refactor(dynamic): replace reflective invocation with route replay logic for Micronaut and Quarkus, remove annotation stubs, and enhance runtime path binding

tests/dynamic_fixtures/java/quarkus_route/Benign.java

@@ -1,6 +1,8 @@
-// Phase 14 — Quarkus reactive route, benign.
+// Quarkus reactive route, benign.
 
-// import io.quarkus.runtime.Quarkus;
+import io.quarkus.runtime.Quarkus;
+import jakarta.ws.rs.GET;
+import jakarta.ws.rs.Path;
 
 import java.io.BufferedReader;
 import java.io.InputStreamReader;

tests/dynamic_fixtures/java/quarkus_route/GET.java

@@ -1,11 +0,0 @@
-// Phase 14 fixture stub — minimal `@GET` Jakarta REST annotation.
-
-import java.lang.annotation.ElementType;
-import java.lang.annotation.Retention;
-import java.lang.annotation.RetentionPolicy;
-import java.lang.annotation.Target;
-
-@Retention(RetentionPolicy.RUNTIME)
-@Target(ElementType.METHOD)
-public @interface GET {
-}

tests/dynamic_fixtures/java/quarkus_route/Path.java

@@ -1,15 +0,0 @@
-// Phase 14 fixture stub — minimal `@Path` annotation (Jakarta REST).
-// Lives in the default package; the fixture imports the symbol as
-// plain `@Path` so javac is happy without a Quarkus / Jakarta REST
-// Maven dep.
-
-import java.lang.annotation.ElementType;
-import java.lang.annotation.Retention;
-import java.lang.annotation.RetentionPolicy;
-import java.lang.annotation.Target;
-
-@Retention(RetentionPolicy.RUNTIME)
-@Target({ElementType.TYPE, ElementType.METHOD})
-public @interface Path {
-    String value() default "";
-}

tests/dynamic_fixtures/java/quarkus_route/Vuln.java

@@ -1,10 +1,10 @@
-// Phase 14 — Quarkus reactive route, vulnerable.
-//
-// `@Path("/run")` on the type + `@GET` on the handler matches the
-// Phase 14 [`JavaShape::detect`] for Quarkus.  The harness invokes
-// `run(payload)` via reflection.
+// Quarkus reactive route, vulnerable. The harness keeps the real
+// Jakarta REST annotations on the classpath and replays the route
+// through those annotations.
 
-// import io.quarkus.runtime.Quarkus;
+import io.quarkus.runtime.Quarkus;
+import jakarta.ws.rs.GET;
+import jakarta.ws.rs.Path;
 
 import java.io.BufferedReader;
 import java.io.InputStreamReader;

tests/dynamic_fixtures/java/quarkus_route/pom.xml

@@ -14,5 +14,10 @@
       <artifactId>quarkus-resteasy-reactive</artifactId>
       <version>3.8.3</version>
     </dependency>
+    <dependency>
+      <groupId>jakarta.ws.rs</groupId>
+      <artifactId>jakarta.ws.rs-api</artifactId>
+      <version>3.1.0</version>
+    </dependency>
   </dependencies>
 </project>