Rust adoption is stagnating not because it's missing some feature pushed by programming language theory enthusiasts, but because of a lack of focus on solving the practical problems that developers are facing every day.
... no company outside of AWS is making SDKs for Rust ... it has no official HTTP library.
As a result of Rust's lack of official packages, even its core infrastructure components need to import hundreds of third-party crates.
...the offical libsignal (from the Signal messaging app) uses 500 third-party packages.
... what is really inside these packages. It has been found last month that among the 999 most popular packages on crates.io, the content of around 20% of these doesn't even match the content of their Git repository.
...how I would do it (there may be better ways):
A stdx (for std eXtended) under the rust-lang organization containing the most-needed packages. ... to make it secure: all packages in stdx can only import packages from std or stdx. No third-party imports. No supply-chain risks.
gzip, hex, http, json, net, rand
This is a really good point for a language that is largely advertised as being more secure due to the borrowchecker.