GitHub

A Closer Look at the Security Risks in the Rust Ecosystem

In this paper, we systematically examine the security risks of the Rust ecosystem by following a mixed- methods approach. We compiled a dataset of 433 vulnerabilities, 300 vulnerable code repositories ...
Security

Sonatype supports secure development in Rust

Sonatype, an end-to-end software supply chain security company, announced today its expanded support for software development in Rust via the Cargo registry to the entire Sonatype product suite. With ...
bitnewsbot

Malicious Rust Crates Steal Ethereum, Solana Wallet Keys

Cybersecurity researchers identified two harmful Rust packages distributed on crates.io that imitated a well-known logging library to steal private crypto wallet keys. The crates, called faster_log ...
GitHub

Rust-Hell/RUF-Research

Rust ecosystem analysis, mainly the Cargo ecosystem. We focus on the research problem: Are there any security issues that have spread through dependencies across the ecosystem? We choose Rust/Cargo ...