Cargo
Rust package manager abuse techniques
critical
Code Execution
Cargo build.rs Build Script Execution
Cargo automatically compiles and executes a build.rs file before building any crate that includes one. The build script runs as a native …
Linux
macOS
Windows
medium
Supply Chain
Cargo Crate Extraction Attacks
Malicious crates published to crates.io can exploit vulnerabilities in Cargo's archive extraction process. These attacks include symlink …
Linux
macOS
Windows
high
Code Execution
Cargo Install from Git Repository
The `cargo install --git` command clones a git repository and builds its contents locally, including executing any build.rs scripts and …
Linux
macOS
Windows
critical
Code Execution
Cargo Procedural Macro Code Execution
Rust procedural macros (proc-macros) are compiled and executed during the compilation of any crate that depends on them. Unlike declarative …
Linux
macOS
Windows