feat: improved small vulnerability scan within java, and framework detections.

Author: Alex Holmberg

.cursor/rules/project-rules.mdc

@@ -646,7 +646,7 @@ use predicates::prelude::*;
 
 #[test]
 fn test_analyze_node_project() {
-    let mut cmd = Command::cargo_bin("iac-generator").unwrap();
+    let mut cmd = Command::cargo_bin("sync-ctl").unwrap();
     cmd.arg("analyze")
         .arg("tests/fixtures/node_express_app")
         .assert()
@@ -789,7 +789,7 @@ Include output values
 rustCopyuse clap::{Parser, Subcommand};
 
 #[derive(Parser)]
-#[command(name = "iac-gen")]
+#[command(name = "sync-ctl")]
 #[command(about = "Generate Infrastructure as Code from your codebase")]
 struct Cli {
     #[command(subcommand)]

CONTRIBUTING.md

@@ -159,7 +159,7 @@ use assert_cmd::Command;
 
 #[test]
 fn test_cli_analyze() {
-    let mut cmd = Command::cargo_bin("iac-gen").unwrap();
+    let mut cmd = Command::cargo_bin("sync-ctl").unwrap();
     cmd.arg("analyze")
         .arg("tests/fixtures/sample_project")
         .assert()

Cargo.toml

@@ -10,7 +10,7 @@ keywords = ["iac", "infrastructure", "docker", "terraform", "cli"]
 categories = ["command-line-utilities", "development-tools"]
 
 [[bin]]
-name = "iac-gen"
+name = "sync-ctl"
 path = "src/main.rs"
 
 [dependencies]

README.md

@@ -44,7 +44,7 @@ cd syncable-cli
 cargo install --path .
 
 # Verify installation
-iac-gen --version
+sync-ctl --version
 ```
 
 ### Pre-built Binaries
@@ -57,31 +57,31 @@ Coming soon! Check the [releases page](https://github.com/yourusername/syncable-
 
 ```bash
 # Analyze current directory
-iac-gen analyze
+sync-ctl analyze
 
 # Analyze specific project
-iac-gen analyze /path/to/your/project
+sync-ctl analyze /path/to/your/project
 
 # Get JSON output
-iac-gen analyze --json > analysis.json
+sync-ctl analyze --json > analysis.json
 ```
 
 ### Check for Vulnerabilities
 
 ```bash
 # Run vulnerability scan
-iac-gen vuln-check /path/to/project
+sync-ctl vuln-check /path/to/project
 
 # Check only high severity and above
-iac-gen vuln-check --severity high
+sync-ctl vuln-check --severity high
 ```
 
 ## 📖 Usage Examples
 
 ### Example: Node.js Express Application
 
 ```bash
-$ iac-gen analyze ./my-express-app
+$ sync-ctl analyze ./my-express-app
 
 🔍 Analyzing project at: ./my-express-app
 ============================================================
@@ -113,7 +113,7 @@ $ iac-gen analyze ./my-express-app
 ### Example: Python FastAPI Service
 
 ```bash
-$ iac-gen analyze ./fastapi-service --json
+$ sync-ctl analyze ./fastapi-service --json
 ```
 
 ```json

TUTORIAL.md

@@ -28,33 +28,33 @@ Welcome to the Syncable Infrastructure-as-Code CLI! This tool analyzes your code
    # Build the project
    cargo build --release
 
-   # The binary will be at ./target/release/iac-gen
+   # The binary will be at ./target/release/sync-ctl
    ```
 
 3. **Install Globally**
    ```bash
    # Install to your system
    cargo install --path .
 
-   # Now you can use 'iac-gen' from anywhere
-   iac-gen --version
+   # Now you can use 'sync-ctl' from anywhere
+   sync-ctl --version
    ```
 
 ### Option 2: Download Pre-built Binary (Coming Soon)
 
 ```bash
 # macOS
-curl -L https://github.com/yourusername/syncable-cli/releases/latest/download/iac-gen-macos -o iac-gen
-chmod +x iac-gen
-sudo mv iac-gen /usr/local/bin/
+curl -L https://github.com/yourusername/syncable-cli/releases/latest/download/sync-ctl-macos -o sync-ctl
+chmod +x sync-ctl
+sudo mv sync-ctl /usr/local/bin/
 
