apunkt/nyx
1
0
Fork 0
mirror of https://github.com/elicpeter/nyx.git synced 2026-06-21 20:18:06 +02:00
Code Issues Projects Releases Packages Wiki Activity
nyx/src/commands/scan.rs

219 lines
7.5 KiB
Rust
Raw Normal View History

Added foundational modules for core functionalities: - Introduced `walk.rs` as a parallel directory walker for search operations. - Implemented basic index handling in `commands/index.rs`. - Created `utils/config.rs` for configuration management with placeholders for future enhancements.
2025-06-16 16:46:22 +02:00
use crate::utils::project::get_project_info;
Refactor database schema and scanning process: - Introduced `issues` table for detailed vulnerability storage. - Enhanced `files` table with project scoping and unique constraints. - Replaced `OutputFormat` enum with `String` for flexibility. - Added support for formatted console output of scan results. - Integrated file and issue updating logic for incremental scans. - Optimized scanning by leveraging database-stored issues.
2025-06-17 16:46:45 +02:00
use console::style;
Added foundational modules for core functionalities: - Introduced `walk.rs` as a parallel directory walker for search operations. - Implemented basic index handling in `commands/index.rs`. - Created `utils/config.rs` for configuration management with placeholders for future enhancements.
2025-06-16 16:46:22 +02:00
use std::path::Path;
Refactor database connection handling with connection pooling and parallel processing - Introduced `r2d2` connection pooling for SQLite in `database.rs`. - Updated `Indexer` to use pooled connections for improved concurrency. - Replaced sequential processing with `rayon` for parallel file scanning. - Added a `clear` method to `Indexer` for reindexing support. - Enhanced database initialization with `init` and `from_pool` methods. - Updated `Cargo.toml` and `Cargo.lock` to include `r2d2`, `r2d2_sqlite`, and new dependencies.
2025-06-17 20:45:33 +02:00
use std::sync::{Arc, Mutex};
use r2d2::Pool;
use r2d2_sqlite::SqliteConnectionManager;
Refactor database schema and scanning process: - Introduced `issues` table for detailed vulnerability storage. - Enhanced `files` table with project scoping and unique constraints. - Replaced `OutputFormat` enum with `String` for flexibility. - Added support for formatted console output of scan results. - Integrated file and issue updating logic for incremental scans. - Optimized scanning by leveraging database-stored issues.
2025-06-17 16:46:45 +02:00
use crate::database::index::{IssueRow, Indexer};
Refined logging levels across `walk` and `scan` modules for better debugging and severity-based message handling.
2025-06-17 11:35:23 +02:00
use crate::patterns::Severity;
Refactor database schema and scanning process: - Introduced `issues` table for detailed vulnerability storage. - Enhanced `files` table with project scoping and unique constraints. - Replaced `OutputFormat` enum with `String` for flexibility. - Added support for formatted console output of scan results. - Integrated file and issue updating logic for incremental scans. - Optimized scanning by leveraging database-stored issues.
2025-06-17 16:46:45 +02:00
use crate::utils::config::Config;
Add multi-language AST-pattern scanning support - Introduced `patterns` module with language-specific vulnerability patterns. - Added `query_cache` utility for caching compiled queries. - Expanded `scan.rs` to support scanning multiple languages dynamically. - Updated `Cargo.toml` with additional tree-sitter dependencies. - Added severity filtering to `ScannerConfig` for better configuration.
2025-06-17 01:17:48 +02:00
use crate::utils::query_cache;
- Remove unused `filetypes.rs` and `walk.rs` modules - Introduce `index.rs` for file indexing using SQLite - Expand configuration options in `config.rs`, including `excluded_files` - Update dependencies in `Cargo.toml` to include SQLite, hashing, and regex libraries
2025-06-16 23:47:50 +02:00
use crate::walk::spawn_senders;
Add `rayon` for parallel file scanning in for no indexing`scan.rs` - Integrated `rayon` for concurrent iteration in `scan_filesystem`, enhancing performance. - Updated `Cargo.toml` and `Cargo.lock` to include `rayon` and its dependencies. - Adjusted `scan.rs` to utilize `rayon`'s `par_bridge` for parallel file processing with error handling.
2025-06-17 19:54:03 +02:00
use rayon::prelude::*;
Add `thiserror` and improve console output formatting - Added `thiserror` dependency in `Cargo.toml` and `Cargo.lock` for enhanced error handling. - Improved execution time tracking and output formatting in `main.rs`. - Refactored console output in `scan.rs` for better readability with grouped warnings. - Simplified error handling in `scan_filesystem`.
2025-06-23 18:25:10 +02:00
use std::collections::BTreeMap;
Refactor database schema and scanning process: - Introduced `issues` table for detailed vulnerability storage. - Enhanced `files` table with project scoping and unique constraints. - Replaced `OutputFormat` enum with `String` for flexibility. - Added support for formatted console output of scan results. - Integrated file and issue updating logic for incremental scans. - Optimized scanning by leveraging database-stored issues.
