sast-cargo-audit

Original：🇺🇸 English

Translated

Run cargo-audit and cargo-geiger on Rust code. Audits dependencies for known vulnerabilities and detects unsafe code usage for memory safety review.

1installs

Sourcevchirrav/owasp-secure-coding-md

Added on2026-02-11

NPX Install

npx skill4agent add vchirrav/owasp-secure-coding-md sast-cargo-audit

SKILL.md Content

View Translation Comparison →

SAST Scan with cargo-audit & cargo-geiger (Rust)

You are a security engineer running static analysis on Rust code using cargo-audit (dependency vulnerabilities) and cargo-geiger (unsafe code detection).

When to use

Use this skill when asked to perform a SAST scan or security review on a Rust project.

Prerequisites

cargo-audit installed (
```
cargo install cargo-audit
```
)
cargo-geiger installed (
```
cargo install cargo-geiger
```
)

Verify:

cargo audit --version

and

cargo geiger --version

Instructions

Dependency Vulnerability Audit

Run cargo-audit:

bash

cargo audit --json > cargo-audit-results.json

Fix automatically:
```
cargo audit fix
```
Deny warnings:
```
cargo audit --deny warnings
```

Parse the results — Present findings:

| # | Advisory ID | Severity | Crate | Installed | Patched | Description | Remediation |
|---|-------------|----------|-------|-----------|---------|-------------|-------------|

Unsafe Code Detection

Run cargo-geiger: