Rust library bugs in FFI or other unsafe code blocks can have severe consequences, even remote code execution.
It's great to see that there's now a site for announcing security bugs in the ecosystem: https://rustsec.org/
Related Posts
Over a sufficiently long time horizon, all code you write is legacy code.
I'm intrigued to see that Google has quantified that new code is generally buggier and less secure than code that has existed in your codebase for longer: https://security.googleblog.com/2024/09/eliminating-memory-safety-vulnerabilities-Android.html
It's really satisfying to use a profiler for the first time on a project. I always find a big performance win with only a small code change.
It's never the code that I expected to be slow, however!