this post was submitted on 27 Feb 2026
59 points (100.0% liked)

Rust

7825 readers
8 users here now

Welcome to the Rust community! This is a place to discuss about the Rust programming language.

Wormhole

!performance@programming.dev

Credits

  • The icon is a modified version of the official rust logo (changing the colors to a gradient and black background)

founded 2 years ago
MODERATORS
snowe@programming.dev
Ategon@programming.dev
EdTheLegendary@programming.dev
kahnclusions@programming.dev
torcherist@programming.dev
59
Making WebAssembly a first-class language on the Web – Mozilla Hacks - the Web developer blog (hacks.mozilla.org)
submitted 5 days ago by SorteKanin@feddit.dk to c/rust@programming.dev
8 comments fedilink hide all child comments
top 8 comments
sorted by: hot top controversial new old
[–] LPThinker@lemmy.world 13 points 4 days ago

This is such an exciting proposal for the web. From what I understand, this would be one of the final hurdles to having WASM "just work" in browsers the way people always expected it to (i.e. having standardized support for directly interacting with Web APIs/the DOM, without any janky glue code and skipping the huge inefficiencies of intermediary JS).

The end result would be developers having a much easier path to implementing huge parts of their applications with native-like speeds in any language they want. Some people will want to do their whole application this way, and others will have specific modules that can benefit hugely from this while still making considered use of the rest of the web platform.

As they say in the article, the current status quo is that this is possible but that ad-hoc/custom WASM modules are out of reach for all but the largest developers because of the cliff of complexity involved in moving beyond the most well-trod paths.

[–] asudox@lemmy.asudox.dev 7 points 4 days ago

Please get rid of JS.

[–] protogen420@lemmy.blahaj.zone -1 points 4 days ago (1 children)

make RCE a second class feature instead

[–] LPThinker@lemmy.world 3 points 4 days ago (3 children)

What RCE are you talking about?

[–] Ephera@lemmy.ml 3 points 4 days ago

I'm guessing, they mean JavaScript and WebAssembly in general...

[–] protogen420@lemmy.blahaj.zone 2 points 4 days ago (1 children)

wasm and js are by definition remote code execution

"oh but is sandboxed" how many sandbox bypass and sanbox escape CVEs have we had? incountably many

beyond that, that is code using your cpu cycles often inefficiently and for useless purposes or outright malicious purposes such as tracking

[–] ISO@lemmy.zip 3 points 4 days ago* (last edited 4 days ago)

Let's take Lemmy UIs as an example. In a world where this "RCE" is removed, all API calls and returned data would have to go through a "server client" first. I hope this won't take you long to ponder if that's an improvement or not 😉

The web is indeed shit. But dumber web means more "clouding", or if it's not "clouding", and to borrow from your reductionist fatalism: Dumber web replaces a potential RCE with a definite MITM.

[–] rtxn@lemmy.world 1 points 4 days ago

All the RCE vulnerabilities that Apple introduced as "features"