Rust Application Analysis


The Cargo coordinate based matching feature provides the ability to scan and evaluate Rust dependencies found in the Cargo.lock file.

What is supported

Files named Cargo.lock will be analyzed

Integrations with Cargo scanning support

  • CLI from version 89
  • Jenkins from version TBA
  • Bamboo from version TBA

Steps to analyze using the CLI

Invoke a CLI scan of a directory or subdirectories containing a Cargo.lock file.  Instructions on how to do this can be found here: Nexus IQ CLI.

Example Cargo.lock file 

name = "core-nightly"
version = "1.26.2"

name = "grin"
version = "1.0.0"

name = "protobuf"
version = "2.5.0"

Output from CLI

Dashboard results

Report results