2025-06-17 16:46:45 +02:00
use tree_sitter::{Language, Parser, QueryCursor, StreamingIterator};
Add `rayon` for parallel file scanning in for no indexing`scan.rs` - Integrated `rayon` for concurrent iteration in `scan_filesystem`, enhancing performance. - Updated `Cargo.toml` and `Cargo.lock` to include `rayon` and its dependencies. - Adjusted `scan.rs` to utilize `rayon`'s `par_bridge` for parallel file processing with error handling.
2025-06-17 19:54:03 +02:00
type DynError = Box<dyn std::error::Error + Send + Sync>;
Refactor database schema and scanning process: - Introduced `issues` table for detailed vulnerability storage. - Enhanced `files` table with project scoping and unique constraints. - Replaced `OutputFormat` enum with `String` for flexibility. - Added support for formatted console output of scan results. - Integrated file and issue updating logic for incremental scans. - Optimized scanning by leveraging database-stored issues.
2025-06-17 16:46:45 +02:00
#[derive(Debug)]
pub struct Diag {
pub(crate) path: String,
pub(crate) line: usize,
pub(crate) col: usize,
pub(crate) severity: Severity,
pub(crate) id: String,
}
/// Entry point called by the CLI.
Added foundational modules for core functionalities: - Introduced `walk.rs` as a parallel directory walker for search operations. - Implemented basic index handling in `commands/index.rs`. - Created `utils/config.rs` for configuration management with placeholders for future enhancements.
2025-06-16 16:46:22 +02:00
pub fn handle(
path: &str,
no_index: bool,
rebuild_index: bool,
Refactor database schema and scanning process: - Introduced `issues` table for detailed vulnerability storage. - Enhanced `files` table with project scoping and unique constraints. - Replaced `OutputFormat` enum with `String` for flexibility. - Added support for formatted console output of scan results. - Integrated file and issue updating logic for incremental scans. - Optimized scanning by leveraging database-stored issues.
2025-06-17 16:46:45 +02:00
format: String,
Added foundational modules for core functionalities: - Introduced `walk.rs` as a parallel directory walker for search operations. - Implemented basic index handling in `commands/index.rs`. - Created `utils/config.rs` for configuration management with placeholders for future enhancements.
2025-06-16 16:46:22 +02:00
database_dir: &Path,
config: &Config,
) -> Result<(), Box<dyn std::error::Error>> {
let scan_path = Path::new(path).canonicalize()?;
let (project_name, db_path) = get_project_info(&scan_path, database_dir)?;
Refactor database schema and scanning process: - Introduced `issues` table for detailed vulnerability storage. - Enhanced `files` table with project scoping and unique constraints. - Replaced `OutputFormat` enum with `String` for flexibility. - Added support for formatted console output of scan results. - Integrated file and issue updating logic for incremental scans. - Optimized scanning by leveraging database-stored issues.
2025-06-17 16:46:45 +02:00
Refactor and simplify code in `index.rs`, `scan.rs`, and `database.rs` - Removed unnecessary references and improved clarity in `Indexer` method calls. - Reorganized conditionals and eliminated redundant variable assignments in `scan.rs`. - Simplified database initialization handling by removing unused commented-out code and improving formatting in `database.rs`.
2025-06-23 17:49:15 +02:00
let diags: Vec<Diag> = if no_index {
Add `thiserror` and improve console output formatting - Added `thiserror` dependency in `Cargo.toml` and `Cargo.lock` for enhanced error handling. - Improved execution time tracking and output formatting in `main.rs`. - Refactored console output in `scan.rs` for better readability with grouped warnings. - Simplified error handling in `scan_filesystem`.
2025-06-23 18:25:10 +02:00
scan_filesystem(&scan_path, config)?
Added foundational modules for core functionalities: - Introduced `walk.rs` as a parallel directory walker for search operations. - Implemented basic index handling in `commands/index.rs`. - Created `utils/config.rs` for configuration management with placeholders for future enhancements.
2025-06-16 16:46:22 +02:00
} else {
if rebuild_index || !db_path.exists() {
Refactor project and index handling - Standardized formatting across key functions in `project.rs`. - Updated `index::handle` and `build_index` to incorporate the `config` parameter. - Improved index-building logic to include project details and enhanced issue tracking. - Replaced variable names like `files` with `paths` for clarity in `scan.rs`.
2025-06-17 17:42:41 +02:00
tracing::debug!("Scanning filesystem index filesystem");
crate::commands::index::build_index(&project_name,&scan_path, &db_path, config)?;
Added foundational modules for core functionalities: - Introduced `walk.rs` as a parallel directory walker for search operations. - Implemented basic index handling in `commands/index.rs`. - Created `utils/config.rs` for configuration management with placeholders for future enhancements.
2025-06-16 16:46:22 +02:00
}
Add debugging logs to `walk.rs` and file scanning in `scan.rs` - Added `#[derive(Debug)]` to `Batcher` for easier debugging. - Included `tracing::debug` logging for file scanning in `walk.rs`. - Moved `Indexer` initialization in `scan.rs` to align with indexing logic. - Improved traceability by logging file paths during scanning in `scan.rs`.
