Skip to main content

Finding

cargo_capsec::detector

Struct Finding 

Source 
pub struct Finding {
Show 13 fields
    pub file: String,
    pub function: String,
    pub function_line: usize,
    pub call_line: usize,
    pub call_col: usize,
    pub call_text: String,
    pub category: Category,
    pub subcategory: String,
    pub risk: Risk,
    pub description: String,
    pub is_build_script: bool,
    pub crate_name: String,
    pub crate_version: String,

}
Expand description

A single instance of ambient authority usage found in source code.

Each finding represents one call site where code exercises authority over the filesystem, network, environment, or process table. Findings are the primary output of the audit pipeline.

§Deduplication

The detector deduplicates findings by (file, function, call_line, call_col), so each unique call site appears at most once even if multiple import paths could match it.

Fields§

§file: String

Source file path.

§function: String

Name of the function containing the call.

§function_line: usize

Line where the containing function is defined.

§call_line: usize

Line of the call expression.

§call_col: usize

Column of the call expression.

§call_text: String

The expanded call path (e.g., "std::fs::read").

§category: Category

What kind of ambient authority this exercises.

§subcategory: String

Finer-grained classification (e.g., "read", "connect", "spawn").

§risk: Risk

How dangerous this call is.

§description: String

Human-readable description.

§is_build_script: bool

Whether this call is inside a build.rs main() function.

§crate_name: String

Name of the crate containing this call.

§crate_version: String

Version of the crate containing this call.

Trait Implementations§

Source§

impl Clone for Finding

Source§

fn clone(&self) -> Finding

Returns a duplicate of the value. Read more
1.0.0 · Source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more
Source§

impl Debug for Finding

Source§

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more
Source§

impl From<&Finding> for BaselineEntry

Source§

fn from(f: &Finding) -> Self

Converts to this type from the input type.
Source§

impl Serialize for Finding

Source§

fn serialize<__S>(&self, __serializer: __S) -> Result<__S::Ok, __S::Error>
where __S: Serializer,

Serialize this value into the given Serde serializer. Read more

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> CloneToUninit for T
where T: Clone,

Source§

unsafe fn clone_to_uninit(&self, dest: *mut u8)

🔬This is a nightly-only experimental API. (clone_to_uninit)
Performs copy-assignment from self to dest. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T> ToOwned for T
where T: Clone,

Source§

type Owned = T

The resulting type after obtaining ownership.
Source§

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more
Source§

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.