Struct ScanReport 

pub struct ScanReport {
    pub skill: String,
    pub version: Option<String>,
    pub scan_timestamp: String,
    pub status: ScanStatus,
    pub risk_level: RiskLevel,
    pub security_score: u8,
    pub security_grade: SecurityGrade,
    pub files_scanned: usize,
    pub scanner_results: Vec<ScanResult>,
    pub findings: Vec<Finding>,
    pub suppressed: Vec<Finding>,
    pub passed: bool,
}

Complete scan report for a single skill.

Created by ScanReport::from_results after all scanners have run. This is the main output of scan::run_scan and is consumed by the output formatters.

Examples

use std::path::Path;
use oxidized_agentic_audit::{scan::{self, ScanMode}, config::Config};

let config = Config::load(None).unwrap();
let report = scan::run_scan(Path::new("./my-skill"), &config, ScanMode::Skill);

println!("status: {:?}, errors: {}", report.status, report.error_count());

Fields

skill: String

Name of the scanned skill (derived from the directory name).

version: Option<String>

Optional skill version (reserved for future use).

scan_timestamp: String

RFC 3339 timestamp of when the scan ran.

status: ScanStatus

Overall scan outcome.

risk_level: RiskLevel

Overall risk assessment.

security_score: u8

Numeric security score from 0 (worst) to 100 (best).

Computed by deducting points per active finding:

• Critical error (RCE/backdoor/prompt): −30
• Regular error: −15
• Warning: −5
• Info: −1

The score is clamped to [0, 100].

security_grade: SecurityGrade

Letter grade derived from security_score.

files_scanned: usize

Total number of files examined across all scanners.

scanner_results: Vec<ScanResult>

Per-scanner results (including skipped scanners).

findings: Vec<Finding>

Active (non-suppressed) findings.

suppressed: Vec<Finding>

Suppressed findings (kept for transparency in reports).

passed: bool

Convenience flag: true when status is ScanStatus::Passed.

Implementations

impl ScanReport

pub fn from_results( skill: &str, results: Vec<ScanResult>, suppressions: &[Suppression], strict: bool, ) -> Self

Builds a ScanReport from raw scanner results.

This constructor:

1. Separates suppressed findings from active ones.
2. Applies file-level suppression rules.
3. Computes ScanStatus and RiskLevel.

Arguments

• skill — skill name (usually the directory basename).
• results — scanner results to aggregate.
• suppressions — rules loaded from .oxidized-agentic-audit-ignore.
• strict — when true, warnings are treated as failures.

pub fn error_count(&self) -> usize

Returns the number of active findings with Severity::Error.

pub fn warning_count(&self) -> usize

Returns the number of active findings with Severity::Warning.

pub fn info_count(&self) -> usize

Returns the number of active findings with Severity::Info.

pub fn count_by_severity(&self) -> (usize, usize, usize)

Counts errors, warnings, and info findings in a single pass.

Returns (errors, warnings, info). Prefer this over calling error_count, warning_count, and info_count separately when all three values are needed (avoids three iterations).

Trait Implementations

impl Debug for ScanReport

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter.

impl Serialize for ScanReport

fn serialize<__S>(&self, __serializer: __S) -> Result<__S::Ok, __S::Error>

where __S: Serializer,

Serialize this value into the given Serde serializer.