cargo-deny
« Back to VersTracker
Description:
Cargo plugin for linting your dependencies
Type: Formula  |  Latest Version: 0.18.9@0  |  Tracked Since: Dec 17, 2025
Links: Homepage  |  formulae.brew.sh
Category: Developer tools
Tags: rust cargo security dependencies linting compliance
Install: brew install cargo-deny
About:
Cargo-deny is a Cargo plugin that acts as a gatekeeper for your Rust project's dependencies. It scans your dependency graph for licensing conflicts, security vulnerabilities, and duplicate crates. This tool helps maintain compliance and security standards across large codebases and CI pipelines.
Key Features:
  • Comprehensive license checking with allow/deny lists
  • Security vulnerability detection via RUSTSEC advisory database
  • Dependency duplication detection and reporting
  • Highly configurable through a deny.toml file
  • Fast scanning optimized for large dependency trees
Use Cases:
  • Enforcing open source license compliance in commercial projects
  • CI/CD pipeline integration to prevent vulnerable dependencies
  • Auditing existing projects for license conflicts and security issues
Alternatives:
  • cargo-license – Focuses only on license reporting without security checks
  • cargo-audit – Security-focused only, lacks license checking features
License: Apache-2.0 OR MIT
Bottles available for: arm64_tahoe, arm64_sequoia, arm64_sonoma, sonoma, arm64_linux, x86_64_linux
Version History
Detected Version Rev Change Commit
Dec 8, 2025 1:56pm 0 VERSION_BUMP deb75ab6
Nov 24, 2025 10:53am 0 VERSION_BUMP 37e89582
Sep 12, 2025 5:58pm 0 VERSION_BUMP 9536f5b5
Nov 17, 2024 8:34pm 0 VERSION_BUMP 968bde88
Oct 27, 2024 11:42pm 0 VERSION_BUMP 516e4380