📦 cargo-autodd

A Cargo subcommand that automatically manages dependencies in your Rust projects.

🔍 Overview

cargo-autodd simplifies Rust dependency management by automatically adding required crates to your Cargo.toml based on use statements and extern crate declarations in your code.

✨ Features

• 🔎 Scans Rust source files for imports
• 🤖 Automatically detects required dependencies
• ⬆️ Updates Cargo.toml with the latest stable versions
• 🗑️ Removes unused dependencies
• 🛠️ Leverages rust-analyzer for better code analysis (when available)
• 🧹 Removes unused dependencies
• 📊 Generates dependency usage reports
• 🔒 Checks for security vulnerabilities
• 🏢 Supports Cargo workspaces and monorepo structures
• 🛡️ Handles internal crates with path dependencies correctly
• 🐛 Debug mode for detailed analysis

📥 Installation

cargo install cargo-autodd

⚙️ Requirements

• 🦀 Rust 1.56.0 or later
• 📦 Cargo
• 🔧 rust-analyzer (optional, but recommended)

🚀 Usage

Automatic Dependency Management

# Analyze and update dependencies in the current project
cargo autodd

# Run with debug mode for detailed analysis
cargo autodd --debug
# or
cargo autodd -d

Update Dependencies

# Check and update all dependencies to their latest versions
cargo autodd update

Generate Reports

# Generate a detailed dependency usage report
cargo autodd report

Security Check

# Check for known security vulnerabilities
cargo autodd security

Monorepo Usage

# Run in the root of your workspace to analyze all crates
cargo autodd

# Run in a specific crate directory within the workspace
cd crates/my-crate
cargo autodd

When using cargo-autodd in a monorepo:

• Internal crates with path dependencies are automatically detected
• The tool respects publish = false settings
• Dependencies are correctly managed across the workspace

Debug Mode

In debug mode, the following detailed information is displayed:

• 🔍 Path of detected Rust files
• 📝 Content of each line being processed
• 🔎 Detected use statements and base crate names
• 📦 Details of nested imports
• 🔧 Detection of extern crate statements
• 📊 Analysis results of each file
• 📋 Final list of crate references

🔄 How It Works

1. 📝 Analyzes your Rust source files
2. 🔍 Detects import statements and external crate declarations
3. ⚡ Updates Cargo.toml with required dependencies
4. ✅ Verifies changes with cargo check
5. 🔒 Checks for security vulnerabilities using the RustSec Advisory Database
6. 📊 Generates detailed reports about dependency usage

🏢 Monorepo Support

cargo-autodd fully supports Cargo workspaces and monorepo structures:

• 🔄 Correctly detects and handles internal crates within a workspace
• 🛡️ Respects publish = false settings for internal crates
• 🔗 Properly handles path dependencies in both standard and inline table formats:

  # Both formats are supported:
  internal-crate = { path = "../internal-crate" }
  
  [dependencies.another-internal-crate]
  path = "../another-internal-crate"
  

• 🚫 Avoids searching for internal crates on crates.io
• 🧩 Works with workspace inheritance for dependency management

This ensures that your internal crates that aren't meant to be published to crates.io are handled correctly, avoiding errors like Crate 'internal_crate' not found on crates.io.

👥 Contributing

Contributions are welcome! Please feel free to submit a Pull Request.

📜 License

This project is licensed under the MIT License - see the LICENSE file for details.

👤 Author

nwiizo (@nwiizo)

🎉 Related Projects

• cargo.nvim