#supply-chain-security #security #supply-chain #audit #cargo-vet

mini-vet

A client for the cargo-vet registry. Fetches security reviews for Rust/Cargo crates.

4 releases (stable)

1.2.0 Mar 20, 2024
1.1.0 Dec 10, 2023
1.0.0 Dec 5, 2023
0.9.0 Dec 4, 2023

#10 in #supply-chain

Download history 14/week @ 2024-07-25 33/week @ 2024-08-01 75/week @ 2024-08-08 14/week @ 2024-08-15 1/week @ 2024-08-22 43/week @ 2024-08-29 21/week @ 2024-09-05 1/week @ 2024-09-12 7/week @ 2024-09-19 2/week @ 2024-09-26

312 downloads per month

MIT/Apache

30KB
575 lines

Minimal cargo-vet client

This is a library that downloads and parses Rust crate reviews in the cargo-vet format. It can be used to build custom tools for auditing supply-chain security, reusing reviews from the cargo-vet registry, or indirectly from cargo-crev or Debian or Guix.

Dependencies

~5–16MB
~206K SLoC