alt Hacker NewsYou have "edit and continue" in Visual Studio (the real IDE, not VS Code).
And I mentioned it as a downside of C++ on Linux, and I would expect a language that has "the best" tooling to have that.
C++ tooling isn't that great, but it has one thing going for it: it is popular in the video game industry, and the video industry has some of the best tools.
And sure enough, if by tooling you mean "package management", I'd say everything is better than C++, and on the other side, it seems that cargo is pretty good. I don't know how they tackle the "left-pad" problem that plagues npm though. By that I mean supply-chain attacks.
Replies
izacus • yesterday at 5:17 AM
Cargo tackles none of that, it has the exact same issue of pulling in hundreds of deps like npm has.
It's not like npm is particularly bad at handling supply-chain attacks, it's just a very popular ecosystem and gets targeted more as a result. Idk how you truly solve this without code audits, and if anything the more popular/visible packages will be audited more.
Btw, left-pad fallout wasn't all that bad. It's not like the author put something malicious into the code. For less than a day, people couldn't download that dep from npm. If someone really needed to fix a build, they could copy in a backup. Pretty sure a typical C++ or Python project build gets broken on its own more often than that.