416
Ladybird Browser Gains Cloudflare Support to Challenge the Status Quo (linuxiac.com)
submitted 1 week ago by KarnaSubarna@lemmy.ml to c/opensource@lemmy.ml
150 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[-] davel@lemmy.ml 11 points 1 week ago

I’m not going to have interest in any new browser that’s written in security nightmare languages like C or C++.

NSA Releases Guidance on How to Protect Against Software Memory Safety Issues

Commonly used languages, such as C and C++, provide a lot of freedom and flexibility in memory management while relying heavily on the programmer to perform the needed checks on memory references. Simple mistakes can lead to exploitable memory-based vulnerabilities. Software analysis tools can detect many instances of memory management issues and operating environment options can also provide some protection, but inherent protections offered by memory safe software languages can prevent or mitigate most memory management issues. NSA recommends using a memory safe language when possible. While the use of added protections to non- memory safe languages and the use of memory safe languages do not provide absolute protection against exploitable memory issues, they do provide considerable protection. Therefore, the overarching software community across the private sector, academia, and the U.S. Government have begun initiatives to drive the culture of software development towards utilizing memory safe languages.

[-] thnitch@lemmy.world 18 points 1 week ago* (last edited 1 week ago)

From their FAQ https://ladybird.org/#faq

Why build a new browser in C++ when safer and more modern languages are available?

Ladybird started as a component of the SerenityOS hobby project, which only allows C++. The choice of language was not so much a technical decision, but more one of personal convenience. Andreas was most comfortable with C++ when creating SerenityOS, and now we have almost half a million lines of modern C++ to maintain.

However, now that Ladybird has forked and become its own independent project, all constraints previously imposed by SerenityOS are no longer in effect.

We have evaluated a number of alternatives, and will begin incremental adoption of Swift as a successor language, once Swift version 6 is released. (More background.)

[-] bluespin@lemmy.world 11 points 1 week ago

Sure, but any competition to Chromium is good

[-] Zerush@lemmy.ml 2 points 1 week ago* (last edited 1 week ago)

For sure it is good because any other engine is direct or indirect an Google project, all development over the past decade was funded by Google. But this, to create a new indie engine in 2026 comes 15-20 years too late as to be capable to gain any minimum market share. The browser market is a brutal competition with over 70 companies victims in this battle, and I fear that Ladybird won't be an exception.

[-] bluespin@lemmy.world 4 points 1 week ago

Fair concerns. I share the skepticism, but am still always happy to see projects like this attempting to swim against the current, late or not

[-] ZILtoid1991@lemmy.world 6 points 1 week ago

Rust has its own non-security issues, you just won't hear about it, as they're being drowed out by "OMG, this Rust developer has PRONOUNS and CATS, what happened to free speech, why not everyone is a fundamentalist christian like me?" style smear by the likes of Brian Lunduke.

this post was submitted on 25 Sep 2025
416 points (100.0% liked)

Open Source

41151 readers
536 users here now

All about open source! Feel free to ask questions, and share news, and interesting stuff!

Useful Links

Rules

Related Communities

Community icon from opensource.org, but we are not affiliated with them.

founded 6 years ago
MODERATORS
Cloak@lemmy.ml
kevincox@lemmy.ml
CrypticCoffee@lemmy.ml
Lettuceeatlettuce@lemmy.ml