logo

Rust crates reviews

Cryptographically verifiable, distributed dependency reviews

reviewer: kaiserkarel

https://lib.rs/kaiserkarel

$ cargo crev repo fetch url https://github.com/kaiserkarel/crev-proofs
$ cargo crev id trust h2qAMGy777KobqCn93bmCJ2EFJUGTc42Y_SHkFDegTw

repo: https://github.com/kaiserkarel/crev-proofs

crate version
rating
date
reviewer
thoroughness, understanding
positive
2022-01-17
kaiserkarel
medium, high

A very commonly used crate by the community. Has no backdoors nor obvious attack vectors.

positive
2022-01-17
kaiserkarel
medium, high

A very commonly used crate by the community. Has no backdoors nor obvious attack vectors.

positive
2022-01-16
kaiserkarel
low, medium
positive
2022-01-16
kaiserkarel
low, medium
positive
2022-01-16
kaiserkarel
high, high

Uses build.rs to generate all code, as recursion can be configured.

positive
2022-01-16
kaiserkarel
low, medium
positive
2022-01-16
kaiserkarel
low, medium
positive
2022-01-16
kaiserkarel
high, high

Uses build.rs to generate all code, as recursion can be configured.

positive
2022-01-17
kaiserkarel
high, medium

No backdoors, but potential for malicious code as it interacts with sockets and network.

positive
2022-01-17
kaiserkarel
high, medium

No backdoors, but potential for malicious code as it interacts with sockets and network.

positive
2022-01-17
kaiserkarel
high, medium

Little malicious potential, no build.rs and minimal dependencies. Did not evaluate the correctness of the cryptography.

positive
2022-01-17
kaiserkarel
high, medium

Little malicious potential, no build.rs and minimal dependencies. Did not evaluate the correctness of the cryptography.

positive
2022-01-17
kaiserkarel
high, medium

Little malicious potential, no build.rs and minimal dependencies. Did not evaluate the correctness of the cryptography.

positive
2022-01-17
kaiserkarel
high, medium

Little malicious potential, no build.rs and minimal dependencies. Did not evaluate the correctness of the cryptography.

positive
2022-01-16
kaiserkarel
medium, medium

No backdoors etc found, mainly looked at risks for supply-chain attacks.

positive
2022-01-17
kaiserkarel
medium, medium

No backdoors etc found, mainly looked at risks for supply-chain attacks.

positive
2022-01-16
kaiserkarel
medium, medium

No backdoors etc found, mainly looked at risks for supply-chain attacks.

positive
2022-01-17
kaiserkarel
medium, medium

No backdoors etc found, mainly looked at risks for supply-chain attacks.

positive
2022-01-17
kaiserkarel
medium, medium

gimli is an organisation from reputable rust contributors. Object itself is maintained by Amanieu and Alex, who are both part of the rust team.

positive
2022-01-17
kaiserkarel
medium, medium

gimli is an organisation from reputable rust contributors. Object itself is maintained by Amanieu and Alex, who are both part of the rust team.

strong
2022-01-17
kaiserkarel
high, high

malicious potential: low
file-read/write: does not access files
Unsafe: uses some unsafe, which does not trigger UB

strong
2022-01-17
kaiserkarel
high, high

malicious potential: low
file-read/write: does not access files
Unsafe: uses some unsafe, which does not trigger UB

strong
2022-01-17
kaiserkarel
high, high

malicious potential: low
file-read/write: does not access files
Unsafe: uses some unsafe, which does not trigger UB

strong
2022-01-17
kaiserkarel
high, high

malicious potential: low
file-read/write: does not access files
Unsafe: uses some unsafe, which does not trigger UB

strong
2022-01-17
kaiserkarel
high, high

malicious potential: low
file-read/write: does not access files
Unsafe: uses some unsafe, which does not trigger UB

strong
2022-01-17
kaiserkarel
high, high

malicious potential: low
file-read/write: does not access files
Unsafe: uses some unsafe, which does not trigger UB

positive
2022-01-16
kaiserkarel
medium, high

Checked for backdoors and unsafety. Seems to not contain UB, however it has some incorrect comments explaining why it is safe.

positive
2022-01-17
kaiserkarel
medium, high

Checked for backdoors and unsafety. Seems to not contain UB, however it has some incorrect comments explaining why it is safe.

positive
2022-01-16
kaiserkarel
medium, high

Checked for backdoors and unsafety. Seems to not contain UB, however it has some incorrect comments explaining why it is safe.

positive
2022-01-17
kaiserkarel
medium, high

Checked for backdoors and unsafety. Seems to not contain UB, however it has some incorrect comments explaining why it is safe.

positive
2022-01-17
kaiserkarel
high, medium

Misses explanations on the use of unsafe. No backdoors and little potential. No dependencies.

Coverage is lacking, no proptests nor fuzzing.

positive
2022-01-17
kaiserkarel
high, medium

Misses explanations on the use of unsafe. No backdoors and little potential. No dependencies.

Coverage is lacking, no proptests nor fuzzing.

positive
2022-01-17
kaiserkarel
high, medium

Misses explanations on the use of unsafe. No backdoors and little potential. No dependencies.

Coverage is lacking, no proptests nor fuzzing.

positive
2022-01-17
kaiserkarel
high, medium

Misses explanations on the use of unsafe. No backdoors and little potential. No dependencies.

Coverage is lacking, no proptests nor fuzzing.

© bestia.dev 2021, MIT Licence, Version: 2021.1208.1729

Open source repository for this web app: https://github.com/bestia-dev/cargo_crev_web/