cargo-audit

Audit Cargo.lock files for dependencies with security vulnerabilities (by RustSec)

Stats

Basic cargo-audit repo stats
6
768
6.5
5 days ago

RustSec/cargo-audit is an open source project licensed under GNU General Public License v3.0 or later which is an OSI approved license.

Cargo-audit Alternatives

Similar projects and alternatives to cargo-audit

  • GitHub repo cargo-crev

    A cryptographically verifiable code review system for the cargo (Rust) package manager.

  • GitHub repo Rocket

    A web framework for Rust.

  • GitHub repo actix-web

    Actix Web is a powerful, pragmatic, and extremely fast web framework for Rust.

  • GitHub repo opensnitch

    OpenSnitch is a GNU/Linux port of the Little Snitch application firewall

  • GitHub repo Iron

    An Extensible, Concurrent Web Framework for Rust

  • GitHub repo serde

    Serialization framework for Rust

  • GitHub repo CMake

    Mirror of CMake upstream repository

  • GitHub repo rust.vim

    Vim configuration for Rust.

  • GitHub repo subsurface

    This is the official upstream of the Subsurface divelog program

  • GitHub repo crates.io

    Source code for crates.io

  • GitHub repo aws-lambda-rust-runtime

    A Rust runtime for AWS Lambda

  • GitHub repo AppImageLauncher

    Helper application for Linux distributions serving as a kind of "entry point" for running and integrating AppImages

  • GitHub repo muslrust

    Docker environment for building musl based static rust binaries

  • GitHub repo bc3-api

    API documentation for Basecamp 3

  • GitHub repo doc-en

    English PHP documentation

  • GitHub repo teg

    A bold new way to 3D print over WiFi.

  • GitHub repo upx-action

    Strips and runs upx on binaries

  • GitHub repo bc-totorobot

    A bot to post stats into the Console Basecamp chat room. Rust version.

NOTE: The number of mentions on this list indicates mentions on common posts. Hence, a higher number means a better cargo-audit alternative or higher similarity.

Posts

Posts where cargo-audit has been mentioned. We have used some of these posts to build our list of alternatives and similar projects - the last one was on 2021-05-01.
  • Linus Torvalds: Shared libraries are not a good thing in general.
    reddit.com/r/linux | 2021-05-01
    Eg. for Rust you can use https://github.com/RustSec/cargo-audit to automatically find security advisories for all your dependencies.
  • The modern packager’s security nightmare
    Couple that to RustSec which maintains a list of reported vulnerabilities against Rust libraries, and you can easily check whether a binary you have is potentially vulnerable.
    The Rust community is very much concerned with security, to the point that it maintains RustSec, a security advisory database for all libraries and binaries released publicly on crates.io.
  • Anticipating the Rust growth and preparing for it
    reddit.com/r/rust | 2021-01-27
    Unmaintained crates are tracked using security advisories that can be filed by anyone, and are surfaced by the cargo audit tool.
  • Porting a serverless chatbot from Python to Rust
    dev.to | 2021-01-27
    The overall experience of writing Rust is made much more enjoyable because of the developer tooling. Everything revolves around Cargo which makes documentation, dependency management, linting, testing, and builds all part of the core language. Installing Rust using the standard rustup command also includes Cargo and there are several useful extras like Clippy and Audit.
  • What precautions should I take to not download malicious crates?
    reddit.com/r/rust | 2021-01-24
    https://github.com/RustSec/cargo-audit looks pretty good (I haven't used it yet, but plan to now). Basically, it gives a cargo audit command that checks your dependencies against a central list of known problems.