superagent-ai
diff --git a/‎.gitignore‎
Lines changed: 2 additions & 1 deletion b/‎.gitignore‎
Lines changed: 2 additions & 1 deletion
diff --git a/‎Cargo.toml‎
Lines changed: 1 addition & 1 deletion b/‎Cargo.toml‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎crates/common/src/models.rs‎
Lines changed: 1 addition & 1 deletion b/‎crates/common/src/models.rs‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎crates/worker/src/main.rs‎
Lines changed: 11 additions & 33 deletions b/‎crates/worker/src/main.rs‎
Lines changed: 11 additions & 33 deletions
diff --git a/‎crates/worker/src/registry/mod.rs‎
Lines changed: 83 additions & 0 deletions b/‎crates/worker/src/registry/mod.rs‎
Lines changed: 83 additions & 0 deletions
@@ -25,4 +25,5 @@ Cargo.lock
 # Logs
 *.log
 
-awesome-express-starter
+AGENTS.md
+CLAUDE.md
@@ -11,7 +11,7 @@ members = [
 ]
 
 [workspace.package]
-version = "0.1.6"
+version = "0.1.7"
 edition = "2021"
 authors = ["sus contributors"]
 license = "MIT"
 
@@ -90,7 +90,7 @@ pub enum ScanPriority {
 }
 
 /// Package registry type
-#[derive(Debug, Clone, Copy, PartialEq, Eq, Serialize, Deserialize, sqlx::Type, Default)]
+#[derive(Debug, Clone, Copy, PartialEq, Eq, Hash, Serialize, Deserialize, sqlx::Type, Default)]
 #[sqlx(type_name = "varchar", rename_all = "lowercase")]
 #[serde(rename_all = "lowercase")]
 pub enum Registry {
 
@@ -1,11 +1,12 @@
 //! sus Scan Worker - processes package scan jobs from the queue
 
+mod registry;
 mod scanner;
 mod skill_generator;
 
 use anyhow::Result;
 use axum::{routing::get, Json, Router};
-use common::{Database, Registry, ScanQueue};
+use common::{Database, ScanQueue};
 use scanner::{AgenticScanner, PackageScanner};
 use std::net::SocketAddr;
 use std::time::Duration;
@@ -95,40 +96,17 @@ async fn worker_loop(queue: ScanQueue, scanner: PackageScanner) {
 
                 let start = std::time::Instant::now();
 
-                // Handle tarball jobs vs registry jobs based on registry type
+                // Handle tarball jobs vs registry jobs using unified scan methods
                 let scan_result = if let Some(tarball_path) = &job.tarball_path {
-                    // Local tarball - determine type based on registry
-                    match job.registry {
-                        Registry::Pypi => {
-                            scanner
-                                .scan_pypi_tarball(std::path::Path::new(tarball_path))
-                                .await
-                        }
-                        _ => {
-                            // Default to npm for tarballs
-                            scanner
-                                .scan_tarball(std::path::Path::new(tarball_path))
-                                .await
-                        }
-                    }
+                    // Local tarball - use unified tarball scan
+                    scanner
+                        .scan_tarball_unified(job.registry, std::path::Path::new(tarball_path))
+                        .await
                 } else {
-                    // Remote registry scan
-                    match job.registry {
-                        Registry::Npm => scanner.scan(&job.package, job.version.as_deref()).await,
-                        Registry::Pypi => {
-                            scanner
-                                .scan_pypi(&job.package, job.version.as_deref())
-                                .await
-                        }
-                        Registry::Crates => {
-                            // TODO: Implement crates.io support
-                            tracing::warn!(
-                                package = %job.package,
-                                "Crates.io registry not yet supported"
-                            );
-                            Err(anyhow::anyhow!("Crates.io registry not yet supported"))
-                        }
-                    }
+                    // Remote registry scan - use unified scan
+                    scanner
+                        .scan_unified(job.registry, &job.package, job.version.as_deref())
+                        .await
                 };
 
