this post was submitted on 12 Mar 2026
29 points (96.8% liked)

Programming

26022 readers
280 users here now

Welcome to the main community in programming.dev! Feel free to post anything relating to programming here!

Cross posting is strongly encouraged in the instance. If you feel your post or another person's post makes sense in another community cross post into it.

Hope you enjoy the instance!

Rules

Rules

  • Follow the programming.dev instance rules
  • Keep content related to programming in some way
  • If you're posting long videos try to add in some form of tldr for those who don't want to watch videos

Wormhole

Follow the wormhole through a path of communities !webdev@programming.dev

founded 2 years ago
MODERATORS
snowe@programming.dev
Ategon@programming.dev
UlrikHD@programming.dev
bugsmith@programming.dev
Spyro@programming.dev
29
C++26 Safety Features Won’t Save You (And the Committee Knows It) (lucisqr.substack.com)
submitted 18 hours ago by HaraldvonBlauzahn@feddit.org to c/programming@programming.dev
5 comments fedilink hide all child comments
top 5 comments
sorted by: hot top controversial new old
[–] bitcrafter@programming.dev 2 points 1 hour ago

Is the COBOL committee still working under the assumption that it currently is and will always be the dominant language?

[–] lordbritishbusiness@lemmy.world 3 points 3 hours ago

This is my favourite take so far from this post:

"Google’s own data from September 2024 shows that Android’s memory safety vulnerabilities dropped from 76% to 24% over just six years — not by retrofitting safety features onto existing C++ code, but by writing new code in memory-safe languages (Rust, Kotlin, Java). Google’s security blog makes a fascinating observation: vulnerabilities have a half-life. Code that’s five years old has 3.4x to 7.4x lower vulnerability density than new code, because bugs get found and fixed over time. The implication is striking — if you just stop writing new unsafe code, the overall vulnerability rate drops exponentially without touching a single line of existing C++."

Starting to transition away is perhaps the best step if these stats ring true. Then actively seeking out bad C++ practices is probably going to quietly pay dividends as well.

[–] matsdis@piefed.social 9 points 16 hours ago* (last edited 16 hours ago) (1 children)

The title is clickbait, but the article is well written.

It is tearing apart some points made in a talk (which I didn't watch). The talk seems to focus on C++26 features (given that you are using C++) while the article argues why you still shouldn't use C++ in the first place, despite the improvements. Mainly because the memory safety features are opt-in. There is also discussion about the CrowdStrike incident, and how it was more of a cultural problem than a language problem.

[–] syklemil@discuss.tchncs.de 0 points 12 hours ago (1 children)

The article has some good points, but it read as pure LLM slop to me.

Was reminded of the meme: Heartbreaking: The worst person you know just made a great point.

[–] matsdis@piefed.social 4 points 11 hours ago

Maybe my LLM detector needs an update, but only the headline triggered it. The article did the opposite for me.

Anyway, the author checks out, old github profile etc. Works in high frequency trading, which I despise because I think it is make-do work, moving money around a millisecond before anyone else has a chance, a huge technical effort with zero benefit to society compared to slower trading. I'll file it together with adtech and bitcoin. But. The article is not about that. And I know that working in high frequency trading sure makes you qualified to talk C++ or FPGAs or anything close-to-the-metal. So, author background checks out. Verdict: not slop.