Rule Reference

SEC451lintai-ai-securitysupply-chainhardeningstablemarkdownwarn

AI markdown: cargo http git install

AI-native markdown installs Rust packages from an insecure `http://` git source

Public lane: supply-chain
Category: hardening
Provider: lintai-ai-security
Scope: per-file
Surface: markdown
Tier: stable
Severity: warn
Confidence: high
Detection: structural
Remediation: message only

How to read this lane

Reproducibility, provenance, and dependency hardening review.

How to read this category

Least-privilege, provenance, or operational hygiene signal.

Activation Model

Preset Activation

These presets explain where this rule appears in the product experience.

supply-chainsidecar lane

Lifecycle

Stable Lifecycle Contract

State

stable

Graduation rationale

Checks AI-native markdown for `cargo install` examples that fetch a crate directly from an `http://` git source.

Deterministic signal basis

MarkdownSignals exact `cargo install` token analysis with `--git http://` detection inside parsed markdown regions.

Malicious corpus

skill-cargo-http-git-install

Benign corpus

skill-cargo-https-git-install-safe

structured evidence required remediation reviewed

Canonical note

Structural stable rule positioned as a supply-chain hardening control: high-precision and actionable, but not a blanket claim of direct repository compromise.

Nearby Signals

Related Rules

SEC417AI markdown: unpinned pip git installAI-native markdown installs Python packages from an unpinned `git+https://` sourcesupply-chainhardeningmarkdown

SEC448AI markdown: pip trusted-hostAI-native markdown installs Python packages with `--trusted-host`supply-chainhardeningmarkdown

SEC449AI markdown: pip http indexAI-native markdown installs Python packages from an insecure `http://` package indexsupply-chainhardeningmarkdown

SEC450AI markdown: npm http registryAI-native markdown installs JavaScript packages from an insecure `http://` registrysupply-chainhardeningmarkdown

SEC452AI markdown: cargo http indexAI-native markdown installs Rust packages from an insecure `http://` indexsupply-chainhardeningmarkdown

SEC453AI markdown: pip http sourceAI-native markdown installs Python packages from an insecure direct `http://` sourcesupply-chainhardeningmarkdown

SEC451 / MD-CARGO-HTTP-GIT-INSTALL

SEC451 flags AI-native markdown when a cargo install example uses --git http://... or --git=http://....

Why It Matters

cargo install --git http://... removes normal TLS protection from crate source retrieval. In shared AI-native instructions, this turns an insecure supply-chain pattern into copy-pastable setup guidance.

Trigger Shape

The rule triggers only when all of these are true:

a parsed markdown region contains cargo install
the same region also contains either --git http:// or --git=http://

The finding points to http://.

Clean Cases

cargo install --git https://...
cargo install examples without --git http://
unrelated prose that mentions http:// outside a matching cargo install form

Trigger Example

bash

cargo install --git http://git.example.test/demo.git

Safer Example

bash

cargo install --git https://git.example.test/demo.git

Remediation

Replace the insecure http:// git source with a normal TLS-verified https:// source.

AI markdown: cargo http git install

Preset Activation

Stable Lifecycle Contract

Related Rules

SEC451 / MD-CARGO-HTTP-GIT-INSTALL ​

Why It Matters ​

Trigger Shape ​

Clean Cases ​

Trigger Example ​

Safer Example ​

Remediation ​