Aptos Labs released rust-review, a security review plug-in for Rust built in collaboration with Trail of Bits, according to a post on X. The tool was developed by zi0Black of Aptos Labs' Security Team and Paweł Płatek of Trail of Bits.

Rust's compiler enforces memory safety at compile time but does not catch misused unsafe code blocks, silent integer overflows, or nondeterminism—three categories of vulnerabilities that rust-review is designed to flag. The plug-in extends Rust's native checking to cover gaps the language's standard compiler leaves open.

MSB Intel

Trail of Bits maintains the tool in its public skills repository on GitHub, where security-focused code plugins are housed alongside other defensive utilities. The collaboration between Aptos Labs' security team and Trail of Bits, a firm known for smart contract and systems auditing, reflects a pattern of blockchain projects building tooling directly into development workflows rather than treating security as a post-deployment concern.

Aptos is a layer-1 blockchain that uses the Move programming language for smart contracts. The network has positioned security tooling as part of its developer experience, with the rust-review release extending that approach to the lower-level language many blockchain infrastructure components depend on. Unsafe Rust code is common in cryptographic libraries and runtime implementations, where performance-critical sections often bypass Rust's safety guarantees intentionally; rust-review allows developers to audit those sections more systematically.