1. Rust CI Pipeline Missing Dependency Vulnerability Scanning: Transitive CVEs in ureq, image, rten, rayon Go Undetected
A security audit has identified a critical gap in the CI pipeline of a Rust project: the workflow at `.github/workflows/rust.yml` runs standard checks including fmt, build, clippy, and test, but entirely omits dependency vulnerability scanning. The absence of tools like `cargo audit` or `cargo deny` means known CVEs in...