Fix CI: clippy warnings and formatting

Author: guardsarm

Cargo.toml

@@ -45,6 +45,10 @@ name = "audit_trail"
 path = "examples/audit_trail.rs"
 
 [[example]]
-name = "encrypted_logging"
-path = "examples/encrypted_logging.rs"
+name = "compliance_report"
+path = "examples/compliance_report.rs"
+
+[[example]]
+name = "siem_integration"
+path = "examples/siem_integration.rs"
 

src/compliance.rs

@@ -265,9 +265,9 @@ impl ComplianceReporter {
         let access_events = filtered
             .iter()
             .filter(|e| {
-                e.category.as_ref().is_some_and(|c| {
-                    c.contains("authentication") || c.contains("access")
-                })
+                e.category
+                    .as_ref()
+                    .is_some_and(|c| c.contains("authentication") || c.contains("access"))
             })
             .count();
 

src/encryption.rs

@@ -88,7 +88,11 @@ impl LogEncryptor {
     }
 
     /// Encrypt a log entry
-    pub fn encrypt(&self, plaintext: &str, entry_id: &str) -> Result<EncryptedLogEntry, EncryptionError> {
+    pub fn encrypt(
+        &self,
+        plaintext: &str,
+        entry_id: &str,
+    ) -> Result<EncryptedLogEntry, EncryptionError> {
         let mut nonce_bytes = [0u8; 12];
         OsRng.fill_bytes(&mut nonce_bytes);
         let nonce = Nonce::from_slice(&nonce_bytes);
@@ -117,7 +121,9 @@ impl LogEncryptor {
             .map_err(|e| EncryptionError::Base64Error(e.to_string()))?;
 
         if nonce_bytes.len() != 12 {
-            return Err(EncryptionError::DecryptionFailed("Invalid nonce length".to_string()));
+            return Err(EncryptionError::DecryptionFailed(
+                "Invalid nonce length".to_string(),
+            ));
         }
 
         let nonce = Nonce::from_slice(&nonce_bytes);
@@ -127,12 +133,14 @@ impl LogEncryptor {
             .decrypt(nonce, ciphertext.as_ref())
             .map_err(|e| EncryptionError::DecryptionFailed(e.to_string()))?;
 
-        String::from_utf8(plaintext)
-            .map_err(|e| EncryptionError::DecryptionFailed(e.to_string()))
+        String::from_utf8(plaintext).map_err(|e| EncryptionError::DecryptionFailed(e.to_string()))
     }
 
     /// Encrypt multiple log entries in batch
-    pub fn encrypt_batch(&self, entries: &[(&str, &str)]) -> Vec<Result<EncryptedLogEntry, EncryptionError>> {
+    pub fn encrypt_batch(
+        &self,
+        entries: &[(&str, &str)],
+    ) -> Vec<Result<EncryptedLogEntry, EncryptionError>> {
         entries
             .iter()
             .map(|(plaintext, entry_id)| self.encrypt(plaintext, entry_id))

src/lib.rs

@@ -55,24 +55,23 @@
 //! - **Enhanced Metrics**: Detailed logging statistics
 
 pub mod compliance;
+pub mod encryption;
 pub mod entry;
 pub mod formats;
+pub mod metrics;
 pub mod persistence;
-pub mod encryption;
 pub mod redaction;
-pub mod metrics;
 
 pub use compliance::{ComplianceFramework, ComplianceReport, ComplianceReporter};
+pub use encryption::{EncryptedLogEntry, LogEncryptor};
 pub use entry::{LogEntry, SecurityLevel};
 pub use formats::{CEFFormatter, LEEFFormatter, SplunkFormatter, SyslogFormatter};
-pub use persistence::{LogWriter, PersistenceConfig};
-pub use encryption::{LogEncryptor, EncryptedLogEntry};
-pub use redaction::{LogRedactor, RedactionPattern, RedactionConfig};
 pub use metrics::{LogMetrics, MetricsSnapshot};
+pub use persistence::{LogWriter, PersistenceConfig};
+pub use redaction::{LogRedactor, RedactionConfig, RedactionPattern};
 
 use std::sync::{Arc, Mutex};
 use std::time::{Duration, Instant};
-use std::collections::HashMap;
 use thiserror::Error;
 
 /// Logger errors
@@ -166,6 +165,7 @@ impl LoggerConfig {
 
 /// Rate limiter for log flooding prevention
 #[derive(Debug)]
+#[allow(dead_code)]
 struct RateLimiter {
     limit: u32,
     window_start: Instant,
@@ -199,6 +199,7 @@ impl RateLimiter {
 
 /// Thread-safe secure logger for financial systems
 #[derive(Clone)]
+#[allow(dead_code)]
 pub struct SecureLogger {
     entries: Arc<Mutex<Vec<LogEntry>>>,
     source: Option<String>,
@@ -258,6 +259,7 @@ impl SecureLogger {
     }
 
     /// Check rate limit before logging
+    #[allow(dead_code)]
     fn check_rate_limit(&self) -> bool {
         let mut limiter = self.rate_limiter.lock().unwrap();
         if let Some(ref mut rl) = *limiter {
@@ -268,6 +270,7 @@ impl SecureLogger {
     }
 
     /// Apply redaction to message if enabled
+    #[allow(dead_code)]
     fn apply_redaction(&self, message: &str) -> String {
         if self.config.enable_redaction {
             self.redactor.redact(message)

src/metrics.rs

@@ -213,7 +213,12 @@ impl MetricsAggregator {
         let total_bytes: u64 = self.snapshots.iter().map(|s| s.bytes_logged).sum();
         let total_errors: u64 = self.snapshots.iter().map(|s| s.errors_count).sum();
         let total_rate_limited: u64 = self.snapshots.iter().map(|s| s.rate_limited_count).sum();
-        let peak_rate: u64 = self.snapshots.iter().map(|s| s.peak_rate).max().unwrap_or(0);
+        let peak_rate: u64 = self
+            .snapshots
+            .iter()
+            .map(|s| s.peak_rate)
+            .max()
+            .unwrap_or(0);
 
         AggregatedMetrics {
             logger_count: self.snapshots.len(),
@@ -299,7 +304,10 @@ mod tests {
             metrics2.record_log("INFO", None, 1024);
         }
         let snapshot2 = metrics2.snapshot();
-        assert!(snapshot2.bytes_human_readable().contains("KB") || snapshot2.bytes_human_readable().contains("MB"));
+        assert!(
+            snapshot2.bytes_human_readable().contains("KB")
+                || snapshot2.bytes_human_readable().contains("MB")
+        );
     }
 
     #[test]

src/redaction.rs

@@ -108,7 +108,9 @@ impl LogRedactor {
     pub fn add_custom_pattern(&mut self, name: &str, pattern: &str) -> Result<(), regex::Error> {
         let regex = Regex::new(pattern)?;
         self.custom_patterns.insert(name.to_string(), regex);
-        self.config.enabled_patterns.push(RedactionPattern::Custom(name.to_string()));
+        self.config
+            .enabled_patterns
+            .push(RedactionPattern::Custom(name.to_string()));
         Ok(())
     }
 
@@ -118,12 +120,20 @@ impl LogRedactor {
 
         for pattern_type in &self.config.enabled_patterns {
             result = match pattern_type {
-                RedactionPattern::SSN => self.redact_pattern(&result, &self.patterns.ssn, "***-**-****"),
+                RedactionPattern::SSN => {
+                    self.redact_pattern(&result, &self.patterns.ssn, "***-**-****")
+                }
                 RedactionPattern::CreditCard => self.redact_credit_card(&result),
                 RedactionPattern::Email => self.redact_email(&result),
-                RedactionPattern::PhoneNumber => self.redact_pattern(&result, &self.patterns.phone, "***-***-****"),
-                RedactionPattern::IpAddress => self.redact_pattern(&result, &self.patterns.ip_address, "***.***.***.***"),
-                RedactionPattern::BankAccount => self.redact_pattern(&result, &self.patterns.bank_account, "********"),
+                RedactionPattern::PhoneNumber => {
+                    self.redact_pattern(&result, &self.patterns.phone, "***-***-****")
+                }
+                RedactionPattern::IpAddress => {
+                    self.redact_pattern(&result, &self.patterns.ip_address, "***.***.***.***")
+                }
+                RedactionPattern::BankAccount => {
+                    self.redact_pattern(&result, &self.patterns.bank_account, "********")
+                }
                 RedactionPattern::ApiKey => self.redact_api_key(&result),
                 RedactionPattern::Password => self.redact_password(&result),
                 RedactionPattern::Custom(name) => {
@@ -146,54 +156,66 @@ impl LogRedactor {
 
     /// Redact credit card numbers, preserving last 4 digits
     fn redact_credit_card(&self, input: &str) -> String {
-        self.patterns.credit_card.replace_all(input, |caps: &regex::Captures| {
-            let matched = caps.get(0).unwrap().as_str();
-            let digits: String = matched.chars().filter(|c| c.is_ascii_digit()).collect();
-            if digits.len() >= 4 {
-                format!("****-****-****-{}", &digits[digits.len()-4..])
-            } else {
-                "****-****-****-****".to_string()
-            }
-        }).to_string()
+        self.patterns
+            .credit_card
+            .replace_all(input, |caps: &regex::Captures| {
+                let matched = caps.get(0).unwrap().as_str();
+                let digits: String = matched.chars().filter(|c| c.is_ascii_digit()).collect();
+                if digits.len() >= 4 {
+                    format!("****-****-****-{}", &digits[digits.len() - 4..])
+                } else {
+                    "****-****-****-****".to_string()
+                }
+            })
+            .to_string()
     }
 
