Skip to main content

In the light of the #xz backdoor, if you're a #RustLang developer, I recommend you familiarize yourself with cargo vet:

https://mozilla.github.io/cargo-vet/

Auditing your dependencies, or relying on external audits, adds an important layer of protection.

It's not a silver bullet against bad dependencies as there's no such thing. However adding more layers of protection makes attackers' lives harder and this is one of them.

Introduction - Cargo Vet

mozilla.github.io
#rustlang #xz