Description
Checks Rust dependency lockfiles against known security advisories. It helps developers find crates with reported vulnerabilities before shipping or deploying software.
Use it in Rust projects and CI pipelines as one part of dependency security review. A finding still needs triage, because impact depends on whether the vulnerable code path is actually used.