nyx/src/patterns/mod.rs

pub mod rust;
pub mod typescript;
pub mod javascript;
pub mod cpp;
pub mod c;
mod java;
mod go;
mod php;
mod python;

use std::collections::HashMap;
use std::fmt;
use std::str::FromStr;
use console::style;
use serde::{Deserialize, Serialize};
use once_cell::sync::Lazy;

#[derive(Debug, Copy, Clone, Eq, PartialEq, Ord, PartialOrd, Serialize, Deserialize)]
pub enum Severity { High, Medium, Low }

impl fmt::Display for Severity {
  fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
    let s = match *self {
      Severity::High   => style("HIGH").red().bold().to_string(),
      Severity::Medium => style("MEDIUM").yellow().bold().to_string(),
      Severity::Low    => style("LOW").cyan().bold().to_string(),
    };
    f.write_str(&s)
  }
}

impl Severity {
  /// Textual value stored in SQLite.
  pub fn as_db_str(self) -> &'static str {
    match self {
      Severity::High   => "HIGH",
      Severity::Medium => "MEDIUM",
      Severity::Low    => "LOW",
    }
  }
}

impl FromStr for Severity { // TODO: FIX
  type Err = ();

  fn from_str(input: &str) -> Result<Self, Self::Err> {
    match input.to_lowercase().as_str() {
      "medium" => Ok(Severity::Medium),
      "high"   => Ok(Severity::High),
      _        => Ok(Severity::Low),
    }
  }
}

// /// How bad / noisy a pattern is considered.
// #[derive(Debug, Clone, Copy, Serialize, Deserialize, PartialEq, PartialOrd)]
// pub enum Severity {
//   Low,
//   Medium,
//   High,
// }
// 
// impl Severity {
//   pub(crate) fn as_db_str(&self) -> &str {
//     todo!()
//   }
// }

/// One AST pattern with a tree-sitter query and meta-data.
#[derive(Debug, Clone, Serialize)]
pub struct Pattern {
  /// Unique identifier (snake-case preferred).
  pub id: &'static str,
  /// Human-readable explanation.
  pub description: &'static str,
  /// tree-sitter query string.
  pub query: &'static str,
  /// Rough severity bucket.
  pub severity: Severity,
}


/// Global, lazily-initialised registry: lang-name → pattern slice
static REGISTRY: Lazy<HashMap<&'static str, &'static [Pattern]>> = Lazy::new(|| {
  let mut m = HashMap::new();

  // ---- Rust ----
  m.insert("rust", rust::PATTERNS);

  // ---- TypeScript ----
  m.insert("typescript", typescript::PATTERNS);
  m.insert("ts", typescript::PATTERNS);
  m.insert("tsx", typescript::PATTERNS);

  // ---- JavaScript ----
  m.insert("javascript", javascript::PATTERNS);
  m.insert("js", javascript::PATTERNS);

  // ---- C & C++ ----
  m.insert("c", c::PATTERNS);
  m.insert("cpp", cpp::PATTERNS);
  m.insert("c++", cpp::PATTERNS);

  // ---- Other languages in the folder ----
  m.insert("java", java::PATTERNS);
  m.insert("go", go::PATTERNS);
  m.insert("php", php::PATTERNS);
  m.insert("python", python::PATTERNS);
  m.insert("py", python::PATTERNS);

  tracing::debug!("AST-pattern registry initialised ({} languages)", m.len());
  
  m
});

/// Return all patterns for the requested language (case-insensitive).
///
/// Unknown languages yield an **empty** `Vec`.
pub fn load(lang: &str) -> Vec<Pattern> {
  let key = lang.to_ascii_lowercase();
  REGISTRY
    .get(key.as_str())
    .copied()            // `&'static [Pattern]` → *copy* the slice pointer
    .unwrap_or(&[])      // unknown lang ⇒ empty slice
    .to_vec()            // caller owns the `Vec`
}
Add multi-language AST-pattern scanning support - Introduced `patterns` module with language-specific vulnerability patterns. - Added `query_cache` utility for caching compiled queries. - Expanded `scan.rs` to support scanning multiple languages dynamically. - Updated `Cargo.toml` with additional tree-sitter dependencies. - Added severity filtering to `ScannerConfig` for better configuration. 2025-06-17 01:17:48 +02:00			`pub mod rust;`
			`pub mod typescript;`
			`pub mod javascript;`
			`pub mod cpp;`
			`pub mod c;`
			`mod java;`
			`mod go;`
			`mod php;`
			`mod python;`

