Our great sponsors
-
2FA and "think before pasting into your .toml file" are great, but there might be a better option, which doesn't rely on the authors of crates.io (and thus - the website itself) to be compliant with a set of stricter rules, which at the end of the day, don't guarantee anything, other than the only compromised libs will come straight from whomever happens to compromise the crates.io itself.
-
https://github.com/crev-dev/cargo-crev https://crates.io/crates/cargo-audit
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
Oh that's pretty interesting, thanks for the comment. I wasn't able to find your working group because it doesn't appear here. So I made a proposal to create a new working group for dependency security, which might overlap with yours.
-
ua-parser-js
UAParser.js - Free & open-source JavaScript library to detect user's Browser, Engine, OS, CPU, and Device type/model. Runs either in browser (client-side) or node.js (server-side).
-
-
The Rust Secure Code Working Group, of which I'm a member, is one. We maintain the RUSTSEC security advisory database at:
-
cargo-deny
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
The library team is about developing the standard library as far as I'm aware ? If they are actively maintaining external crates, I have been unable to find which. They have a repo here : https://github.com/rust-lang/libs-team
-
However, if you want to browse source code in a way that's assured to match what's published in the crate, use https://docs.rs, which has gained a number of Rust-specific features in its source code viewer which, IMO, are making it a better place to browse Rust source code than GitHub anyway.
-
