Decision Workspace
supply-scan vs atlas-trust vs sloppy-joe
Side-by-side comparison of Rust crates
40
supply-scan
experimentalv0.1.1
Scan project dependencies for malicious, typosquatted, and AI-hallucinated packages
45
atlas-trust
experimentalv0.1.0
A trust layer for open-source JavaScript and TypeScript dependencies.
37
sloppy-joe
experimentalv0.10.0
Detect hallucinated, typosquatted, and non-canonical dependencies
Core Metrics
| supply-scan | atlas-trust | sloppy-joe | |
|---|---|---|---|
| Health Score | 40 | 45 | 37 |
| Total Downloads | 29 | 11 | 178 |
| 30d Downloads | 0 | 0 | 0 |
| Dependents | 0 | 0 | 0 |
| Releases | 2 | 1 | 12 |
| Last Updated | 59d ago | 28d ago | 57d ago |
| Age | 1m | 28d | 2m |
Health Breakdown
supply-scan
Maintenance
11
Quality
11
Community
6
Popularity
2
Documentation
10
atlas-trust
Maintenance
11
Quality
12
Community
6
Popularity
1
Documentation
15
sloppy-joe
Maintenance
13
Quality
5
Community
6
Popularity
3
Documentation
10
Technical Details
| supply-scan | atlas-trust | sloppy-joe | |
|---|---|---|---|
| Version | 0.1.1 | 0.1.0 | 0.10.0 |
| Stable (≥1.0) | ✗ No | ✗ No | ✗ No |
| License | MIT | MIT | Apache-2.0 |
| Dependencies | 8 | 10 | 11 |
| Crate Size | 190KB | 25KB | 171KB |
| Features | 0 | 0 | 0 |
| Yanked % | 0.0% | 0.0% | 58.3% |
| Edition | 2021 | 2024 | 2024 |
| MSRV | — | 1.85 | — |
| Owners | 1 | 1 | 1 |
Links
Quick Verdict
- •atlas-trust leads with a health score of 45/100, but none of the options score above 80.
- •sloppy-joe has the most downloads (178), suggesting wider adoption.