Expand description
--reachability=static: the sound call-graph engine (NOT the grep heuristic
in crate::reach).
For each repo that has findings naming specific functions, this builds the
repo once under the reach-driver and resolves every such finding’s affected
functions against the whole-closure call graph. A finding is annotated with a
Reachability verdict (and the legacy reachable bool, so --reachable- only drops a sound NotReachable).
Soundness discipline (spec §1): only a definite, uncontested NotReachable
across all of a finding’s occurrences yields NotReachable. A build
failure, an unresolved sink, an opaque boundary, or a function we cannot
attribute to a verdict all resolve to Unknown — never NotReachable.
Structs§
- Options
- Inputs for the static engine.
Constants§
- TOOLCHAIN
- The pinned nightly the reach-driver was built against. The verdict is scoped
to it (recorded in
Reachability::config).
Functions§
- assess
- Annotate findings with static reachability. One cargo build per affected repo.