nix

cargo

Rust friendly bindings to *nix APIs

Audits

PE Patrick Elsen 2026-05-28

nix@0.29.0

nix 0.29.0 wraps the Unix/POSIX syscall API over libc with about 825 focused unsafe FFI sites. Reviewed high-risk paths (cmsg decode, sockaddr length handling, mmap, fork/exec, signal transmutes) uphold their libc preconditions; source is byte-identical to VCS and build.rs is inert. No findings.

build-exec-deterministicbuild-exec-minimalbuild-exec-no-networkbuild-exec-no-write-outbuild-exec-safeconcurrency-documentedconcurrency-safeenvironment-safeexec-safefilesystem-safehas-binarieshas-build-exechas-fuzz-testshas-install-exechas-integration-testshas-property-testshas-unit-testsimpl-algorithmimpl-concurrencyimpl-cryptoimpl-datastructureimpl-interpreterimpl-jitimpl-parserimpl-protocolis-benignnetwork-safeunsafe-documentedunsafe-minimalunsafe-safeuses-concurrencyuses-cryptouses-environmentuses-execuses-filesystemuses-interpreteruses-jituses-networkuses-unsafe