AI-powered
podcast player
Listen to all your favourite podcasts with AI-powered features
Introduction
Sergey Davidov, also known online as Snatsul, is working on the project called Cargo Auditable. It's a tooling to check for vulnerabilities at the source level in Rust. Right now there is no way of knowing which dependencies went into your final compile program. The details are most subtle because you cannot just embed the Cargo Lock due to its format.