[pitboss] phase 01: Track A.1 — Spec derivation strategy enum + flow-steps-optional fallback

2026-06-30 20:39:39 +02:00 · 2026-05-13 13:03:44 -04:00 · 2026-05-13 13:03:44 -04:00 · 31d9ef725a
commit 31d9ef725a
parent 5909fa8c5d
21 changed files with 1106 additions and 62 deletions
--- a/tests/dynamic_fixtures/spec_strategies/callgraph_entry_http.py
+++ b/tests/dynamic_fixtures/spec_strategies/callgraph_entry_http.py
@ -0,0 +1,9 @@
+# Fixture: spec derived via FromCallgraphEntry (rule id matches `*.http.*`,
+# entry point classified as HttpRoute).
+from flask import Flask, request
+
+app = Flask(__name__)
+
+@app.route("/echo")
+def echo():
+    return request.args.get("q", "")
--- a/tests/dynamic_fixtures/spec_strategies/flow_steps_taint.py
+++ b/tests/dynamic_fixtures/spec_strategies/flow_steps_taint.py
@ -0,0 +1,6 @@
+# Fixture: spec derived via FromFlowSteps (taint flow with explicit source/sink).
+import os
+
+def handle_request(payload):
+    cmd = payload
+    os.system(cmd)
--- a/tests/dynamic_fixtures/spec_strategies/func_summary_walk.rs
+++ b/tests/dynamic_fixtures/spec_strategies/func_summary_walk.rs
@ -0,0 +1,11 @@
+// Fixture: spec derived via FromFuncSummaryWalk (FuncSummary records
+// `tainted_sink_params` for a param that flows to a sink, without an
+// in-evidence flow_steps trace).
+
+fn read_path(_root: &str, name: &str) -> std::io::Result<Vec<u8>> {
+    std::fs::read(name)
+}
+
+fn main() {
+    let _ = read_path("/", "/etc/passwd");
+}
--- a/tests/dynamic_fixtures/spec_strategies/rule_namespace_cmdi.py
+++ b/tests/dynamic_fixtures/spec_strategies/rule_namespace_cmdi.py
@ -0,0 +1,6 @@
+# Fixture: spec derived via FromRuleNamespace (AST pattern `py.cmdi.os_system`
+# without a taint flow).
+import os
+
+def run_user_command(user_arg):
+    os.system(user_arg)