1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
// Copyright 2024 zhlinh and linthis Project Authors. All rights reserved.
// Use of this source code is governed by a MIT-style
// license that can be found at
//
// https://opensource.org/license/MIT
//
// The above copyright notice and this permission
// notice shall be included in all copies or
// substantial portions of the Software.
//! Security scanning module for dependency vulnerability detection.
//!
//! This module provides unified security scanning across multiple languages
//! by integrating with language-specific security tools:
//!
//! ## SCA (Dependency Vulnerability Detection)
//!
//! - **Rust**: cargo-audit (RustSec Advisory Database)
//! - **JavaScript/TypeScript**: npm audit
//! - **Python**: pip-audit / safety
//! - **Go**: govulncheck
//! - **Java**: dependency-check (OWASP)
//!
//! ## SAST (Source Code Security Analysis)
//!
//! - **Multi-language**: OpenGrep / Semgrep (30+ languages)
//! - **Python**: Bandit
//! - **Go**: Gosec
//! - **C/C++**: Flawfinder
//!
//! # Example
//!
//! ```rust,no_run
//! use linthis::security::{SecurityScanner, ScanOptions};
//! use std::path::PathBuf;
//!
//! let scanner = SecurityScanner::new();
//! let options = ScanOptions {
//! path: PathBuf::from("."),
//! severity_threshold: Some("high".to_string()),
//! ..Default::default()
//! };
//!
//! let result = scanner.scan(&options).expect("Scan failed");
//! println!("Found {} vulnerabilities", result.vulnerabilities.len());
//! ```
pub use AdvisoryDatabase;
pub use ;
pub use ;
pub use ;
pub use ;