Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

It is instructive to compare Bun and Deno's issue tracker. Like, the five most recent issues for Bun at the time of writing are all crashes. Some of these are controlled panics or assertion failures, but others are like "we are now executing from address -1" or "we are trying to read from address 0x00000069." Recently written software simply should not have these classes of problem.


When you read the Bun codebase it is scary how they ignore edgecases. The codebase of Deno is actually legit, I used it as reference for LLRT modules.

This is really a case were Rust will shine compare to Zig.


That is what happens when the user base basically wants a Modula-2 with C syntax.

Yes, preferably safer than C ever was, but that isn't what a 21st century systems language is supposed to be.


In Chrome, many of those bugs would be $5000 bounty and you don’t even need the exploit code.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: