forbidden
cargo-supply-chain
forbidden | cargo-supply-chain | |
---|---|---|
5 | 20 | |
10 | 311 | |
- | 1.3% | |
0.0 | 4.9 | |
over 2 years ago | about 1 month ago | |
Rust | Rust | |
Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
forbidden
- I made a SSO as my first project in Rust
-
What is a FOSS which is needed but doesn't exist yet/needs contributers?
And auth system? I start https://github.com/mamcx/forbidden but got sidetracked by $job, but will be happy to lend a hand if get a partner.
-
Looking for open source projects to contribute
I have a crate for auth here.
-
What's everyone working on this week (40/2021)?
Still iterating the design for https://github.com/mamcx/forbidden, a potential auth system for Rust.
-
Rust : Forbidden // And WIP auth system (looking for help/inputs)
Have some research links to sketch the design.
cargo-supply-chain
-
Release of Structsy 0.5
Great news! Sounds like a good way to add caching to cargo supply-chain. There's a lot of small chunks of data we want to persist.
-
greater supply chain attack risk due to large dependency trees?
Shameless plug: https://github.com/rust-secure-code/cargo-supply-chain shows the supply chain attack surface for your Rust project.
-
Announcement: xflags 3.0.0
bpaf: https://github.com/rust-secure-code/cargo-supply-chain/blob/29bfcb256001cdef46830544b554d33c56602030/src/cli.rs
-
Yet another command line argument parser: bpaf 0.5.2
I'm very happy with it for cargo supply-chain. I appreciate that it has no unsafe code, no sprawling dependency tree, and supports OsStr in addition to just &str.
-
Best way to protect a project from supply chain attacks?
cargo supply-chain to see your attack surface for supply chain attacks
- Cargo-supply-chain: Rust author, contributor and publisher data for dep. crates
-
Comparing Rust supply chain safety tools
See also: cargo supply-chain
-
Yet another command line argument parser: bpaf 0.4.0
I've used bpaf for cargo supply-chain and I'm very happy with it.
-
Fundamental - finding out who you can fund in dependency tree
https://github.com/rust-secure-code/cargo-supply-chain can also help here.
-
Announcing `cargo supply-chain` v0.3: revamped CLI, separate JSON schema
cargo supply-chain list the publishers of all crates in your dependency graph. With it you can:
What are some alternatives?
biscuit-rust - Rust implementation of the Biscuit authorization token
cap-std - Capability-oriented version of the Rust standard library
smartcore - A comprehensive library for machine learning and numerical computing. The library provides a set of tools for linear algebra, numerical computing, optimization, and enables a generic, powerful yet still efficient approach to machine learning.
paru - Feature packed AUR helper
nebari - A pure Rust database implementation using an append-only B-Tree file format.
cargo-crev - A cryptographically verifiable code review system for the cargo (Rust) package manager.
actix-auth - A truly simple illustration of basic authorisation using actix-web and MongoDB.
cargo-auditable - Make production Rust binaries auditable
ormlite - An ORM in Rust for developers that love SQL.
eve-rs - A simple, intuitive, express-like HTTP library
Security.PasswordHasher - Argon2, BCrypt and Scrypt implementation for ASP.NET Core Identity
cargo-msrv - 🦀 Find the minimum supported Rust version (MSRV) for your project