Is using crates more safe than using npm?

This page summarizes the projects mentioned and recommended in the original post on /r/rust

Our great sponsors
  • WorkOS - The modern identity platform for B2B SaaS
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • SaaSHub - Software Alternatives and Reviews
  • Cargo

    The Rust package manager

  • cap-std

    Capability-oriented version of the Rust standard library

  • WorkOS

    The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

    WorkOS logo
  • watt

    Runtime for executing procedural macros as WebAssembly

  • A related project is https://github.com/dtolnay/watt which will run proc macros (which have exactly the same security concerns as build scripts) in a wasm sandbox

  • cargo2nix

    Granular builds of Rust projects for Nix

  • Building with nix, for instance with cargo2nix (https://github.com/cargo2nix/cargo2nix), could be safer if sandboxing is enabled.

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts