eve-rs
cargo-supply-chain
Our great sponsors
eve-rs | cargo-supply-chain | |
---|---|---|
2 | 20 | |
4 | 311 | |
- | 1.6% | |
3.8 | 4.9 | |
11 months ago | about 1 month ago | |
Rust | Rust | |
- | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
eve-rs
-
Whats your favourite open source Rust project that needs more recognition?
I've been working on eve: https://github.com/vicara-hq/eve-rs and would love some help with it
-
Does any interesting projects need help?
Hate to toot my own horn but https://github.com/vicara-hq/eve-rs
cargo-supply-chain
-
Release of Structsy 0.5
Great news! Sounds like a good way to add caching to cargo supply-chain. There's a lot of small chunks of data we want to persist.
-
greater supply chain attack risk due to large dependency trees?
Shameless plug: https://github.com/rust-secure-code/cargo-supply-chain shows the supply chain attack surface for your Rust project.
-
Announcement: xflags 3.0.0
bpaf: https://github.com/rust-secure-code/cargo-supply-chain/blob/29bfcb256001cdef46830544b554d33c56602030/src/cli.rs
-
Yet another command line argument parser: bpaf 0.5.2
I'm very happy with it for cargo supply-chain. I appreciate that it has no unsafe code, no sprawling dependency tree, and supports OsStr in addition to just &str.
-
Best way to protect a project from supply chain attacks?
cargo supply-chain to see your attack surface for supply chain attacks
- Cargo-supply-chain: Rust author, contributor and publisher data for dep. crates
-
Comparing Rust supply chain safety tools
See also: cargo supply-chain
-
Yet another command line argument parser: bpaf 0.4.0
I've used bpaf for cargo supply-chain and I'm very happy with it.
-
Fundamental - finding out who you can fund in dependency tree
https://github.com/rust-secure-code/cargo-supply-chain can also help here.
-
Announcing `cargo supply-chain` v0.3: revamped CLI, separate JSON schema
cargo supply-chain list the publishers of all crates in your dependency graph. With it you can:
What are some alternatives?
cargo-auditable - Make production Rust binaries auditable
cap-std - Capability-oriented version of the Rust standard library
yew - Rust / Wasm framework for creating reliable and efficient web applications
paru - Feature packed AUR helper
tauri - Build smaller, faster, and more secure desktop applications with a web frontend.
cargo-crev - A cryptographically verifiable code review system for the cargo (Rust) package manager.
Relm4 - An idiomatic GUI library inspired by Elm and based on gtk4-rs [Moved to: https://github.com/Relm4/Relm4]
aircraft - The A32NX & A380X Project are community driven open source projects to create free Airbus aircraft in Microsoft Flight Simulator that are as close to reality as possible.
cargo-msrv - 🦀 Find the minimum supported Rust version (MSRV) for your project
Popsicle - Multiple USB File Flasher
crates.io-index - Registry index for crates.io