			`use std::collections::HashMap;`
Add error handling with `NyxError` and refactor console output formatting - Introduced `NyxError` and `NyxResult` for unified error handling across modules. - Refactored `scan.rs`, `index.rs`, and `walk.rs` with improved error management and consistent formatting. - Replaced existing error handling in `database.rs` with `NyxResult`. - Improved database maintenance by integrating `vacuum` and `clear` methods into workflows. - Added `dashmap` for efficient parallel diagnostics result aggregation in `scan_with_index_parallel`. - Enhanced readability and formatting of console outputs in multiple modules. 2025-06-23 20:27:16 +02:00			`use std::fmt;`
Refactor database schema and scanning process: - Introduced `issues` table for detailed vulnerability storage. - Enhanced `files` table with project scoping and unique constraints. - Replaced `OutputFormat` enum with `String` for flexibility. - Added support for formatted console output of scan results. - Integrated file and issue updating logic for incremental scans. - Optimized scanning by leveraging database-stored issues. 2025-06-17 16:46:45 +02:00			`use std::str::FromStr;`
Add error handling with `NyxError` and refactor console output formatting - Introduced `NyxError` and `NyxResult` for unified error handling across modules. - Refactored `scan.rs`, `index.rs`, and `walk.rs` with improved error management and consistent formatting. - Replaced existing error handling in `database.rs` with `NyxResult`. - Improved database maintenance by integrating `vacuum` and `clear` methods into workflows. - Added `dashmap` for efficient parallel diagnostics result aggregation in `scan_with_index_parallel`. - Enhanced readability and formatting of console outputs in multiple modules. 2025-06-23 20:27:16 +02:00			`use console::style;`
Add multi-language AST-pattern scanning support - Introduced `patterns` module with language-specific vulnerability patterns. - Added `query_cache` utility for caching compiled queries. - Expanded `scan.rs` to support scanning multiple languages dynamically. - Updated `Cargo.toml` with additional tree-sitter dependencies. - Added severity filtering to `ScannerConfig` for better configuration. 2025-06-17 01:17:48 +02:00			`use serde::{Deserialize, Serialize};`
			`use once_cell::sync::Lazy;`

Add error handling with `NyxError` and refactor console output formatting - Introduced `NyxError` and `NyxResult` for unified error handling across modules. - Refactored `scan.rs`, `index.rs`, and `walk.rs` with improved error management and consistent formatting. - Replaced existing error handling in `database.rs` with `NyxResult`. - Improved database maintenance by integrating `vacuum` and `clear` methods into workflows. - Added `dashmap` for efficient parallel diagnostics result aggregation in `scan_with_index_parallel`. - Enhanced readability and formatting of console outputs in multiple modules. 2025-06-23 20:27:16 +02:00			`#[derive(Debug, Copy, Clone, Eq, PartialEq, Ord, PartialOrd, Serialize, Deserialize)]`
			`pub enum Severity { High, Medium, Low }`

			`impl fmt::Display for Severity {`
			`fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {`
			`let s = match *self {`
			`Severity::High => style("HIGH").red().bold().to_string(),`
			`Severity::Medium => style("MEDIUM").yellow().bold().to_string(),`
			`Severity::Low => style("LOW").cyan().bold().to_string(),`
			`};`
			`f.write_str(&s)`
			`}`
Add multi-language AST-pattern scanning support - Introduced `patterns` module with language-specific vulnerability patterns. - Added `query_cache` utility for caching compiled queries. - Expanded `scan.rs` to support scanning multiple languages dynamically. - Updated `Cargo.toml` with additional tree-sitter dependencies. - Added severity filtering to `ScannerConfig` for better configuration. 2025-06-17 01:17:48 +02:00			`}`

Add error handling with `NyxError` and refactor console output formatting - Introduced `NyxError` and `NyxResult` for unified error handling across modules. - Refactored `scan.rs`, `index.rs`, and `walk.rs` with improved error management and consistent formatting. - Replaced existing error handling in `database.rs` with `NyxResult`. - Improved database maintenance by integrating `vacuum` and `clear` methods into workflows. - Added `dashmap` for efficient parallel diagnostics result aggregation in `scan_with_index_parallel`. - Enhanced readability and formatting of console outputs in multiple modules. 2025-06-23 20:27:16 +02:00			`impl Severity {`
			`/// Textual value stored in SQLite.`
			`pub fn as_db_str(self) -> &'static str {`
			`match self {`
			`Severity::High => "HIGH",`
			`Severity::Medium => "MEDIUM",`
			`Severity::Low => "LOW",`
			`}`
			`}`
Add multi-language AST-pattern scanning support - Introduced `patterns` module with language-specific vulnerability patterns. - Added `query_cache` utility for caching compiled queries. - Expanded `scan.rs` to support scanning multiple languages dynamically. - Updated `Cargo.toml` with additional tree-sitter dependencies. - Added severity filtering to `ScannerConfig` for better configuration. 2025-06-17 01:17:48 +02:00			`}`

