Notification improvements

script3r · script3r · commit 0c46a6f6be8e · 2025-09-15T20:54:13.000-07:00
diff --git a/crates/cbom-generator/src/certificate_parser.rs b/crates/cbom-generator/src/certificate_parser.rs
@@ -40,7 +40,9 @@ impl CertificateParser {
         ];
 
         // Walk through the directory looking for certificate files
+        // Limit depth to avoid scanning too deep in large repos
         for entry in WalkDir::new(scan_path)
+            .max_depth(10) // Limit depth to avoid excessive scanning
             .into_iter()
             .filter_map(|e| e.ok())
             .filter(|e| e.file_type().is_file())
diff --git a/crates/cbom-generator/src/lib.rs b/crates/cbom-generator/src/lib.rs
@@ -200,9 +200,14 @@ impl CbomGenerator {
 
     /// Generate an MV-CBOM for the given directory (single project)
     pub fn generate_cbom(&self, scan_path: &Path, findings: &[Finding]) -> Result<MvCbom> {
-        let scan_path = scan_path
-            .canonicalize()
-            .with_context(|| format!("Failed to canonicalize path: {}", scan_path.display()))?;
+        // Skip canonicalization if the path doesn't exist or is too large
+        let scan_path = if scan_path.exists() {
+            scan_path
+                .canonicalize()
+                .unwrap_or_else(|_| scan_path.to_path_buf())
+        } else {
+            scan_path.to_path_buf()
+        };
 
         // Project parsing removed; no component information included
 
@@ -255,9 +260,14 @@ impl CbomGenerator {
         scan_path: &Path,
         findings: &[Finding],
     ) -> Result<Vec<(PathBuf, MvCbom)>> {
-        let scan_path = scan_path
-            .canonicalize()
-            .with_context(|| format!("Failed to canonicalize path: {}", scan_path.display()))?;
+        // Skip canonicalization if the path doesn't exist or is too large
+        let scan_path = if scan_path.exists() {
+            scan_path
+                .canonicalize()
+                .unwrap_or_else(|_| scan_path.to_path_buf())
+        } else {
+            scan_path.to_path_buf()
+        };
 
         // Project discovery removed; just generate one CBOM for the root
         let cboms = vec![(scan_path.clone(), self.generate_cbom(&scan_path, findings)?)];
diff --git a/crates/cli/src/main.rs b/crates/cli/src/main.rs
@@ -187,6 +187,10 @@ fn main() -> Result<()> {
     let default_path = PathBuf::from(".");
     let scan_path = args.paths.first().unwrap_or(&default_path);
 
+    if args.progress {
+        eprintln!("Generating CBOM for {} findings...", findings.len());
+    }
+
     if args.recursive {
         // Simplified: generate a single CBOM for the root
         match cbom_generator.generate_cboms_recursive(scan_path, &findings) {