2025-06-17 17:52:22 +02:00
Refactor database connection handling with connection pooling and parallel processing - Introduced `r2d2` connection pooling for SQLite in `database.rs`. - Updated `Indexer` to use pooled connections for improved concurrency. - Replaced sequential processing with `rayon` for parallel file scanning. - Added a `clear` method to `Indexer` for reindexing support. - Enhanced database initialization with `init` and `from_pool` methods. - Updated `Cargo.toml` and `Cargo.lock` to include `r2d2`, `r2d2_sqlite`, and new dependencies.
2025-06-17 20:45:33 +02:00
let pool = Indexer::init(&db_path)?;
Refactor and simplify code in `index.rs`, `scan.rs`, and `database.rs` - Removed unnecessary references and improved clarity in `Indexer` method calls. - Reorganized conditionals and eliminated redundant variable assignments in `scan.rs`. - Simplified database initialization handling by removing unused commented-out code and improving formatting in `database.rs`.
2025-06-23 17:49:15 +02:00
scan_with_index_parallel(&project_name, pool, config)?
};
Added foundational modules for core functionalities: - Introduced `walk.rs` as a parallel directory walker for search operations. - Implemented basic index handling in `commands/index.rs`. - Created `utils/config.rs` for configuration management with placeholders for future enhancements.
2025-06-16 16:46:22 +02:00
Refactor and enhance debugging in `walk.rs` and `scan.rs` - Removed unused commented-out code in `walk.rs` for improved readability. - Added more `tracing::debug` logs for clearer traceability during file scanning and rule processing. - Improved condition handling and formatting consistency in `scan.rs`. - Simplified error management and removed redundant comments in database-related functions.
2025-06-23 17:45:54 +02:00
tracing::debug!("Found {:?} issues.", diags.len());
Add `thiserror` and improve console output formatting - Added `thiserror` dependency in `Cargo.toml` and `Cargo.lock` for enhanced error handling. - Improved execution time tracking and output formatting in `main.rs`. - Refactored console output in `scan.rs` for better readability with grouped warnings. - Simplified error handling in `scan_filesystem`.
2025-06-23 18:25:10 +02:00
if format == "console"
|| (format.is_empty() && config.output.default_format == "console")
{
Refactor and enhance debugging in `walk.rs` and `scan.rs` - Removed unused commented-out code in `walk.rs` for improved readability. - Added more `tracing::debug` logs for clearer traceability during file scanning and rule processing. - Improved condition handling and formatting consistency in `scan.rs`. - Simplified error management and removed redundant comments in database-related functions.
2025-06-23 17:45:54 +02:00
tracing::debug!("Printing to console");
Add `thiserror` and improve console output formatting - Added `thiserror` dependency in `Cargo.toml` and `Cargo.lock` for enhanced error handling. - Improved execution time tracking and output formatting in `main.rs`. - Refactored console output in `scan.rs` for better readability with grouped warnings. - Simplified error handling in `scan_filesystem`.
2025-06-23 18:25:10 +02:00
let mut grouped: BTreeMap<&str, Vec<&Diag>> = BTreeMap::new();
Refactor database schema and scanning process: - Introduced `issues` table for detailed vulnerability storage. - Enhanced `files` table with project scoping and unique constraints. - Replaced `OutputFormat` enum with `String` for flexibility. - Added support for formatted console output of scan results. - Integrated file and issue updating logic for incremental scans. - Optimized scanning by leveraging database-stored issues.
2025-06-17 16:46:45 +02:00
for d in &diags {
Add `thiserror` and improve console output formatting - Added `thiserror` dependency in `Cargo.toml` and `Cargo.lock` for enhanced error handling. - Improved execution time tracking and output formatting in `main.rs`. - Refactored console output in `scan.rs` for better readability with grouped warnings. - Simplified error handling in `scan_filesystem`.
2025-06-23 18:25:10 +02:00
grouped.entry(&d.path).or_default().push(d);
}
for (path, issues) in grouped {
println!("{}", style(path).blue().underlined());
for d in issues {
let sev_str = match d.severity {
Severity::High => style("HIGH").red().bold(),
Severity::Medium => style("MEDIUM").yellow().bold(),
Severity::Low => style("LOW").cyan().bold(),
};
println!(
" {:>4}:{:<4} [{}] {}",
d.line, d.col, sev_str, style(&d.id).bold()
);
}
println!();
Refactor database schema and scanning process: - Introduced `issues` table for detailed vulnerability storage. - Enhanced `files` table with project scoping and unique constraints. - Replaced `OutputFormat` enum with `String` for flexibility. - Added support for formatted console output of scan results. - Integrated file and issue updating logic for incremental scans. - Optimized scanning by leveraging database-stored issues.
2025-06-17 16:46:45 +02:00
}
Add `thiserror` and improve console output formatting - Added `thiserror` dependency in `Cargo.toml` and `Cargo.lock` for enhanced error handling. - Improved execution time tracking and output formatting in `main.rs`. - Refactored console output in `scan.rs` for better readability with grouped warnings. - Simplified error handling in `scan_filesystem`.
