The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning. Learn more →
Advisory-db Alternatives
Similar projects and alternatives to advisory-db
-
-
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
-
-
-
-
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
-
-
-
-
cargo-crev
A cryptographically verifiable code review system for the cargo (Rust) package manager.
-
-
owning-ref-rs
A library for creating references that carry their owner with them.
-
-
-
-
-
regex
An implementation of regular expressions for Rust. This implementation uses finite automata and guarantees linear time matching on all inputs.
-
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
advisory-db reviews and mentions
- Serde-YAML for Rust has been archived
- When Zig is safer and faster than Rust
-
Advisory: Miscompilation in cortex-m-rt 0.7.1 and 0.7.2
You might also want to add this to https://github.com/rustsec/advisory-db so that cargo audit and Dependabot surface it.
-
greater supply chain attack risk due to large dependency trees?
cargo-audit only checks for known issues reported to a vulnerability database.
- capnproto-rust: out-of-bound memory access bug
-
`cargo audit` can now scan compiled binaries
However, I keep getting this error when running cargo audit bin ~/.cargo/bin/*, even if I replace * with a specific binary: Fetching advisory database from `https://github.com/RustSec/advisory-db.git` Loaded 467 security advisories (from C:\Users\jonah\.cargo\advisory-db) Updating crates.io index error: I/O operation failed: The system cannot find the path specified. (os error 3) I'm on Windows 10.
-
Github Dependency graph adds vulnerability alerting support for Rust
FWIW the RustSec database is still not synced into the Github databse on a regular basis, even though they did an initial import of it. So the cargo audit github action is still relevant.
-
Hey Rustaceans! Got a question? Ask here! (18/2022)!
Removing prior log directory: ./target/cargo-checkmate/logs running 7 cargo-checkmate phases cargo-checkmate check... ok. cargo-checkmate format... ok. cargo-checkmate clippy... ok. cargo-checkmate build... ok. cargo-checkmate test... ok. cargo-checkmate doc... ok. cargo-checkmate audit... FAILED. failures: ---- cargo-checkmate audit ---- + ./target/cargo-checkmate/logs/audit.stdout: | Fetching advisory database from `https://github.com/RustSec/advisory-db.git` + ./target/cargo-checkmate/logs/audit.stderr: | thread 'main' panicked at 'called `Option::unwrap()` on a `None` value', /home/finn/.cargo/registry/src/github.com-1ecc6299db9ec823/cargo-checkmate-0.1.11/src/subcommands.rs:63:42 | note: run with `RUST_BACKTRACE=1` environment variable to display a backtrace cargo-checkmate result: FAILED. 6 passed; 1 failed
-
Rust code quality and vulnerability scan tool
If that were true then https://github.com/RustSec/advisory-db/ would not exist.
-
Announcing s2n-quic 1.0
You are correct. Definitely not to pick on the other implementations but through casual testing we've seen all of them panic on messages received over the wire. I don't think any of them have disclosure policies in place and/or there was no advisory issued.
-
A note from our sponsor - WorkOS
workos.com | 29 Mar 2024
Stats
rustsec/advisory-db is an open source project licensed under GNU General Public License v3.0 or later which is an OSI approved license.