cargo-c
cargo-supply-chain
Our great sponsors
cargo-c | cargo-supply-chain | |
---|---|---|
1 | 20 | |
417 | 311 | |
- | 1.6% | |
7.0 | 4.9 | |
26 days ago | about 1 month ago | |
Rust | Rust | |
MIT License | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
cargo-c
-
AOM AV1 encoder/decoder in Debian needs update to enable AVIF saving
Beside rav1e there is need also for cargo-c, so that rav1e can provide C-compatible library.
cargo-supply-chain
-
Release of Structsy 0.5
Great news! Sounds like a good way to add caching to cargo supply-chain. There's a lot of small chunks of data we want to persist.
-
greater supply chain attack risk due to large dependency trees?
Shameless plug: https://github.com/rust-secure-code/cargo-supply-chain shows the supply chain attack surface for your Rust project.
-
Announcement: xflags 3.0.0
bpaf: https://github.com/rust-secure-code/cargo-supply-chain/blob/29bfcb256001cdef46830544b554d33c56602030/src/cli.rs
-
Yet another command line argument parser: bpaf 0.5.2
I'm very happy with it for cargo supply-chain. I appreciate that it has no unsafe code, no sprawling dependency tree, and supports OsStr in addition to just &str.
-
Best way to protect a project from supply chain attacks?
cargo supply-chain to see your attack surface for supply chain attacks
- Cargo-supply-chain: Rust author, contributor and publisher data for dep. crates
-
Comparing Rust supply chain safety tools
See also: cargo supply-chain
-
Yet another command line argument parser: bpaf 0.4.0
I've used bpaf for cargo supply-chain and I'm very happy with it.
-
Fundamental - finding out who you can fund in dependency tree
https://github.com/rust-secure-code/cargo-supply-chain can also help here.
-
Announcing `cargo supply-chain` v0.3: revamped CLI, separate JSON schema
cargo supply-chain list the publishers of all crates in your dependency graph. With it you can:
What are some alternatives?
qt-avif-image-plugin - Qt plug-in to allow Qt and KDE based applications to read/write AVIF images.
cap-std - Capability-oriented version of the Rust standard library
paru - Feature packed AUR helper
cargo-crev - A cryptographically verifiable code review system for the cargo (Rust) package manager.
cargo-auditable - Make production Rust binaries auditable
eve-rs - A simple, intuitive, express-like HTTP library
cargo-msrv - 🦀 Find the minimum supported Rust version (MSRV) for your project
crates.io-index - Registry index for crates.io
firecracker - Secure and fast microVMs for serverless computing.
linfa - A Rust machine learning framework.
crates.io - The Rust package registry
AreWeRustYet - Awesome list of "Are We *thing* Yet" for Rust