I commented in my FOSDEM talk that FOSS is necessary but insufficient for security, and that we need an OCap/PoLA foundation; some recent malware examples like the event-stream takeover might be arguably still FOSS.

Well, here's more examples: malware appearing in FOSS browser extensions

· · Web · 2 · 4 · 4

@cwebber This is part of what I like about Haskell.

It isn't perfect OCap, but it's significantly closer than most other languages. The IO monad's too permissive, and there's `unsafePerformIO`. But otherwise I know what program data each function can read, and that it's only writing to it's return values!

Sign in to participate in the conversation

The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!