cargo-audit
« Back to VersTracker
Description:
Audit Cargo.lock files for crates with security vulnerabilities
Type: Formula  |  Latest Version: 0.22.0@0  |  Tracked Since: Dec 17, 2025
Links: Homepage  |  formulae.brew.sh
Category: Security
Tags: rust security dependencies vulnerability-scanner audit
Install: brew install cargo-audit
About:
cargo-audit is a command-line tool that scans Cargo.lock files to identify Rust crates with known security vulnerabilities by checking against the RustSec Advisory Database. It helps developers proactively detect and mitigate security risks in their project dependencies. The tool can also be integrated into CI/CD pipelines to enforce security standards automatically.
Key Features:
  • Checks dependencies against the RustSec Advisory Database
  • Provides actionable remediation advice for vulnerabilities
  • Supports CI/CD integration for automated security checks
  • Can detect yanked crates from crates.io
Use Cases:
  • Preventing the use of vulnerable dependencies in new Rust projects
  • Auditing existing projects for known security issues
  • Enforcing security policies in continuous integration pipelines
Alternatives:
  • cargo-deny – cargo-deny is more comprehensive, handling both security advisories and license compliance, whereas cargo-audit focuses specifically on security vulnerabilities.
License: Apache-2.0 OR MIT
Dependencies: openssl@3
Bottles available for: arm64_tahoe, arm64_sequoia, arm64_sonoma, sonoma, arm64_linux, x86_64_linux
Version History
Detected Version Rev Change Commit
Nov 7, 2025 10:53pm 0 VERSION_BUMP ab98f73b
Sep 12, 2025 6:13pm 0 VERSION_BUMP 9de6049f
Nov 17, 2024 8:34pm 0 VERSION_BUMP 3b474321
Oct 29, 2024 11:08pm 0 VERSION_BUMP 60fe0297
« Back to VersTracker  |  Browse Packages  |  About