs are great at writing safe C code, it's much clearer that they can meet targets with external feedback properties like "test passes/fails". > On the other hand, If a LLM cannot correctly transcode, then using Rust may just make the bug soundless, because the language runtime/code-gen "avoided" usual punishments that might make the bug (and bug report) obvious. This is very unclear to me. |
|
|