zeroize

v1.8.2 Growing

Securely clear secrets from memory with a simple trait built on stable Rust primitives which guarantee memory is zeroed using an operation will not be 'optimized away' by the compiler. Uses a portable pure Rust implementation that works everywhere, even WASM!

Apache-2.0 OR MIT Edition 2021 MSRV 1.60

Cryptography Memory management Operating systems No standard library #memory#volatile#secure#memset#zero

GitHub ↗ crates.io ↗ Compare with…

Quick Verdict

✓Stable API (1.x for 7+ years)
✓Massive adoption (21.2K crates depend on it)
✓Team maintained (2 owners)
✓Tiny footprint (21KB, 2 deps)
✓Permissive license (Apache-2.0 OR MIT)

Security

Checking security advisories...

Downloads

394.3M

Dependents

21.2K

Releases

Size

21KB

Deep Insights

📊

Steady growth

36.1M downloads in the last 30 days (1.2M/day), up 15% from the previous period.

🏛️

Foundational crate

21.2K crates depend on zeroize — it's part of the Rust ecosystem's core infrastructure. Removing it from your dependency tree would be extremely difficult.

👤

Prolific maintainer

The primary maintainer publishes 215 crates. This suggests deep Rust expertise and long-term commitment to the ecosystem.

✅

Stable for 7+ years

The API has been stable (1.x) for over 7 years with 45 releases. This level of maturity means you can depend on it without worrying about breaking changes.

🪶

Minimal dependencies

Only 2 direct dependencies. Lean dependency tree means faster builds and lower supply chain risk.

📐

Compact crate

At 20KB, zeroize is lightweight. Small crate size correlates with focused, well-scoped functionality.

⚠️

Notable yanked versions

60% of releases have been yanked. Check version history before pinning.

🌟

Used by top crates

Notable dependents include digest, block-buffer, rustls, generic-array, arrayvec. When high-quality crates choose zeroize, it's a strong quality signal.