2025-06-23 18:25:10 +02:00
println!("{} '{}' generated {} issues.",
style("warning").yellow().bold(),
style(project_name).white().bold(),
style(diags.len()).bold());
println!("\t"); // TODO: Add individual counts for different warning levels
Added foundational modules for core functionalities: - Introduced `walk.rs` as a parallel directory walker for search operations. - Implemented basic index handling in `commands/index.rs`. - Created `utils/config.rs` for configuration management with placeholders for future enhancements.
2025-06-16 16:46:22 +02:00
}
Ok(())
}
Refactor database schema and scanning process: - Introduced `issues` table for detailed vulnerability storage. - Enhanced `files` table with project scoping and unique constraints. - Replaced `OutputFormat` enum with `String` for flexibility. - Added support for formatted console output of scan results. - Integrated file and issue updating logic for incremental scans. - Optimized scanning by leveraging database-stored issues.
2025-06-17 16:46:45 +02:00
// --------------------------------------------------------------------------------------------
// Scanning helpers
// --------------------------------------------------------------------------------------------
- Remove unused `filetypes.rs` and `walk.rs` modules - Introduce `index.rs` for file indexing using SQLite - Expand configuration options in `config.rs`, including `excluded_files` - Update dependencies in `Cargo.toml` to include SQLite, hashing, and regex libraries
2025-06-16 23:47:50 +02:00
Refactor database schema and scanning process: - Introduced `issues` table for detailed vulnerability storage. - Enhanced `files` table with project scoping and unique constraints. - Replaced `OutputFormat` enum with `String` for flexibility. - Added support for formatted console output of scan results. - Integrated file and issue updating logic for incremental scans. - Optimized scanning by leveraging database-stored issues.
2025-06-17 16:46:45 +02:00
fn scan_filesystem(
root: &Path,
cfg: &Config,
Add `thiserror` and improve console output formatting - Added `thiserror` dependency in `Cargo.toml` and `Cargo.lock` for enhanced error handling. - Improved execution time tracking and output formatting in `main.rs`. - Refactored console output in `scan.rs` for better readability with grouped warnings. - Simplified error handling in `scan_filesystem`.
2025-06-23 18:25:10 +02:00
) ->Result<Vec<Diag>, Box<dyn std::error::Error>> {
Refactor database schema and scanning process: - Introduced `issues` table for detailed vulnerability storage. - Enhanced `files` table with project scoping and unique constraints. - Replaced `OutputFormat` enum with `String` for flexibility. - Added support for formatted console output of scan results. - Integrated file and issue updating logic for incremental scans. - Optimized scanning by leveraging database-stored issues.
2025-06-17 16:46:45 +02:00
let rx = spawn_senders(root, cfg);
Add `rayon` for parallel file scanning in for no indexing`scan.rs` - Integrated `rayon` for concurrent iteration in `scan_filesystem`, enhancing performance. - Updated `Cargo.toml` and `Cargo.lock` to include `rayon` and its dependencies. - Adjusted `scan.rs` to utilize `rayon`'s `par_bridge` for parallel file processing with error handling.
2025-06-17 19:54:03 +02:00
let acc = Mutex::new(Vec::new());
Add `thiserror` and improve console output formatting - Added `thiserror` dependency in `Cargo.toml` and `Cargo.lock` for enhanced error handling. - Improved execution time tracking and output formatting in `main.rs`. - Refactored console output in `scan.rs` for better readability with grouped warnings. - Simplified error handling in `scan_filesystem`.
2025-06-23 18:25:10 +02:00
Add `rayon` for parallel file scanning in for no indexing`scan.rs` - Integrated `rayon` for concurrent iteration in `scan_filesystem`, enhancing performance. - Updated `Cargo.toml` and `Cargo.lock` to include `rayon` and its dependencies. - Adjusted `scan.rs` to utilize `rayon`'s `par_bridge` for parallel file processing with error handling.
2025-06-17 19:54:03 +02:00
rx.into_iter()
.flatten()
Refactor and enhance debugging in `walk.rs` and `scan.rs` - Removed unused commented-out code in `walk.rs` for improved readability. - Added more `tracing::debug` logs for clearer traceability during file scanning and rule processing. - Improved condition handling and formatting consistency in `scan.rs`. - Simplified error management and removed redundant comments in database-related functions.
2025-06-23 17:45:54 +02:00
.par_bridge()
.try_for_each(|path| {
let mut local = run_rules_on_file(&path, cfg).unwrap();
Add `thiserror` and improve console output formatting - Added `thiserror` dependency in `Cargo.toml` and `Cargo.lock` for enhanced error handling. - Improved execution time tracking and output formatting in `main.rs`. - Refactored console output in `scan.rs` for better readability with grouped warnings. - Simplified error handling in `scan_filesystem`.
2025-06-23 18:25:10 +02:00
acc.lock().unwrap().append(&mut local);
Refactor and enhance debugging in `walk.rs` and `scan.rs` - Removed unused commented-out code in `walk.rs` for improved readability. - Added more `tracing::debug` logs for clearer traceability during file scanning and rule processing. - Improved condition handling and formatting consistency in `scan.rs`. - Simplified error management and removed redundant comments in database-related functions.
