cargo-geiger
Detects usage of unsafe Rust in a Rust crate and its dependencies. (by geiger-rs)
bacon
background rust code check (by Canop)
Our great sponsors
cargo-geiger | bacon | |
---|---|---|
30 | 25 | |
1,310 | 1,436 | |
1.8% | - | |
5.4 | 7.9 | |
8 days ago | 13 days ago | |
Rust | Rust | |
GNU General Public License v3.0 or later | GNU Affero General Public License v3.0 |
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
cargo-geiger
Posts with mentions or reviews of cargo-geiger.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2023-10-25.
-
Was Rust Worth It?
Instead of looking at the crates themselves, you might want to check your (or others') Rust application with https://github.com/rust-secure-code/cargo-geiger to get a sense of effective prevalence. I also dispute that the presence of unsafe somewhere in the dependency tree is an issue in itself, but that's a different discussion that many more had in other sub-threads.
-
Found a language in development called Vale which claims to be the safest AOT compiled language in the World (Claims to beSafer than Rust)
There's still plenty. Run cargo geiger on any of your projects and see for yourself.
-
Question Omnibus: Dependency Fingerprinting, Unsafe Rust, and Memory Safety
On point 2, the answer is cargo geiger, and judging how much memory safety you need for a given project.
- pliron: An extensible compiler IR framework, inspired by MLIR and written in safe Rust.
-
[Discussion] What crates would you like to see?
You can use cargo-geiger or cargo-crev to check for whether people you trusted (e.g. u/jonhoo ) trust this crate.
-
How do you choose what crate you will use?
The amount of unsafe code is also a factor. cargo geiger is a handy tool for measuring it.
-
Seems legit
We have cargo-geiger that does just that.
-
Rosenpass – formally verified post-quantum WireGuard
For that, I believe you need to use cargo-geiger[0] and audit the results.
[0] - https://github.com/rust-secure-code/cargo-geiger
-
Hey Rustaceans! Got a question? Ask here (6/2023)!
cargo-geiger is a subcommand you can install which will check all the crates in your dependency graph for unsafe blocks and print out a report (which also shows if a crate has #![forbid(unsafe_code)] or not). You can then inspect those crates' sources to judge their use of unsafe for yourself. I don't think it has a "check" mode that simply errors if your dependency graph contains unsafe though, it's more about just collecting that information.
-
[CCS Proposal] Preliminary research on rewriting Monero node in Rust
wrt to memory safety, keep in mind that many rust crates use "unsafe" internally. There are tools available that can find these such as cargo-geiger. So I would suggest to avoid unsafe deps as much as possible. Since they cannot be avoided entirely, it is a good idea to keep a list of unsafe deps.
bacon
Posts with mentions or reviews of bacon.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2023-06-27.
- Bacon – a background Rust code checker
-
Rust fact vs. fiction: 5 Insights from Google's Rust journey in 2022
Probably one of the biggest speed ups to your inner loop writing / running code is to use something like https://github.com/Canop/bacon/. I used a combination of the docs and GPT chats to increase my learning speed a lot.
-
Project Diagnostics
Nice, I'll have a look. I miss having bacon in a tmux split, wish TS had something like that.
-
Report on platform-compliance for cargo directories
As a macOS user, it boils my brain whenever I've to type in something like ~/Library/Application Support/org.rust-lang.Cargo/config.toml. macOS users have been begging CLI tools to support XDG variables on macOS too. Setting defaults is a strong indication to the community what should be the "preferred" locations. The defaults defined in your article will invariably lead to some authors saying that if that path is good enough for cargo, then it is good enough for their tool. Even the latest draft RFC acknowledges that macOS should use XDG variables too. I've written more about this here.
-
What's your current Vim+Rust setup?
bacon + nvim-bacon
-
What are some useful tools for Rust?
bacon
-
Are there any continuous testing tools with real-time line-by-line IDE feedback for Rust?
I love cargo-watch and still it use it situationally, but as a companion to my editor workflow I mostly switched to bacon. Being able to switch with one keystroke to another cargo subcommand is delightful.
-
What is your number one rust tool?
Try bacon for checks & test!
-
Alternative to watch -cq
Was it bacon perhaps?
- Something similar to Rust's `bacon` tool but for Python?
What are some alternatives?
When comparing cargo-geiger and bacon you can also consider the following projects:
ziglings - Learn the Zig programming language by fixing tiny broken programs.
rust - Empowering everyone to build reliable and efficient software.
nomicon - The Dark Arts of Advanced and Unsafe Rust Programming
helix - A post-modern modal text editor.
mold - Mold: A Modern Linker 🦠
miri - An interpreter for Rust's mid-level intermediate representation
darkfi - Anonymous. Uncensored. Sovereign.
orz - a high performance, general purpose data compressor written in the crab-lang
config - configuration.nix is better than dot files
dlfile - For dl the file
rust - Rust for the xtensa architecture. Built in targets for the ESP32 and ESP8266