https://github.com/rust-secure-code/wg

Coordination repository for the Secure Code Working Group
https://github.com/rust-secure-code/wg

Last synced: 6 months ago
JSON representation

Coordination repository for the Secure Code Working Group

• Host: GitHub
• URL: https://github.com/rust-secure-code/wg
• Owner: rust-secure-code
• Created: 2018-10-13T20:05:24.000Z (over 7 years ago)
• Default Branch: master
• Last Pushed: 2021-06-02T22:16:45.000Z (over 4 years ago)
• Last Synced: 2025-06-01T20:58:26.767Z (8 months ago)
• Size: 19.5 KB
• Stars: 162
• Watchers: 48
• Forks: 10
• Open Issues: 28
• Metadata Files:
  • Readme: README.md
  • Code of conduct: CODE_OF_CONDUCT.md

Awesome Lists containing this project

README

          
# Rust Secure Code Working Group [![Zulip Chat](https://img.shields.io/badge/zulip-join_chat-blue.svg?logo=zulipg)][#wg-secure-code Zulip stream]

![Hermit Ferris](https://avatars2.githubusercontent.com/u/44121472?s=230)

This repository is the central [issue tracker] used by the Secure Code WG to

coordinate efforts towards promoting secure code development in Rust.

## Mission

Our mission is to make it easy to write secure code in Rust.

We have the following goals for the Rust language and ecosystem:

- Most tasks shouldn't require dangerous features such as `unsafe`. This includes FFI.

- Mistakes in security code should be easily caught by machines or, failing

  that, humans aided by machines.

- It should be clear to programmers how to perform security-sensitive tasks.

- Security-critical code which is relied on by Rust programmers should be bug

  free.

  

## Projects

- [cargo-audit]: Audit Rust projects for vulnerable dependencies sourced from the [RustSec Advisory Database][rustsec].

- [cargo-geiger]: Gather statistics on usage of unsafe code in a Rust crate and all its dependencies.

- [cargo-supply-chain]: Gather author, contributor and publisher data on crates in your dependency graph.

- [safety-dance]: Auditing crates for unsafe code which can be safely replaced.

- We also maintain a [list of security-related projects][projects].

## Contact

- **Zulip**: Our official chat is the [#wg-secure-code Zulip stream].

- **Twitter**: Follow us at [@rustsecurecode].

[issue tracker]: https://github.com/rust-secure-code/wg/issues

[cargo-audit]: https://github.com/rustsec/cargo-audit

[cargo-geiger]: https://github.com/rust-secure-code/cargo-geiger

[cargo-supply-chain]: https://github.com/rust-secure-code/cargo-supply-chain

[safety-dance]: https://github.com/rust-secure-code/safety-dance

[rustsec]: https://rustsec.org

[projects]: https://github.com/rust-secure-code/projects

[#wg-secure-code Zulip stream]: https://rust-lang.zulipchat.com/#narrow/stream/146229-wg-secure-code

[@rustsecurecode]: https://twitter.com/rustsecurecode