appendix A. Thinking about security

When developing an API or other web services, you have to think about how to secure your endpoints, validate the data that comes in, and understand how an attacker might abuse your application. These topics span multiple books and can’t be covered here. However, what we can do in the scope of this book is introduce tools you can use to inspect and verify your Rust code, so at least this aspect of the security audit can be done.

A.1 Verify your dependencies for security issues

Building a Rust codebase involves pulling in sometimes hundreds of dependencies. Verifying them all by hand is tedious and, dare I say it, impossible. A CLI tool called Cargo-crev can help you with that task. This code review system enables ...

Get Rust Web Development now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Rust Web Development by Bastian Gruber

appendix A. Thinking about security

A.1 Verify your dependencies for security issues

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly