RustSec: rustsec
crate
Client library for accessing the RustSec Security Advisory Database:
fetches the advisory-db (or other compatible) git repository and
audits Cargo.lock
files against it.
About
The rustsec
crate is primarily intended to be used by the cargo-audit crate
for the purposes of identifying vulnerable crates in Cargo.lock files.
However, it may be useful if you would like to consume the RustSec advisory database in other capacities.
Minimum Supported Rust Version
Rust 1.70 or higher.
Minimum supported Rust version can be changed in the future, but it will be done with a minor version bump.
License
Licensed under either of:
- Apache License, Version 2.0 (LICENSE-APACHE or https://www.apache.org/licenses/LICENSE-2.0)
- MIT license (LICENSE-MIT or https://opensource.org/licenses/MIT)
at your option.
Contribution
Unless you explicitly state otherwise, any contribution intentionally submitted for inclusion in the work by you shall be dual licensed as above, without any additional terms or conditions.