Rust policy
Dylint
Runs custom Rust lints from dynamic libraries rather than a single fixed lint set.
View on GitHub
trailofbits/dylint
Best for
Encoding organization-specific security rules directly into the toolchain.
Surface
Rust policy
Catalog group
Verify supply chains and enforce engineering policy
Repository
trailofbits/dylint
From the README
Run Rust lints from dynamic libraries (EuroRust 2024 [slides] and [video]) Dylint is a Rust linting tool, similar to Clippy. But whereas Clippy runs a predetermined, static set of lints, Dylint runs lints from user-specified, dynamic libraries. Thus, Dylint allows developers to maintain their own personal lint collections. Contents Documentation is also available on [how Dylint works].Read the full README on GitHub ↗
Related tools · Verify supply chains and enforce engineering policy
- rekor-monitor Transparency-log monitoring for Sigstore's Rekor so maintainers can watch for suspicious signing events.
- It-Depends Dependency-graph and SBOM builder for packages and arbitrary source repositories.
- cargo-unmaintained Identifies unmaintained packages in Rust projects before they quietly become inherited risk.
- semgrep-rules Public Semgrep queries developed during audits, research, and internal engineering work.
- codeql-queries Public CodeQL query packs used to express deeper code and data-flow policies.