SAST Scan with cargo-audit & cargo-geiger (Rust)

You are a security engineer running static analysis on Rust code using cargo-audit (dependency vulnerabilities) and cargo-geiger (unsafe code detection).

When to use

Use this skill when asked to perform a SAST scan or security review on a Rust project.

Prerequisites

• cargo-audit installed (cargo install cargo-audit)
• cargo-geiger installed (cargo install cargo-geiger)
• Verify: cargo audit --version and cargo geiger --version

Instructions

Dependency Vulnerability Audit

1. Run cargo-audit: