Refactor AST detectors to use PatternRegistry

This commit refactors the AST-based detectors to properly load and utilize the PatternRegistry. This allows for more flexible and dynamic pattern management, moving away from hardcoded patterns. The changes include updating the CLI, tests, and the core scanner logic to integrate the registry effectively.

Co-authored-by: script3r <[email protected]>

Author: cursoragent

crates/cli/src/main.rs

@@ -1,7 +1,7 @@
 use anyhow::{Context, Result};
 use clap::{ArgAction, Parser};
 use indicatif::{ProgressBar, ProgressStyle};
-use scanner_core::{Config, Detector, Language, AstBasedDetector, AstDetector, Scanner, CryptoFindings};
+use scanner_core::{Config, Detector, Language, AstBasedDetector, PatternRegistry, Scanner, CryptoFindings};
 use std::fs;
 use std::path::PathBuf;
 use std::sync::Arc;
@@ -57,40 +57,42 @@ fn main() -> Result<()> {
     }
 
     // Load patterns from file
-    let patterns = AstDetector::load_patterns_from_file(args.patterns.to_str().unwrap())
-        .with_context(|| format!("Failed to load patterns from {}", args.patterns.display()))?;
+    let patterns_content = fs::read_to_string(&args.patterns)
+        .with_context(|| format!("Failed to read patterns file: {}", args.patterns.display()))?;
+    let registry = Arc::new(PatternRegistry::load(&patterns_content)
+        .with_context(|| "Failed to parse patterns.toml")?);
 
     // Prepare AST-based detectors for each language
     let dets: Vec<Box<dyn Detector>> = vec![
-        Box::new(AstBasedDetector::with_patterns(
+        Box::new(AstBasedDetector::new(
             "ast-detector-c",
             &[Language::C],
-            patterns.clone(),
+            registry.clone(),
         ).with_context(|| "Failed to create C AST detector")?),
-        Box::new(AstBasedDetector::with_patterns(
+        Box::new(AstBasedDetector::new(
             "ast-detector-cpp",
             &[Language::Cpp],
-            patterns.clone(),
+            registry.clone(),
         ).with_context(|| "Failed to create C++ AST detector")?),
-        Box::new(AstBasedDetector::with_patterns(
+        Box::new(AstBasedDetector::new(
             "ast-detector-rust",
             &[Language::Rust],
-            patterns.clone(),
+            registry.clone(),
         ).with_context(|| "Failed to create Rust AST detector")?),
-        Box::new(AstBasedDetector::with_patterns(
+        Box::new(AstBasedDetector::new(
             "ast-detector-python",
             &[Language::Python],
-            patterns.clone(),
+            registry.clone(),
         ).with_context(|| "Failed to create Python AST detector")?),
-        Box::new(AstBasedDetector::with_patterns(
+        Box::new(AstBasedDetector::new(
             "ast-detector-java",
             &[Language::Java],
-            patterns.clone(),
+            registry.clone(),
         ).with_context(|| "Failed to create Java AST detector")?),
-        Box::new(AstBasedDetector::with_patterns(
+        Box::new(AstBasedDetector::new(
             "ast-detector-go",
             &[Language::Go],
-            patterns.clone(),
+            registry.clone(),
         ).with_context(|| "Failed to create Go AST detector")?),
     ];
 
@@ -122,9 +124,7 @@ fn main() -> Result<()> {
         }));
     }
 
-    // Create a dummy registry for the scanner (AST detectors don't use it)
-    let dummy_registry = scanner_core::PatternRegistry::empty();
-    let scanner = Scanner::new(&dummy_registry, dets, cfg);
+    let scanner = Scanner::new(&registry, dets, cfg);
     let findings = scanner.run(&args.paths)?;
 
     // Clear progress bar if it was shown

crates/cli/tests/ast_ground_truth.rs

@@ -7,38 +7,48 @@ use std::path::PathBuf;
 fn compare_ast_ground_truth() {
     let workspace = PathBuf::from(env!("CARGO_MANIFEST_DIR")).join("../..");
 
