From my most recent blog post, I was inspired to make a PR to the syn crate to add docs for syn::Error::combine for how to store "maybe errors" and how to iterate over errors once combined (helpful for unit testing). #rust

https://github.com/dtolnay/syn/pull/1855

Delivering Trojans Via ClickFix Captcha

A new social engineering technique exploiting ClickFix Captcha has emerged as an effective method for delivering various types of malware, including Quakbot. This technique deceives users and bypasses security measures by utilizing a seemingly harmless captcha. The process involves redirecting users to a ClickFix captcha that tricks them into executing a malicious command on their local machine. The command downloads and executes obfuscated PowerShell scripts, which then retrieve and deploy the actual malware payload. The attackers use sophisticated obfuscation techniques, including fake ZIP files and PHP-based droppers, to evade detection and analysis. This method's success lies in exploiting user trust in captchas and legitimate-looking websites, increasing the likelihood of unknowing malware execution.

Pulse ID: 67ebfca624fc8265928a8775
Pulse Link: https://otx.alienvault.com/pulse/67ebfca624fc8265928a8775
Pulse Author: AlienVault
Created: 2025-04-01 14:48:06

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

Typst is hiring

https://lemm.ee/post/60102224

Official Clippy (Rust's official linter) update announcement! #rust #rustlang #programming

As a Clippy team member, I'm very pleased to announce our latest and greatest feature to date: We are adding GLaDOS to Clippy!

https://github.com/rust-lang/rust-clippy/pull/14510

Rust developers upgrade to newer versions of Rust _vastly_ faster than Python developers do.

As of yesterday:

11% of downloads on PyPI were for Python versions 3.12 or newer, released in October 2023.

97% of package downloads on crates.io were for Rust 1.75 or later, released in December 2023.

From my experience, there's a rational reason for this difference: major Python vresion upgrades usually aren't _hard_, but they do require some tweaking. So there's always lag. Meanwhile, Rust upgrades are a non-event, with no changes to user code needed. And insofar as Rust wants to introduce breaking changes, the edition mechanism means it's opt-in rather than being forced on you when you upgrade.

UPDATE: As someone implied in their replies, this is somewhat misleading insofar as it includes lots of open source projects that are testing in CI against old Python versions. Even so, if open source project CI dominated download numbers, I would expect something like 40% of downloads to be for Python 3.12 or later, since most projects are likely supporting 3.9-3.13 at the moment.

Data sources:

- https://pypistats.org/packages/__all__
- https://lib.rs/stats#rustc

Your Rust is rusty? No problem, one can make a distro without:

https://discourse.ubuntu.com/t/58314

Liberty to the segfaults!

#Scala developers - the best remote-only company is looking for you! :) Disclaimer: you *do* need to communicate in Polish.

We're also looking for senior #Java, #Rust and #TypeScript devs. So if you're into type-checked languages, SoftwareMill is the place for you :)

Having one of these days.

The Obscured Whispers Link (OWL) in Rust

https://codeberg.org/matthewjharmon/owl-rs/src/branch/main/README.md

#WebAssembly has expanded its scope from browsers - it’s making waves in Cloud & Edge Computing.

With the WebAssembly Component Model (WCM), developers can integrate libraries from multiple languages like #Rust, #Python & #JavaScript, promoting a true polyglot programming environment.

Explore the details: https://bit.ly/4iIy5ki

Hey! Are you a student who wants to use #bevy to do #robotics in #rust?

We've just got a job posting for two remote summer internships through the Google Summer of Code! Check it out at https://discourse.ros.org/t/osrf-google-summer-of-code-2025/42653/1, or hunt down `grey` on the Bevy Discord to ask questions directly :)

Looks super cool!

OxiCloud is an open-source Rust-powered NextCloud alternative https://github.com/DioCrafts/OxiCloud #rust #rustlang #opensource

Package Manager for Markdown

I'm working on a project that is intended to encourage folk to make markdown text files which can be bundled together in different bundles of text files using a package manager.

Question for coders; Which package manager would you suggest I use?

Main criterias (in order) are:

1. Easy for someone with basic command line skills to edit the file and update version numbers and add additional packages.

2. All being equal, more commonly and easy to setup is preferred.

#Markdown #CommonMark #PackageManager #Programming #Dev
#NPM #RubyGems #Cargo #PickingAMastodonInstance
#Ruby #Python #Rust #Javascript #NodeJs #Lisp #CommonGuide

my final project as part of my tenure at Microsoft, aside from that NPM patch (lol), is this lil' guy: https://github.com/microsoft/libsyncrpc

Just a small, but v v fast IPC lib that lets you make synchronous calls to a child process from node, while the child can execute callbacks from you before you return.

I optimized the everloving shit out of this thing, and it ended up being fast enough that the #TypeScript team will be able to use it for the thing that will let you use the Go typescript compiler from JS: you'll just be calling out directly to a Go child.

Literally hundreds of thousands of ops/s :)

So, we did a thing.

https://github.com/systemd/systemd/pull/36914

Today I read on slashdot that it took #rust ten years to arrive at an official language specification. Don’t get me wrong, I have no negativity towards the language, but I do believe a late spec to be a design smell.

Damn. I thought #Zig was supposed to be a simpler language coming from #Rust but compiler errors definitely aren't it's strong suit.

This is one of the first impressions I got from the language. I'm just trying to compare some strings here, nothing magical. But apparently this is not an easy task in Zig. The documentation is definitely lacking examples too.
Also it's missing a good beginner introduction like the Rust Book.

The code in question: https://bpa.st/3VYA