Cryptographically verifiable, distributed dependency reviews
$ cargo crev repo fetch url https://github.com/Canop/crev-proofs
$ cargo crev id trust FBkykBV6YaqAaGoUXyvd-XkEqDYxQNM7EUnZ2nuy-XQ
the crate is short and simple. I'm not 100% sure of all details of the windows checks, though (the linux checks are trivial)
It looks OK... it's a little hard to check all the possible ways such a code could be flawed, though.
As the author I feel positive enough to say this is a good quality crate - but the very limited set of features restricts its direct usage to very specific cases
I don't really know Windows well enough to dive into that part. It looks OK but on the surface for windows
I'm the author. This crate is very simple and includes nothing dangereous.
© Luciano Bestia 2021, MIT Licence, Version: 2020.913.1245
Open source repository for this web app: https://github.com/LucianoBestia/cargo_crev_web/