Skip to main content

EndpointEngine

nexus_shield::endpoint

Struct EndpointEngine

pub struct EndpointEngine {
    pub allowlist: Arc<DeveloperAllowlist>,
    pub threat_intel: Arc<ThreatIntelDB>,
    pub quarantine: Arc<QuarantineVault>,
    pub dns_filter: Option<Arc<DnsFilter>>,
    pub container_scanner: ContainerScanner,
    pub supply_chain_scanner: SupplyChainScanner,
    /* private fields */
}

Expand description

Orchestrates all endpoint protection subsystems.

Fields§

§allowlist: Arc<DeveloperAllowlist>

Developer-aware allowlist.

§threat_intel: Arc<ThreatIntelDB>

Threat intelligence database.

§quarantine: Arc<QuarantineVault>

File quarantine vault.

§dns_filter: Option<Arc<DnsFilter>>

DNS filtering proxy.

§container_scanner: ContainerScanner

Container image scanner (on-demand).

§supply_chain_scanner: SupplyChainScanner

Supply chain dependency scanner (on-demand).

Implementations§

impl EndpointEngine

pub fn new(config: EndpointConfig) -> Self

Create a new endpoint engine with the given configuration.

pub async fn start(&self, audit: Arc<AuditChain>) -> Vec<JoinHandle<()>>

Start all background monitors. Returns JoinHandles for spawned tasks.

pub async fn scan_file(&self, path: &Path) -> Vec<ScanResult>

Scan a single file with all engines.

pub async fn scan_dir(&self, dir: &Path) -> Vec<ScanResult>

Scan a directory recursively.

pub fn scan_container_image(&self, image: &str) -> Vec<ScanResult>

Scan a Docker image for security issues.

pub fn scan_dependencies(&self, path: &Path) -> Vec<ScanResult>

Scan a dependency lock file for supply chain risks.

Subscribe to real-time scan results.

pub fn recent_detections(&self, count: usize) -> Vec<ScanResult>

Get recent detection history.

pub fn stats(&self) -> EndpointStats

Get runtime statistics.

pub fn is_running(&self) -> bool

Check if the engine is running.

Auto Trait Implementations§

impl !Freeze for EndpointEngine

impl !RefUnwindSafe for EndpointEngine

impl Send for EndpointEngine

impl Sync for EndpointEngine

impl Unpin for EndpointEngine

impl UnsafeUnpin for EndpointEngine

impl !UnwindSafe for EndpointEngine

Blanket Implementations§

impl<T> Any for T
where T: 'static + ?Sized,

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more

impl<T> Borrow<T> for T
where T: ?Sized,

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more

impl<T> BorrowMut<T> for T
where T: ?Sized,

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more

impl<T> From<T> for T

fn from(t: T) -> T

Returns the argument unchanged.

impl<T> Instrument for T

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided Span, returning an Instrumented wrapper. Read more

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more

impl<T, U> Into<U> for T
where U: From<T>,

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

impl<T> Same for T

type Output = T

Should always be Self

impl<T, U> TryFrom<U> for T
where U: Into<T>,

type Error = Infallible

The type returned in the event of a conversion error.

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.

impl<V, T> VZip<V> for T
where V: MultiLane<T>,

fn vzip(self) -> V

impl<T> WithSubscriber for T

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self>
where S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a WithDispatch wrapper. Read more

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a WithDispatch wrapper. Read more