                 match scan_result {
 
@@ -0,0 +1,83 @@
+//! Registry adapter module
+//!
+//! This module provides a unified interface for interacting with different package registries
+//! (npm, PyPI, etc.) through the `RegistryAdapter` trait.
+
+mod npm;
+mod pypi;
+mod types;
+
+pub use npm::NpmAdapter;
+pub use pypi::PypiAdapter;
+pub use types::{ExtractedPackage, Language, Maintainer, PackageMetadata, SourceFile};
+
+use anyhow::Result;
+use async_trait::async_trait;
+use common::Registry;
+use std::collections::HashMap;
+use std::sync::Arc;
+
+/// Trait for registry-specific operations
+///
+/// Each registry (npm, PyPI, etc.) implements this trait to provide
+/// a unified interface for fetching metadata, downloading packages,
+/// and computing trust scores.
+#[async_trait]
+pub trait RegistryAdapter: Send + Sync {
+    /// Which registry this adapter handles
+    fn registry(&self) -> Registry;
+
+    /// Fetch package metadata (version, maintainers, downloads, etc.)
+    ///
+    /// If `version` is None, fetches the latest version.
+    async fn fetch_metadata(&self, name: &str, version: Option<&str>) -> Result<PackageMetadata>;
+
+    /// Download and extract package to a temporary directory
+    async fn download_package(&self, name: &str, version: &str) -> Result<ExtractedPackage>;
+
+    /// Extract a local tarball/package file
+    fn extract_local(&self, path: &std::path::Path) -> Result<ExtractedPackage>;
+
+    /// Compute trust score (0-100) based on registry-specific factors
+    fn compute_trust_score(&self, metadata: &PackageMetadata) -> u8;
+
+    /// Get CVE ecosystem identifier (e.g., "npm", "PyPI")
+    ///
+    /// Returns None if this registry doesn't have CVE tracking.
+    fn cve_ecosystem(&self) -> Option<&'static str>;
+
+    /// Fetch weekly download count (if available)
+    async fn fetch_downloads(&self, name: &str) -> Result<Option<i64>>;
+}
+
+/// Registry for managing all available adapters
+pub struct AdapterRegistry {
+    adapters: HashMap<Registry, Arc<dyn RegistryAdapter>>,
+}
+
+impl AdapterRegistry {
+    /// Create a new adapter registry with all built-in adapters
+    pub fn new() -> Self {
+        let mut adapters: HashMap<Registry, Arc<dyn RegistryAdapter>> = HashMap::new();
+        adapters.insert(Registry::Npm, Arc::new(NpmAdapter::new()));
+        adapters.insert(Registry::Pypi, Arc::new(PypiAdapter::new()));
+        Self { adapters }
+    }
+
+    /// Get an adapter for a specific registry
+    pub fn get(&self, registry: Registry) -> Option<Arc<dyn RegistryAdapter>> {
+        self.adapters.get(&registry).cloned()
+    }
+
+    /// Register a new adapter (useful for testing or custom registries)
+    #[allow(dead_code)]
+    pub fn register(&mut self, adapter: Arc<dyn RegistryAdapter>) {
+        self.adapters.insert(adapter.registry(), adapter);
+    }
+}
+
+impl Default for AdapterRegistry {
+    fn default() -> Self {
+        Self::new()
+    }
+}
Original file line number	Diff line number	Diff line change
`@@ -11,7 +11,7 @@ members = [`
`11`	`11`	`]`
`12`	`12`
`13`	`13`	`[workspace.package]`
`14`		`-version = "0.1.6"`
	`14`	`+version = "0.1.7"`
`15`	`15`	`edition = "2021"`
`16`	`16`	`authors = ["sus contributors"]`
`17`	`17`	`license = "MIT"`
Original file line number	Diff line number	Diff line change
`@@ -90,7 +90,7 @@ pub enum ScanPriority {`
`90`	`90`	`}`
`91`	`91`
`92`	`92`	`/// Package registry type`
`93`		`-#[derive(Debug, Clone, Copy, PartialEq, Eq, Serialize, Deserialize, sqlx::Type, Default)]`
	`93`	`+#[derive(Debug, Clone, Copy, PartialEq, Eq, Hash, Serialize, Deserialize, sqlx::Type, Default)]`
`94`	`94`	`#[sqlx(type_name = "varchar", rename_all = "lowercase")]`
`95`	`95`	`#[serde(rename_all = "lowercase")]`
`96`	`96`	`pub enum Registry {`