     /// Redact email addresses, preserving domain
     fn redact_email(&self, input: &str) -> String {
-        self.patterns.email.replace_all(input, |caps: &regex::Captures| {
-            let matched = caps.get(0).unwrap().as_str();
-            if let Some(at_pos) = matched.find('@') {
-                let domain = &matched[at_pos..];
-                format!("****{}", domain)
-            } else {
-                "****@****.***".to_string()
-            }
-        }).to_string()
+        self.patterns
+            .email
+            .replace_all(input, |caps: &regex::Captures| {
+                let matched = caps.get(0).unwrap().as_str();
+                if let Some(at_pos) = matched.find('@') {
+                    let domain = &matched[at_pos..];
+                    format!("****{}", domain)
+                } else {
+                    "****@****.***".to_string()
+                }
+            })
+            .to_string()
     }
 
     /// Redact API keys and tokens
     fn redact_api_key(&self, input: &str) -> String {
-        self.patterns.api_key.replace_all(input, |caps: &regex::Captures| {
-            let matched = caps.get(0).unwrap().as_str();
-            if let Some(eq_pos) = matched.find([':', '=']) {
-                let prefix = &matched[..=eq_pos];
-                format!("{} [REDACTED]", prefix.trim_end_matches([':', '=', ' ']))
-            } else {
-                "[REDACTED API KEY]".to_string()
-            }
-        }).to_string()
+        self.patterns
+            .api_key
+            .replace_all(input, |caps: &regex::Captures| {
+                let matched = caps.get(0).unwrap().as_str();
+                if let Some(eq_pos) = matched.find([':', '=']) {
+                    let prefix = &matched[..=eq_pos];
+                    format!("{} [REDACTED]", prefix.trim_end_matches([':', '=', ' ']))
+                } else {
+                    "[REDACTED API KEY]".to_string()
+                }
+            })
+            .to_string()
     }
 
     /// Redact passwords
     fn redact_password(&self, input: &str) -> String {
-        self.patterns.password.replace_all(input, |caps: &regex::Captures| {
-            let matched = caps.get(0).unwrap().as_str();
-            if let Some(eq_pos) = matched.find([':', '=']) {
-                let prefix = &matched[..=eq_pos];
-                format!("{} [REDACTED]", prefix.trim_end_matches([':', '=', ' ']))
-            } else {
-                "[REDACTED PASSWORD]".to_string()
-            }
-        }).to_string()
+        self.patterns
+            .password
+            .replace_all(input, |caps: &regex::Captures| {
+                let matched = caps.get(0).unwrap().as_str();
+                if let Some(eq_pos) = matched.find([':', '=']) {
+                    let prefix = &matched[..=eq_pos];
+                    format!("{} [REDACTED]", prefix.trim_end_matches([':', '=', ' ']))
+                } else {
+                    "[REDACTED PASSWORD]".to_string()
+                }
+            })
+            .to_string()
     }
 
     /// Check if a string contains sensitive data
@@ -208,9 +230,10 @@ impl LogRedactor {
                 RedactionPattern::BankAccount => self.patterns.bank_account.is_match(input),
                 RedactionPattern::ApiKey => self.patterns.api_key.is_match(input),
                 RedactionPattern::Password => self.patterns.password.is_match(input),
-                RedactionPattern::Custom(name) => {
-                    self.custom_patterns.get(name).map_or(false, |r| r.is_match(input))
-                }
+                RedactionPattern::Custom(name) => self
+                    .custom_patterns
+                    .get(name)
+                    .is_some_and(|r| r.is_match(input)),
             };
             if has_match {
                 return true;
@@ -233,9 +256,10 @@ impl LogRedactor {
                 RedactionPattern::BankAccount => self.patterns.bank_account.is_match(input),
                 RedactionPattern::ApiKey => self.patterns.api_key.is_match(input),
                 RedactionPattern::Password => self.patterns.password.is_match(input),
-                RedactionPattern::Custom(name) => {
-                    self.custom_patterns.get(name).map_or(false, |r| r.is_match(input))
-                }
+                RedactionPattern::Custom(name) => self
+                    .custom_patterns
+                    .get(name)
+                    .is_some_and(|r| r.is_match(input)),
             };
             if has_match {
                 found.push(pattern_type.clone());
@@ -324,7 +348,9 @@ mod tests {
     #[test]
     fn test_custom_pattern() {
         let mut redactor = LogRedactor::default();
-        redactor.add_custom_pattern("employee_id", r"EMP-\d{6}").unwrap();
+        redactor
+            .add_custom_pattern("employee_id", r"EMP-\d{6}")
+            .unwrap();
         let input = "Employee EMP-123456 accessed system";
         let output = redactor.redact(input);
         assert!(output.contains("[REDACTED]"));