2025-06-23 17:45:54 +02:00
Ok::<(), DynError>(())
Add `thiserror` and improve console output formatting - Added `thiserror` dependency in `Cargo.toml` and `Cargo.lock` for enhanced error handling. - Improved execution time tracking and output formatting in `main.rs`. - Refactored console output in `scan.rs` for better readability with grouped warnings. - Simplified error handling in `scan_filesystem`.
2025-06-23 18:25:10 +02:00
}).unwrap();
Refactor and enhance debugging in `walk.rs` and `scan.rs` - Removed unused commented-out code in `walk.rs` for improved readability. - Added more `tracing::debug` logs for clearer traceability during file scanning and rule processing. - Improved condition handling and formatting consistency in `scan.rs`. - Simplified error management and removed redundant comments in database-related functions.
2025-06-23 17:45:54 +02:00
Add `thiserror` and improve console output formatting - Added `thiserror` dependency in `Cargo.toml` and `Cargo.lock` for enhanced error handling. - Improved execution time tracking and output formatting in `main.rs`. - Refactored console output in `scan.rs` for better readability with grouped warnings. - Simplified error handling in `scan_filesystem`.
2025-06-23 18:25:10 +02:00
Ok(acc.into_inner()?)
- Remove unused `filetypes.rs` and `walk.rs` modules - Introduce `index.rs` for file indexing using SQLite - Expand configuration options in `config.rs`, including `excluded_files` - Update dependencies in `Cargo.toml` to include SQLite, hashing, and regex libraries
2025-06-16 23:47:50 +02:00
}
Refactor database connection handling with connection pooling and parallel processing - Introduced `r2d2` connection pooling for SQLite in `database.rs`. - Updated `Indexer` to use pooled connections for improved concurrency. - Replaced sequential processing with `rayon` for parallel file scanning. - Added a `clear` method to `Indexer` for reindexing support. - Enhanced database initialization with `init` and `from_pool` methods. - Updated `Cargo.toml` and `Cargo.lock` to include `r2d2`, `r2d2_sqlite`, and new dependencies.
2025-06-17 20:45:33 +02:00
fn scan_with_index_parallel(
Refactor database schema and scanning process: - Introduced `issues` table for detailed vulnerability storage. - Enhanced `files` table with project scoping and unique constraints. - Replaced `OutputFormat` enum with `String` for flexibility. - Added support for formatted console output of scan results. - Integrated file and issue updating logic for incremental scans. - Optimized scanning by leveraging database-stored issues.
2025-06-17 16:46:45 +02:00
project: &str,
Refactor database connection handling with connection pooling and parallel processing - Introduced `r2d2` connection pooling for SQLite in `database.rs`. - Updated `Indexer` to use pooled connections for improved concurrency. - Replaced sequential processing with `rayon` for parallel file scanning. - Added a `clear` method to `Indexer` for reindexing support. - Enhanced database initialization with `init` and `from_pool` methods. - Updated `Cargo.toml` and `Cargo.lock` to include `r2d2`, `r2d2_sqlite`, and new dependencies.
2025-06-17 20:45:33 +02:00
pool: Arc<Pool<SqliteConnectionManager>>,
Refactor database schema and scanning process: - Introduced `issues` table for detailed vulnerability storage. - Enhanced `files` table with project scoping and unique constraints. - Replaced `OutputFormat` enum with `String` for flexibility. - Added support for formatted console output of scan results. - Integrated file and issue updating logic for incremental scans. - Optimized scanning by leveraging database-stored issues.
2025-06-17 16:46:45 +02:00
cfg: &Config,
) -> Result<Vec<Diag>, Box<dyn std::error::Error>> {
Refactor database connection handling with connection pooling and parallel processing - Introduced `r2d2` connection pooling for SQLite in `database.rs`. - Updated `Indexer` to use pooled connections for improved concurrency. - Replaced sequential processing with `rayon` for parallel file scanning. - Added a `clear` method to `Indexer` for reindexing support. - Enhanced database initialization with `init` and `from_pool` methods. - Updated `Cargo.toml` and `Cargo.lock` to include `r2d2`, `r2d2_sqlite`, and new dependencies.
2025-06-17 20:45:33 +02:00
let files = {
let idx = Indexer::from_pool(project, &pool)?;
idx.get_files(project)?
};
let acc = Mutex::new(Vec::new());
files.into_par_iter()
.try_for_each(|path| -> Result<(), DynError> {
let mut idx = Indexer::from_pool(project, &pool).unwrap();
if idx.should_scan(&path).unwrap() {
let mut diags = run_rules_on_file(&path, cfg).unwrap();
let file_id = idx.upsert_file(&path).unwrap();
let rows: Vec<IssueRow> = diags.iter().map(|d| IssueRow {
rule_id: d.id.as_ref(),
severity: match d.severity {
Severity::High => "HIGH",
Severity::Medium => "MEDIUM",
Severity::Low => "LOW",
},
line: d.line as i64,
col: d.col as i64,
}).collect();
idx.replace_issues(file_id, rows).unwrap();
acc.lock().unwrap().append(&mut diags);
} else {
let mut cached = idx.get_issues_from_file(&path).unwrap();
acc.lock().unwrap().append(&mut cached);
}
Ok(())
}).unwrap();
Add `vacuum` method to `Indexer` for database maintenance - Added a `vacuum` method in `database.rs` to optimize database file size and performance. - Integrated `vacuum` calls into `scan.rs` and `index.rs` to ensure regular maintenance during operations.
