Class: Zwischen::Scanner::Base

Inherits:

Object

• Object
• Zwischen::Scanner::Base

Defined in:

lib/zwischen/scanner/base.rb

Direct Known Subclasses

Gitleaks, Semgrep

Constant Summary

ZWISCHEN_BIN_DIR =

File.expand_path("~/.zwischen/bin")

Instance Attribute Summary

• #command ⇒ Object readonly

  Returns the value of attribute command.

• #name ⇒ Object readonly

  Returns the value of attribute name.

Instance Method Summary

• #available? ⇒ Boolean
• #executable_path ⇒ Object

  Find executable in ~/.zwischen/bin or system PATH.

• #find_executable(name) ⇒ Object
• #initialize(name:, command:) ⇒ Base constructor

  A new instance of Base.

• #parse_output(_output) ⇒ Object
• #scan(project_root = Dir.pwd, files: nil) ⇒ Object

Constructor Details

#initialize(name:, command:) ⇒ Base

Returns a new instance of Base.

# File 'lib/zwischen/scanner/base.rb', line 13

def initialize(name:, command:)
  @name = name
  @command = command
  @executable_path = nil
end

Instance Attribute Details

#command ⇒ Object (readonly)

Returns the value of attribute command.

# File 'lib/zwischen/scanner/base.rb', line 9

def command
  @command
end

#name ⇒ Object (readonly)

Returns the value of attribute name.

# File 'lib/zwischen/scanner/base.rb', line 9

def name
  @name
end

Instance Method Details

#available? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/zwischen/scanner/base.rb', line 19

def available?
  !executable_path.nil?
end

#executable_path ⇒ Object

Find executable in ~/.zwischen/bin or system PATH

# File 'lib/zwischen/scanner/base.rb', line 24

def executable_path
  @executable_path ||= find_executable(@command)
end

#find_executable(name) ⇒ Object

# File 'lib/zwischen/scanner/base.rb', line 28

def find_executable(name)
  # Check ~/.zwischen/bin first
  local = File.join(ZWISCHEN_BIN_DIR, name)
  return local if File.executable?(local)

  # Fall back to system PATH
  system("which", name, out: File::NULL, err: File::NULL) ? name : nil
end

#parse_output(_output) ⇒ Object

Raises:

• (NotImplementedError)

# File 'lib/zwischen/scanner/base.rb', line 62

def parse_output(_output)
  raise NotImplementedError, "Subclasses must implement parse_output"
end

#scan(project_root = Dir.pwd, files: nil) ⇒ Object

# File 'lib/zwischen/scanner/base.rb', line 37

def scan(project_root = Dir.pwd, files: nil)
  return [] unless available?

  if files && !files.empty?
    return scan_files(files, project_root) if respond_to?(:scan_files, true)
    command = build_command_for_files(files, project_root)
  else
    command = build_command(project_root)
  end

  stdout, stderr, status = Open3.capture3(*command, chdir: project_root)

  # Most security scanners use exit code 0 = clean, 1 = findings found, 2+ = error
  # We treat both 0 and 1 as success since findings are valid results
  if status.exitstatus <= 1
    parse_output(stdout)
  else
    warn "Warning: #{@name} scan failed (exit #{status.exitstatus}): #{stderr}" unless stderr.empty?
    []
  end
rescue StandardError => e
  warn "Error running #{@name}: #{e.message}"
  []
end