Follow

I commented in my FOSDEM talk that FOSS is necessary but insufficient for security, and that we need an OCap/PoLA foundation; some recent malware examples like the event-stream takeover might be arguably still FOSS.

Well, here's more examples: malware appearing in FOSS browser extensions lwn.net/SubscriberLink/846272/

· · Web · 2 · 4 · 4

@cwebber This is part of what I like about Haskell.

It isn't perfect OCap, but it's significantly closer than most other languages. The IO monad's too permissive, and there's `unsafePerformIO`. But otherwise I know what program data each function can read, and that it's only writing to it's return values!

Sign in to participate in the conversation
Octodon

The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!