cargo-deny ☆

« Back to VersTracker

Description:
Cargo plugin for linting your dependencies

Type: Formula | Latest Version: 0.18.9@0 | Tracked Since: Dec 17, 2025

Links: Homepage | formulae.brew.sh

Category: Developer tools

Tags: rust cargo security dependencies linting compliance

Install: brew install cargo-deny

About:
Cargo-deny is a Cargo plugin that acts as a gatekeeper for your Rust project's dependencies. It scans your dependency graph for licensing conflicts, security vulnerabilities, and duplicate crates. This tool helps maintain compliance and security standards across large codebases and CI pipelines.

Key Features:

Comprehensive license checking with allow/deny lists
Security vulnerability detection via RUSTSEC advisory database
Dependency duplication detection and reporting
Highly configurable through a deny.toml file
Fast scanning optimized for large dependency trees

Use Cases:

Enforcing open source license compliance in commercial projects
CI/CD pipeline integration to prevent vulnerable dependencies
Auditing existing projects for license conflicts and security issues

Alternatives:

cargo-license – Focuses only on license reporting without security checks
cargo-audit – Security-focused only, lacks license checking features

License: Apache-2.0 OR MIT

Bottles available for: arm64_tahoe, arm64_sequoia, arm64_sonoma, sonoma, arm64_linux, x86_64_linux

Version History

Detected	Change	Commit
Dec 8, 2025 1:56pm	VERSION_BUMP	deb75ab6
Nov 24, 2025 10:53am	VERSION_BUMP	37e89582
Sep 12, 2025 5:58pm	VERSION_BUMP	9536f5b5
Nov 17, 2024 8:34pm	VERSION_BUMP	968bde88
Oct 27, 2024 11:42pm	VERSION_BUMP	516e4380