+    // Load patterns for AST-based detectors
+    let patterns_path = workspace.join("patterns.toml");
+    let patterns_content = fs::read_to_string(patterns_path).unwrap();
+    let registry = std::sync::Arc::new(PatternRegistry::load(&patterns_content).unwrap());
+    
     // Use AST-based detectors
     let dets: Vec<Box<dyn Detector>> = vec![
         Box::new(AstBasedDetector::new(
             "ast-detector-c",
             &[Language::C],
+            registry.clone(),
         ).unwrap()),
         Box::new(AstBasedDetector::new(
             "ast-detector-cpp",
             &[Language::Cpp],
+            registry.clone(),
         ).unwrap()),
         Box::new(AstBasedDetector::new(
             "ast-detector-rust",
             &[Language::Rust],
+            registry.clone(),
         ).unwrap()),
         Box::new(AstBasedDetector::new(
             "ast-detector-python",
             &[Language::Python],
+            registry.clone(),
         ).unwrap()),
         Box::new(AstBasedDetector::new(
             "ast-detector-java",
             &[Language::Java],
+            registry.clone(),
         ).unwrap()),
         Box::new(AstBasedDetector::new(
             "ast-detector-go",
             &[Language::Go],
+            registry.clone(),
         ).unwrap()),
     ];
 
-    let reg = PatternRegistry::empty();
     let mut config = Config::default();
     config.deterministic = true; // Ensure reproducible results
-    let scanner = Scanner::new(&reg, dets, config);
+    let scanner = Scanner::new(&registry, dets, config);
 
     let fixtures_root = workspace.join("fixtures");
 

crates/cli/tests/integration.rs

@@ -5,36 +5,46 @@ use std::path::PathBuf;
 fn scan_fixtures() {
     let workspace = PathBuf::from(env!("CARGO_MANIFEST_DIR")).join("../..");
 
+    // Load patterns for AST-based detectors
+    let patterns_path = workspace.join("patterns.toml");
+    let patterns_content = std::fs::read_to_string(patterns_path).unwrap();
+    let registry = std::sync::Arc::new(PatternRegistry::load(&patterns_content).unwrap());
+    
     // Use AST-based detectors
     let dets: Vec<Box<dyn Detector>> = vec![
         Box::new(AstBasedDetector::new(
             "ast-detector-c",
             &[Language::C],
+            registry.clone(),
         ).unwrap()),
         Box::new(AstBasedDetector::new(
             "ast-detector-cpp",
             &[Language::Cpp],
+            registry.clone(),
         ).unwrap()),
         Box::new(AstBasedDetector::new(
             "ast-detector-rust",
             &[Language::Rust],
+            registry.clone(),
         ).unwrap()),
         Box::new(AstBasedDetector::new(
             "ast-detector-python",
             &[Language::Python],
+            registry.clone(),
         ).unwrap()),
         Box::new(AstBasedDetector::new(
             "ast-detector-java",
             &[Language::Java],
+            registry.clone(),
         ).unwrap()),
         Box::new(AstBasedDetector::new(
             "ast-detector-go",
             &[Language::Go],
+            registry.clone(),
         ).unwrap()),
     ];
 
-    let reg = PatternRegistry::empty();
-    let scanner = Scanner::new(&reg, dets, Config::default());
+    let scanner = Scanner::new(&registry, dets, Config::default());
     let fixtures = workspace.join("fixtures");
     let findings = scanner.run(std::slice::from_ref(&fixtures)).unwrap();
 
@@ -78,36 +88,46 @@ fn scan_fixtures() {
 fn scan_nested_general_fixtures() {
     let workspace = PathBuf::from(env!("CARGO_MANIFEST_DIR")).join("../..");
 
+    // Load patterns for AST-based detectors
+    let patterns_path = workspace.join("patterns.toml");
+    let patterns_content = std::fs::read_to_string(patterns_path).unwrap();
+    let registry = std::sync::Arc::new(PatternRegistry::load(&patterns_content).unwrap());
+    
     // Use AST-based detectors
     let dets: Vec<Box<dyn Detector>> = vec![
         Box::new(AstBasedDetector::new(
             "ast-detector-c",
             &[Language::C],
+            registry.clone(),
         ).unwrap()),
         Box::new(AstBasedDetector::new(
             "ast-detector-cpp",
             &[Language::Cpp],
+            registry.clone(),
         ).unwrap()),
         Box::new(AstBasedDetector::new(
             "ast-detector-rust",
             &[Language::Rust],
+            registry.clone(),
         ).unwrap()),
         Box::new(AstBasedDetector::new(
             "ast-detector-python",
             &[Language::Python],
+            registry.clone(),
         ).unwrap()),
         Box::new(AstBasedDetector::new(
             "ast-detector-java",
             &[Language::Java],
+            registry.clone(),
         ).unwrap()),
         Box::new(AstBasedDetector::new(
             "ast-detector-go",
             &[Language::Go],
+            registry.clone(),
         ).unwrap()),
     ];
 
-    let reg = PatternRegistry::empty();
-    let scanner = Scanner::new(&reg, dets, Config::default());
+    let scanner = Scanner::new(&registry, dets, Config::default());
 
     // Scan the nested general fixtures root; test should not rely on per-file targets
     let root = workspace.join("fixtures/general");

crates/cli/tests/progress_reporting.rs

@@ -44,27 +44,38 @@ impl ProgressCapture {
 
 #[test]
 fn test_progress_reporting_accuracy() {
+    // Load patterns for AST-based detectors
+    let workspace = PathBuf::from(env!("CARGO_MANIFEST_DIR")).join("../..");
+    let patterns_path = workspace.join("patterns.toml");
+    let patterns_content = std::fs::read_to_string(patterns_path).unwrap();
+    let registry = std::sync::Arc::new(PatternRegistry::load(&patterns_content).unwrap());
+    
     // Create AST-based detectors
     let detectors: Vec<Box<dyn Detector>> = vec![
         Box::new(AstBasedDetector::new(
             "ast-detector-c",
             &[Language::C],
+            registry.clone(),
         ).unwrap()),
         Box::new(AstBasedDetector::new(
             "ast-detector-java",
             &[Language::Java],
+            registry.clone(),
         ).unwrap()),
         Box::new(AstBasedDetector::new(
             "ast-detector-python",
             &[Language::Python],
+            registry.clone(),
         ).unwrap()),
         Box::new(AstBasedDetector::new(
             "ast-detector-rust",
             &[Language::Rust],
+            registry.clone(),
         ).unwrap()),
         Box::new(AstBasedDetector::new(
             "ast-detector-go",
             &[Language::Go],
+            registry.clone(),
         ).unwrap()),
     ];
 
@@ -77,11 +88,9 @@ fn test_progress_reporting_accuracy() {
         ..Default::default()
     };
 
-    let registry = PatternRegistry::empty();
     let scanner = Scanner::new(&registry, detectors, config);
 
     // Scan the fixtures directory
-    let workspace = PathBuf::from(env!("CARGO_MANIFEST_DIR")).join("../..");
     let fixtures_dir = workspace.join("fixtures");
 
     let _findings = scanner.run(&[fixtures_dir]).unwrap();
@@ -103,11 +112,18 @@ fn test_progress_reporting_accuracy() {
 
 #[test]
 fn test_progress_monotonic_increase() {
+    // Load patterns for AST-based detectors
+    let workspace = PathBuf::from(env!("CARGO_MANIFEST_DIR")).join("../..");
+    let patterns_path = workspace.join("patterns.toml");
+    let patterns_content = std::fs::read_to_string(patterns_path).unwrap();
+    let registry = std::sync::Arc::new(PatternRegistry::load(&patterns_content).unwrap());
+    
     // Test that progress counts only increase (never decrease)
     let detectors: Vec<Box<dyn Detector>> = vec![
         Box::new(AstBasedDetector::new(
             "ast-detector-rust",
             &[Language::Rust],
+            registry.clone(),
         ).unwrap()),
     ];
 
@@ -120,7 +136,6 @@ fn test_progress_monotonic_increase() {
         ..Default::default()
     };
 
-    let registry = PatternRegistry::empty();
     let scanner = Scanner::new(&registry, detectors, config);
 
     let workspace = PathBuf::from(env!("CARGO_MANIFEST_DIR")).join("../..");
@@ -166,11 +181,18 @@ fn test_progress_monotonic_increase() {
 
 #[test]
 fn test_progress_file_extension_accuracy() {
+    // Load patterns for AST-based detectors
+    let workspace = PathBuf::from(env!("CARGO_MANIFEST_DIR")).join("../..");
+    let patterns_path = workspace.join("patterns.toml");
+    let patterns_content = std::fs::read_to_string(patterns_path).unwrap();
+    let registry = std::sync::Arc::new(PatternRegistry::load(&patterns_content).unwrap());
+    
     // Test that file extension filtering works correctly with progress reporting
     let detectors: Vec<Box<dyn Detector>> = vec![
         Box::new(AstBasedDetector::new(
             "ast-detector-java",
             &[Language::Java],
+            registry.clone(),
         ).unwrap()),
     ];
 
@@ -183,7 +205,6 @@ fn test_progress_file_extension_accuracy() {
         ..Default::default()
     };
 
-    let registry = PatternRegistry::empty();
     let scanner = Scanner::new(&registry, detectors, config);
 
     let workspace = PathBuf::from(env!("CARGO_MANIFEST_DIR")).join("../..");