The Rust project updated crates.io to include a Security tab on individual crate pages. The tab shows security advisories drawn from the RustSec database and lists which versions of a crate may have known issues. This change gives developers a way to view advisory information before selecting a crate as a dependency. The tab shows known vulnerabilities for the crate along with the affected version ranges. (Source: crates.io team) Changes to publishing workflows The crates.io … More →
The post Rust package registry adds security tools and metrics to crates.io appeared first on Help Net Security.
http://news.poseidon-us.com/TQTRBS
