#advisory #vulnerabilities #security #audit #rustsec #git-repository #cargo-lock

yanked rustsec-with-git2-v16

Client library for the RustSec security advisory database

1 unstable release

0.28.3 Nov 17, 2023
0.27.0 Jul 31, 2023
0.26.5 Mar 2, 2023
0.26.4 Feb 7, 2023

#2 in #rustsec

49 downloads per month

Apache-2.0 OR MIT

510KB
10K SLoC

RustSec: rustsec crate

Latest Version Docs Build Status Safety Dance MSRV Apache 2.0 OR MIT licensed Project Chat

Client library for accessing the RustSec Security Advisory Database: fetches the advisory-db (or other compatible) git repository and audits Cargo.lock files against it.

Documentation

About

The rustsec crate is primarily intended to be used by the cargo-audit crate for the purposes of identifying vulnerable crates in Cargo.lock files.

However, it may be useful if you would like to consume the RustSec advisory database in other capacities.

Minimum Supported Rust Version

Rust 1.67 or higher.

Minimum supported Rust version can be changed in the future, but it will be done with a minor version bump.

License

Licensed under either of:

at your option.

Contribution

Unless you explicitly state otherwise, any contribution intentionally submitted for inclusion in the work by you shall be dual licensed as above, without any additional terms or conditions.

Dependencies

~2–21MB
~344K SLoC