2025-06-17 21:00:24 +02:00
{
let idx = Indexer::from_pool(project, &pool)?;
idx.vacuum()?;
}
Refactor database connection handling with connection pooling and parallel processing - Introduced `r2d2` connection pooling for SQLite in `database.rs`. - Updated `Indexer` to use pooled connections for improved concurrency. - Replaced sequential processing with `rayon` for parallel file scanning. - Added a `clear` method to `Indexer` for reindexing support. - Enhanced database initialization with `init` and `from_pool` methods. - Updated `Cargo.toml` and `Cargo.lock` to include `r2d2`, `r2d2_sqlite`, and new dependencies.
2025-06-17 20:45:33 +02:00
Ok(acc.into_inner().unwrap())
Added foundational modules for core functionalities: - Introduced `walk.rs` as a parallel directory walker for search operations. - Implemented basic index handling in `commands/index.rs`. - Created `utils/config.rs` for configuration management with placeholders for future enhancements.
2025-06-16 16:46:22 +02:00
}
Refactor database schema and scanning process: - Introduced `issues` table for detailed vulnerability storage. - Enhanced `files` table with project scoping and unique constraints. - Replaced `OutputFormat` enum with `String` for flexibility. - Added support for formatted console output of scan results. - Integrated file and issue updating logic for incremental scans. - Optimized scanning by leveraging database-stored issues.
2025-06-17 16:46:45 +02:00
// --------------------------------------------------------------------------------------------
// Treesitterbased rule runner returns a Vec<Diag>
// --------------------------------------------------------------------------------------------
Refactor project and index handling - Standardized formatting across key functions in `project.rs`. - Updated `index::handle` and `build_index` to incorporate the `config` parameter. - Improved index-building logic to include project details and enhanced issue tracking. - Replaced variable names like `files` with `paths` for clarity in `scan.rs`.
2025-06-17 17:42:41 +02:00
pub(crate) fn run_rules_on_file(
- Remove unused `filetypes.rs` and `walk.rs` modules - Introduce `index.rs` for file indexing using SQLite - Expand configuration options in `config.rs`, including `excluded_files` - Update dependencies in `Cargo.toml` to include SQLite, hashing, and regex libraries
2025-06-16 23:47:50 +02:00
path: &Path,
Refactor database schema and scanning process: - Introduced `issues` table for detailed vulnerability storage. - Enhanced `files` table with project scoping and unique constraints. - Replaced `OutputFormat` enum with `String` for flexibility. - Added support for formatted console output of scan results. - Integrated file and issue updating logic for incremental scans. - Optimized scanning by leveraging database-stored issues.
2025-06-17 16:46:45 +02:00
cfg: &Config,
) -> Result<Vec<Diag>, Box<dyn std::error::Error>> {
Refactor and enhance debugging in `walk.rs` and `scan.rs` - Removed unused commented-out code in `walk.rs` for improved readability. - Added more `tracing::debug` logs for clearer traceability during file scanning and rule processing. - Improved condition handling and formatting consistency in `scan.rs`. - Simplified error management and removed redundant comments in database-related functions.
2025-06-23 17:45:54 +02:00
tracing::debug!("Running rules on {}", path.to_string_lossy());
Switch `read_to_string` to `read` in `scan.rs` and simplify Python patterns - Updated `scan.rs` to use `std::fs::read` for handling files as bytes instead of strings. - Simplified Python patterns by removing redundant or low-priority vulnerability checks.
2025-06-17 18:36:46 +02:00
let bytes = std::fs::read(path)?;
- Remove unused `filetypes.rs` and `walk.rs` modules - Introduce `index.rs` for file indexing using SQLite - Expand configuration options in `config.rs`, including `excluded_files` - Update dependencies in `Cargo.toml` to include SQLite, hashing, and regex libraries
2025-06-16 23:47:50 +02:00
let mut parser = Parser::new();
Refactor database schema and scanning process: - Introduced `issues` table for detailed vulnerability storage. - Enhanced `files` table with project scoping and unique constraints. - Replaced `OutputFormat` enum with `String` for flexibility. - Added support for formatted console output of scan results. - Integrated file and issue updating logic for incremental scans. - Optimized scanning by leveraging database-stored issues.
2025-06-17 16:46:45 +02:00
let lang_key = match path
.extension()
.and_then(|s| s.to_str())
.unwrap_or_default()
.to_ascii_lowercase()
.as_str()
{
Add multi-language AST-pattern scanning support - Introduced `patterns` module with language-specific vulnerability patterns. - Added `query_cache` utility for caching compiled queries. - Expanded `scan.rs` to support scanning multiple languages dynamically. - Updated `Cargo.toml` with additional tree-sitter dependencies. - Added severity filtering to `ScannerConfig` for better configuration.
