Rule Reference

SEC452lintai-ai-securitystablemarkdownwarn

AI markdown: cargo http index

AI-native markdown installs Rust packages from an insecure `http://` index

Provider: lintai-ai-security
Surface: markdown
Scope: per_file
Tier: stable
Severity: warn
Confidence: high
Detection: structural
Remediation: message_only

Activation Model

Preset Membership

This rule is part of the builtin activation graph through these preset memberships.

previewmembership

skillsmembership

Lifecycle

Stable Lifecycle Contract

State

stable_gated

Graduation rationale

Checks AI-native markdown for `cargo install` examples that resolve crates through an `http://` index.

Deterministic signal basis

MarkdownSignals exact `cargo install` token analysis with `--index http://` detection inside parsed markdown regions.

Malicious corpus

skill-cargo-http-index

Benign corpus

skill-cargo-https-index-safe

structured evidence required remediation reviewed

Canonical note

Structural stable rule intended as a high-precision check with deterministic evidence.

Nearby Signals

Related Rules

SEC352AI markdown: unscoped Bash tool grantAI-native markdown frontmatter grants unscoped Bash tool accessmarkdownstable

SEC417AI markdown: unpinned pip git installAI-native markdown installs Python packages from an unpinned `git+https://` sourcemarkdownstable

SEC428AI markdown: unsafe Read path grantAI-native markdown frontmatter grants `Read(...)` over an unsafe repo-external pathmarkdownstable

SEC429AI markdown: unsafe Write path grantAI-native markdown frontmatter grants `Write(...)` over an unsafe repo-external pathmarkdownstable

SEC430AI markdown: unsafe Edit path grantAI-native markdown frontmatter grants `Edit(...)` over an unsafe repo-external pathmarkdownstable

SEC431AI markdown: unsafe Glob path grantAI-native markdown frontmatter grants `Glob(...)` over an unsafe repo-external pathmarkdownstable

SEC452 / MD-CARGO-HTTP-INDEX

SEC452 flags AI-native markdown when a cargo install example uses --index http://... or --index=http://....

Why It Matters

cargo install --index http://... removes normal TLS protection from crate index resolution. In shared AI-native instructions, that turns an insecure supply-chain pattern into copy-pastable setup guidance.

Trigger Shape

The rule triggers only when all of these are true:

a parsed markdown region contains cargo install
the same region also contains either --index http:// or --index=http://

The finding points to http://.

Clean Cases

cargo install --index https://...
cargo install examples without --index http://
unrelated prose that mentions http:// outside a matching cargo install form

Trigger Example

bash

cargo install ripgrep --index http://index.example.test/

Safer Example

bash

cargo install ripgrep --index https://index.example.test/

Remediation

Replace the insecure http:// index with a normal TLS-verified https:// source.

AI markdown: cargo http index

Preset Membership

Stable Lifecycle Contract

Related Rules

SEC452 / MD-CARGO-HTTP-INDEX ​

Why It Matters ​

Trigger Shape ​

Clean Cases ​

Trigger Example ​

Safer Example ​

Remediation ​