Verus: Verified Rust for low-level systems code

How does it differ from Prusti and Creusot?<p>I feel, with more and more tools crowding that space, a common specification language would make sense. Sure, every tool has its own unique selling points but there is considerable overlap. For example, if all I want is to express that I expect a function not to panic, there should be one syntax that works with all tools.

Would it be better to build dependent types into the language itself so that we can guarantee any spec we want? Or do these tools have some advantage over dependent typing?

Previously:<p><a href="https:&#x2F;&#x2F;news.ycombinator.com&#x2F;item?id=32105781">https:&#x2F;&#x2F;news.ycombinator.com&#x2F;item?id=32105781</a><p><a href="https:&#x2F;&#x2F;news.ycombinator.com&#x2F;item?id=36530561">https:&#x2F;&#x2F;news.ycombinator.com&#x2F;item?id=36530561</a><p><a href="https:&#x2F;&#x2F;news.ycombinator.com&#x2F;item?id=35129690">https:&#x2F;&#x2F;news.ycombinator.com&#x2F;item?id=35129690</a><p><a href="https:&#x2F;&#x2F;news.ycombinator.com&#x2F;item?id=40259185">https:&#x2F;&#x2F;news.ycombinator.com&#x2F;item?id=40259185</a> (has actual discussion)

Personally, I think the verus! macro is too much in the way for this approach to be feasible. Kani or Prusti syntax is much more usable for real projects.

How many of these are there?

love another rust project! are there plans to expand support for concurrency primitives or async constructs in future releases?

Rust is supposed to be a &quot;safe&quot; language for low level use, and thus has borrow checker, unsafe, etc. Building a &quot;verifier&quot; on top of Rust seems a bit excessive and unneeded.<p>&gt; Developers write specifications of what their code should do ... Verus statically checks ... the specifications for all possible executions of the code<p>This is what tests are for.