2025-06-17 01:17:48 +02:00
"rs" => (Language::from(tree_sitter_rust::LANGUAGE), "rust"),
"c" => (Language::from(tree_sitter_c::LANGUAGE), "c"),
"cpp" | "c++" => (Language::from(tree_sitter_cpp::LANGUAGE), "cpp"),
"java" => (Language::from(tree_sitter_java::LANGUAGE), "java"),
"go" => (Language::from(tree_sitter_go::LANGUAGE), "go"),
"php" => (Language::from(tree_sitter_php::LANGUAGE_PHP), "php"),
"py" => (Language::from(tree_sitter_python::LANGUAGE), "python"),
"ts" | "tsx" => (Language::from(tree_sitter_typescript::LANGUAGE_TYPESCRIPT), "typescript"),
"js" => (Language::from(tree_sitter_javascript::LANGUAGE), "javascript"),
Refactor database schema and scanning process: - Introduced `issues` table for detailed vulnerability storage. - Enhanced `files` table with project scoping and unique constraints. - Replaced `OutputFormat` enum with `String` for flexibility. - Added support for formatted console output of scan results. - Integrated file and issue updating logic for incremental scans. - Optimized scanning by leveraging database-stored issues.
2025-06-17 16:46:45 +02:00
_ => return Ok(Vec::new()),
Add multi-language AST-pattern scanning support - Introduced `patterns` module with language-specific vulnerability patterns. - Added `query_cache` utility for caching compiled queries. - Expanded `scan.rs` to support scanning multiple languages dynamically. - Updated `Cargo.toml` with additional tree-sitter dependencies. - Added severity filtering to `ScannerConfig` for better configuration.
2025-06-17 01:17:48 +02:00
};
Refactor database schema and scanning process: - Introduced `issues` table for detailed vulnerability storage. - Enhanced `files` table with project scoping and unique constraints. - Replaced `OutputFormat` enum with `String` for flexibility. - Added support for formatted console output of scan results. - Integrated file and issue updating logic for incremental scans. - Optimized scanning by leveraging database-stored issues.
2025-06-17 16:46:45 +02:00
let (ts_lang, lang_name) = lang_key;
Add multi-language AST-pattern scanning support - Introduced `patterns` module with language-specific vulnerability patterns. - Added `query_cache` utility for caching compiled queries. - Expanded `scan.rs` to support scanning multiple languages dynamically. - Updated `Cargo.toml` with additional tree-sitter dependencies. - Added severity filtering to `ScannerConfig` for better configuration.
2025-06-17 01:17:48 +02:00
parser.set_language(&ts_lang)?;
Switch `read_to_string` to `read` in `scan.rs` and simplify Python patterns - Updated `scan.rs` to use `std::fs::read` for handling files as bytes instead of strings. - Simplified Python patterns by removing redundant or low-priority vulnerability checks.
2025-06-17 18:36:46 +02:00
let tree = parser.parse(&*bytes, None).ok_or("treesitter failed")?;
Refactor database schema and scanning process: - Introduced `issues` table for detailed vulnerability storage. - Enhanced `files` table with project scoping and unique constraints. - Replaced `OutputFormat` enum with `String` for flexibility. - Added support for formatted console output of scan results. - Integrated file and issue updating logic for incremental scans. - Optimized scanning by leveraging database-stored issues.
2025-06-17 16:46:45 +02:00
let root = tree.root_node();
Add multi-language AST-pattern scanning support - Introduced `patterns` module with language-specific vulnerability patterns. - Added `query_cache` utility for caching compiled queries. - Expanded `scan.rs` to support scanning multiple languages dynamically. - Updated `Cargo.toml` with additional tree-sitter dependencies. - Added severity filtering to `ScannerConfig` for better configuration.
2025-06-17 01:17:48 +02:00
Refactor database schema and scanning process: - Introduced `issues` table for detailed vulnerability storage. - Enhanced `files` table with project scoping and unique constraints. - Replaced `OutputFormat` enum with `String` for flexibility. - Added support for formatted console output of scan results. - Integrated file and issue updating logic for incremental scans. - Optimized scanning by leveraging database-stored issues.
2025-06-17 16:46:45 +02:00
let compiled = query_cache::for_lang(lang_name, ts_lang);
Add multi-language AST-pattern scanning support - Introduced `patterns` module with language-specific vulnerability patterns. - Added `query_cache` utility for caching compiled queries. - Expanded `scan.rs` to support scanning multiple languages dynamically. - Updated `Cargo.toml` with additional tree-sitter dependencies. - Added severity filtering to `ScannerConfig` for better configuration.
2025-06-17 01:17:48 +02:00
let mut cursor = QueryCursor::new();
Refactor database schema and scanning process: - Introduced `issues` table for detailed vulnerability storage. - Enhanced `files` table with project scoping and unique constraints. - Replaced `OutputFormat` enum with `String` for flexibility. - Added support for formatted console output of scan results. - Integrated file and issue updating logic for incremental scans. - Optimized scanning by leveraging database-stored issues.
