Skrifa, written in Rust, replaces FreeType in Chrome to enhance font processing security. Rust’s memory safety allows faster font technology advances in Chrome, reducing time spent on security bug fixes. Chrome shifted away from FreeType to improve font code agility and security for users fetching untrusted resources. FreeType’s vulnerability to security issues led Chrome to opt for the safer Rust alternative with Skrifa, gradually integrating Fontations into the system. Skrifa prioritizes safety by avoiding out-of-bounds memory access, benefiting from Rust’s features. The decision to move from FreeType to Skrifa aims to eliminate security vulnerabilities and ensure high-quality font processing in Chrome moving forward.
https://developer.chrome.com/blog/memory-safety-fonts