Added experimental control flow analysis and syntax classification for rust lang (#22)

* Introduce control flow graph (CFG) support:

- Added `cfg.rs` with CFG generation and analysis utilities.
- Integrated `petgraph` library for graph-based computations.
- Updated `ast.rs` to utilize CFG for function analysis.
- Modified `Cargo.toml` and `Cargo.lock` to include new dependencies.
- Improved static analysis with taint tracking through CFG paths.

* feat: enhance control flow analysis with taint tracking and node labeling

* feat: improve control flow graph with enhanced node handling and new tests

* Remove unnecessary reference marker in `byte_offset_to_point` comment.

* Remove unnecessary reference marker in `byte_offset_to_point` comment.

* Refactor `ast.rs` for performance and clarity; enhance `cfg.rs` with recursive CFG generation and improved classification logic for AST analysis.

* Refactor CFG and taint tracking logic:

- Enhanced `cfg.rs` with inline helper function `text_of` for cleaner UTF-8 handling in AST nodes.
- Expanded `labels.rs` rules with detailed `Sources`, `Sanitizers`, and `Sinks` for improved classification.
- Refined `push_node` to handle method call expressions with object-function pairing.
- Simplified code handling in trivia skipping and debug-only logic.

* Enhance `cfg.rs` with `first_call_ident` helper and improve identifier extraction logic in `push_node`.

* Add targeted CFG taint-tracking tests to enhance analysis coverage.

* Enhance CFG generation with loop expression handling and improve taint tracking logic. Add new sanitization example in `examples/sanitize/example.rs`.

* Update README with installation instructions for Cargo and GitHub releases.

* Expand taint-tracking with precise `def-use` computation and enhance `labels.rs` for detailed classification. Extend `examples/sanitize` with realistic scenarios demonstrating new rules.

* Refactor `labels.rs`:

- Removed redundant `LabelRule` entries for cleaner rule definitions.
- Adjusted matching logic to prioritize suffix and prefix matches effectively.

* Refactor `labels.rs`:

- Removed redundant `LabelRule` entries for cleaner rule definitions.
- Adjusted matching logic to prioritize suffix and prefix matches effectively.

* Add test for taint tracking with multiple sources in `cfg.rs`.

* Add `function_summaries` table and implement summary upsert/load methods. Refactor to handle summary storage and retrieval efficiently, with placeholder clean/drop logic.

* refactor: split `labels.rs` into modular structure with language-specific files

* refactor: split `labels.rs` into modular structure with language-specific files

* refactor: clean up SQL table definitions in `database.rs` for better readability

* refactor: simplify CFG structure by removing lifetime parameters and enhancing taint metadata handling

* refactor: update TODO comments in `cfg.rs` to clarify future enhancements for cap labels and function details

* refactor: remove redundant header from README.md for improved clarity

* feat: add PHF-based syntax classifiers and Kind enum for efficient syntax mapping across languages

* feat: introduce analysis modes for enhanced scanner configuration and diagnostics

* feat: define Kind enum for syntax classification in control flow analysis

* feat: bump version to 0.2.0-alpha and update CHANGELOG for new features and fixes

* refactor: clean up imports and formatting in AST and CFG modules for improved readability

* refactor: simplify function signatures and improve code readability in CFG and module files

* fix: correct rayon_thread_stack_size comment to reflect actual value of 8 MiB

* refactor: update string formatting in clean and project modules for consistency

* refactor: fix indentation in clean.rs for improved readability

---------

Co-authored-by: elipeter <eli.peter@es.fcm.travel>

src/commands/clean.rs

@@ -12,7 +12,7 @@ pub fn handle(project: Option<String>, all: bool, config_dir: &std::path::Path)
         }
         println!("{}", style("✔ All indexes cleaned").green().bold());
     } else if let Some(proj_name) = project {
-        let db_path = config_dir.join(format!("{}.sqlite", proj_name));
+        let db_path = config_dir.join(format!("{proj_name}.sqlite"));
         if db_path.exists() {
             fs::remove_file(&db_path)?;
             println!(

src/commands/mod.rs

@@ -6,7 +6,7 @@ pub mod scan;
 use crate::cli::Commands;
 use crate::errors::NyxResult;
 use crate::patterns::Severity;
-use crate::utils::config::Config;
+use crate::utils::config::{AnalysisMode, Config};
 use std::path::Path;
 
 pub fn handle_command(
@@ -21,11 +21,26 @@ pub fn handle_command(
             rebuild_index,
             format,
             high_only,
+            ast_only,
+            cfg_only,
+            all_targets,
         } => {
             if high_only {
                 config.scanner.min_severity = Severity::High
             };
 
+            if ast_only {
+                config.scanner.mode = AnalysisMode::Ast
+            };
+
+            if cfg_only {
+                config.scanner.mode = AnalysisMode::Taint
+            };
+
+            if all_targets {
+                config.scanner.mode = AnalysisMode::Full
+            };
+
             scan::handle(&path, no_index, rebuild_index, format, database_dir, config)
         }
         Commands::Index { action } => index::handle(action, database_dir, config),

src/commands/scan.rs

@@ -68,7 +68,7 @@ pub fn handle(
             println!("{}", style(path).blue().underlined());
             for d in issues {
                 println!(
-                    "  {:>4}:{:<4}  [{}]  {}",
+                    "  {:>4}:{:<4}  [{:}]  {:}",
                     d.line,
                     d.col,
                     d.severity,
@@ -145,6 +145,17 @@ pub fn scan_with_index_parallel(
             } else {
                 idx.get_issues_from_file(&path).unwrap_or_default()
             };
+
+            match cfg.scanner.mode {
+                crate::utils::config::AnalysisMode::Ast => {
+                    diags.retain(|d| !d.id.starts_with("taint"));
+                }
+                crate::utils::config::AnalysisMode::Taint => {
+                    diags.retain(|d| d.id.starts_with("taint"));
+                }
+                crate::utils::config::AnalysisMode::Full => {}
+            }
+
             if !diags.is_empty() {
                 diag_map
                     .entry(path.to_string_lossy().to_string())