2025-06-17 16:46:45 +02:00
let mut out = Vec::new();
Add multi-language AST-pattern scanning support - Introduced `patterns` module with language-specific vulnerability patterns. - Added `query_cache` utility for caching compiled queries. - Expanded `scan.rs` to support scanning multiple languages dynamically. - Updated `Cargo.toml` with additional tree-sitter dependencies. - Added severity filtering to `ScannerConfig` for better configuration.
2025-06-17 01:17:48 +02:00
for cq in &compiled {
if cfg.scanner.min_severity > cq.meta.severity {
Refactor and enhance debugging in `walk.rs` and `scan.rs` - Removed unused commented-out code in `walk.rs` for improved readability. - Added more `tracing::debug` logs for clearer traceability during file scanning and rule processing. - Improved condition handling and formatting consistency in `scan.rs`. - Simplified error management and removed redundant comments in database-related functions.
2025-06-23 17:45:54 +02:00
tracing::debug!("Skipping rule {} because it's below the minimum severity", cq.meta.id);
Refactor database schema and scanning process: - Introduced `issues` table for detailed vulnerability storage. - Enhanced `files` table with project scoping and unique constraints. - Replaced `OutputFormat` enum with `String` for flexibility. - Added support for formatted console output of scan results. - Integrated file and issue updating logic for incremental scans. - Optimized scanning by leveraging database-stored issues.
2025-06-17 16:46:45 +02:00
continue;
Add multi-language AST-pattern scanning support - Introduced `patterns` module with language-specific vulnerability patterns. - Added `query_cache` utility for caching compiled queries. - Expanded `scan.rs` to support scanning multiple languages dynamically. - Updated `Cargo.toml` with additional tree-sitter dependencies. - Added severity filtering to `ScannerConfig` for better configuration.
2025-06-17 01:17:48 +02:00
}
Switch `read_to_string` to `read` in `scan.rs` and simplify Python patterns - Updated `scan.rs` to use `std::fs::read` for handling files as bytes instead of strings. - Simplified Python patterns by removing redundant or low-priority vulnerability checks.
2025-06-17 18:36:46 +02:00
let mut matches = cursor.matches(&cq.query, root, &*bytes);
Add multi-language AST-pattern scanning support - Introduced `patterns` module with language-specific vulnerability patterns. - Added `query_cache` utility for caching compiled queries. - Expanded `scan.rs` to support scanning multiple languages dynamically. - Updated `Cargo.toml` with additional tree-sitter dependencies. - Added severity filtering to `ScannerConfig` for better configuration.
2025-06-17 01:17:48 +02:00
while let Some(m) = matches.next() {
for cap in m.captures.iter().filter(|c| c.index == 0) {
let point = cap.node.start_position();
Refactor and enhance debugging in `walk.rs` and `scan.rs` - Removed unused commented-out code in `walk.rs` for improved readability. - Added more `tracing::debug` logs for clearer traceability during file scanning and rule processing. - Improved condition handling and formatting consistency in `scan.rs`. - Simplified error management and removed redundant comments in database-related functions.
2025-06-23 17:45:54 +02:00
tracing::debug!("Found match for rule {}", cq.meta.id);
Refactor database schema and scanning process: - Introduced `issues` table for detailed vulnerability storage. - Enhanced `files` table with project scoping and unique constraints. - Replaced `OutputFormat` enum with `String` for flexibility. - Added support for formatted console output of scan results. - Integrated file and issue updating logic for incremental scans. - Optimized scanning by leveraging database-stored issues.
2025-06-17 16:46:45 +02:00
out.push(Diag {
path: path.to_string_lossy().to_string(),
line: point.row + 1,
col: point.column + 1,
severity: cq.meta.severity,
id: String::from(cq.meta.id),
});
Add multi-language AST-pattern scanning support - Introduced `patterns` module with language-specific vulnerability patterns. - Added `query_cache` utility for caching compiled queries. - Expanded `scan.rs` to support scanning multiple languages dynamically. - Updated `Cargo.toml` with additional tree-sitter dependencies. - Added severity filtering to `ScannerConfig` for better configuration.
2025-06-17 01:17:48 +02:00
}
}
}
Refactor database schema and scanning process: - Introduced `issues` table for detailed vulnerability storage. - Enhanced `files` table with project scoping and unique constraints. - Replaced `OutputFormat` enum with `String` for flexibility. - Added support for formatted console output of scan results. - Integrated file and issue updating logic for incremental scans. - Optimized scanning by leveraging database-stored issues.
2025-06-17 16:46:45 +02:00
Ok(out)
Added foundational modules for core functionalities: - Introduced `walk.rs` as a parallel directory walker for search operations. - Implemented basic index handling in `commands/index.rs`. - Created `utils/config.rs` for configuration management with placeholders for future enhancements.
2025-06-16 16:46:22 +02:00
}
Reference in a new issue Copy permalink