Refactor database schema and scanning process: - Introduced `issues` table for detailed vulnerability storage. - Enhanced `files` table with project scoping and unique constraints. - Replaced `OutputFormat` enum with `String` for flexibility. - Added support for formatted console output of scan results. - Integrated file and issue updating logic for incremental scans. - Optimized scanning by leveraging database-stored issues. 2025-06-17 16:46:45 +02:00			`impl FromStr for Severity { // TODO: FIX`
			`type Err = ();`

			`fn from_str(input: &str) -> Result<Self, Self::Err> {`
			`match input.to_lowercase().as_str() {`
			`"medium" => Ok(Severity::Medium),`
			`"high" => Ok(Severity::High),`
			`_ => Ok(Severity::Low),`
			`}`
			`}`
			`}`

Add error handling with `NyxError` and refactor console output formatting - Introduced `NyxError` and `NyxResult` for unified error handling across modules. - Refactored `scan.rs`, `index.rs`, and `walk.rs` with improved error management and consistent formatting. - Replaced existing error handling in `database.rs` with `NyxResult`. - Improved database maintenance by integrating `vacuum` and `clear` methods into workflows. - Added `dashmap` for efficient parallel diagnostics result aggregation in `scan_with_index_parallel`. - Enhanced readability and formatting of console outputs in multiple modules. 2025-06-23 20:27:16 +02:00			`// /// How bad / noisy a pattern is considered.`
			`// #[derive(Debug, Clone, Copy, Serialize, Deserialize, PartialEq, PartialOrd)]`
			`// pub enum Severity {`
			`// Low,`
			`// Medium,`
			`// High,`
			`// }`
			`//`
			`// impl Severity {`
			`// pub(crate) fn as_db_str(&self) -> &str {`
			`// todo!()`
			`// }`
			`// }`

			`/// One AST pattern with a tree-sitter query and meta-data.`
			`#[derive(Debug, Clone, Serialize)]`
			`pub struct Pattern {`
			`/// Unique identifier (snake-case preferred).`
			`pub id: &'static str,`
			`/// Human-readable explanation.`
			`pub description: &'static str,`
			`/// tree-sitter query string.`
			`pub query: &'static str,`
			`/// Rough severity bucket.`
			`pub severity: Severity,`
			`}`


Refactor database schema and scanning process: - Introduced `issues` table for detailed vulnerability storage. - Enhanced `files` table with project scoping and unique constraints. - Replaced `OutputFormat` enum with `String` for flexibility. - Added support for formatted console output of scan results. - Integrated file and issue updating logic for incremental scans. - Optimized scanning by leveraging database-stored issues. 2025-06-17 16:46:45 +02:00
Add multi-language AST-pattern scanning support - Introduced `patterns` module with language-specific vulnerability patterns. - Added `query_cache` utility for caching compiled queries. - Expanded `scan.rs` to support scanning multiple languages dynamically. - Updated `Cargo.toml` with additional tree-sitter dependencies. - Added severity filtering to `ScannerConfig` for better configuration. 2025-06-17 01:17:48 +02:00			`/// Global, lazily-initialised registry: lang-name → pattern slice`
			`static REGISTRY: Lazy<HashMap<&'static str, &'static [Pattern]>> = Lazy::new(\|\| {`
			`let mut m = HashMap::new();`

			`// ---- Rust ----`
			`m.insert("rust", rust::PATTERNS);`

			`// ---- TypeScript ----`
			`m.insert("typescript", typescript::PATTERNS);`
			`m.insert("ts", typescript::PATTERNS);`
			`m.insert("tsx", typescript::PATTERNS);`

			`// ---- JavaScript ----`
			`m.insert("javascript", javascript::PATTERNS);`
			`m.insert("js", javascript::PATTERNS);`

			`// ---- C & C++ ----`
			`m.insert("c", c::PATTERNS);`
			`m.insert("cpp", cpp::PATTERNS);`
			`m.insert("c++", cpp::PATTERNS);`

			`// ---- Other languages in the folder ----`
			`m.insert("java", java::PATTERNS);`
			`m.insert("go", go::PATTERNS);`
			`m.insert("php", php::PATTERNS);`
			`m.insert("python", python::PATTERNS);`
			`m.insert("py", python::PATTERNS);`

			`tracing::debug!("AST-pattern registry initialised ({} languages)", m.len());`

			`m`
			`});`

			`/// Return all patterns for the requested language (case-insensitive).`
			`///`
			/// Unknown languages yield an empty `Vec`.
			`pub fn load(lang: &str) -> Vec<Pattern> {`
			`let key = lang.to_ascii_lowercase();`
			`REGISTRY`
			`.get(key.as_str())`
			.copied() // `&'static [Pattern]` → copy the slice pointer
			`.unwrap_or(&[]) // unknown lang ⇒ empty slice`
			.to_vec() // caller owns the `Vec`
			`}`