 # Linux
-curl -L https://github.com/yourusername/syncable-cli/releases/latest/download/iac-gen-linux -o iac-gen
-chmod +x iac-gen
-sudo mv iac-gen /usr/local/bin/
+curl -L https://github.com/yourusername/syncable-cli/releases/latest/download/sync-ctl-linux -o sync-ctl
+chmod +x sync-ctl
+sudo mv sync-ctl /usr/local/bin/
 
 # Windows
-# Download iac-gen-windows.exe from releases page
+# Download sync-ctl-windows.exe from releases page
 ```
 
 ## 🏁 Quick Start
@@ -63,23 +63,23 @@ sudo mv iac-gen /usr/local/bin/
 
 ```bash
 # Analyze the current directory
-iac-gen analyze
+sync-ctl analyze
 
 # Analyze a specific project
-iac-gen analyze /path/to/your/project
+sync-ctl analyze /path/to/your/project
 
 # Get JSON output for scripting
-iac-gen analyze --json
+sync-ctl analyze --json
 ```
 
 ### Vulnerability Scanning
 
 ```bash
 # Check for vulnerabilities in dependencies
-iac-gen vuln-check /path/to/project
+sync-ctl vuln-check /path/to/project
 
 # Check with specific severity threshold
-iac-gen vuln-check --severity high /path/to/project
+sync-ctl vuln-check --severity high /path/to/project
 ```
 
 ## 🎯 Core Features
@@ -118,7 +118,7 @@ The CLI automatically detects:
 ### Example 1: Analyzing a Node.js Express App
 
 ```bash
-$ iac-gen analyze ~/projects/my-express-app
+$ sync-ctl analyze ~/projects/my-express-app
 
 🔍 Analyzing project at: /Users/john/projects/my-express-app
 ============================================================
@@ -167,7 +167,7 @@ $ iac-gen analyze ~/projects/my-express-app
 ### Example 2: Vulnerability Check
 
 ```bash
-$ iac-gen vuln-check ~/projects/my-express-app
+$ sync-ctl vuln-check ~/projects/my-express-app
 
 🔍 Checking vulnerabilities for: /Users/john/projects/my-express-app
 ============================================================
@@ -204,7 +204,7 @@ Run 'npm update' to fix most issues.
 ### Example 3: Analyzing a Python FastAPI Project
 
 ```bash
-$ iac-gen analyze ~/projects/fastapi-app --json
+$ sync-ctl analyze ~/projects/fastapi-app --json
 ```
 
 ```json
@@ -314,16 +314,16 @@ jobs:
 
       - name: Install Syncable CLI
         run: |
-          curl -L https://github.com/yourusername/syncable-cli/releases/latest/download/iac-gen-linux -o iac-gen
-          chmod +x iac-gen
-          sudo mv iac-gen /usr/local/bin/
+          curl -L https://github.com/yourusername/syncable-cli/releases/latest/download/sync-ctl-linux -o sync-ctl
+          chmod +x sync-ctl
+          sudo mv sync-ctl /usr/local/bin/
       
       - name: Run Analysis
-        run: iac-gen analyze --json > analysis.json
+        run: sync-ctl analyze --json > analysis.json
 
       - name: Check Vulnerabilities
         run: |
-          iac-gen vuln-check --severity high
+          sync-ctl vuln-check --severity high
           if [ $? -ne 0 ]; then
             echo "High severity vulnerabilities found!"
             exit 1
@@ -356,10 +356,10 @@ jobs:
 Run with verbose logging:
 ```bash
 # Show debug information
-RUST_LOG=debug iac-gen analyze /path/to/project
+RUST_LOG=debug sync-ctl analyze /path/to/project
 
 # Show only warnings and errors
-RUST_LOG=warn iac-gen analyze /path/to/project
+RUST_LOG=warn sync-ctl analyze /path/to/project
 ```
 
 ## 🚧 Upcoming Features (Phase 2)

VULNERABILITY_CHECKING.md

@@ -16,33 +16,33 @@ The CLI can check vulnerabilities for dependencies in the following languages:
 
 ### Check vulnerabilities in the current directory:
 ```bash
-iac-gen vulnerabilities
+sync-ctl vulnerabilities
 ```
 
 ### Check vulnerabilities in a specific project:
 ```bash
-iac-gen vulnerabilities /path/to/project
+sync-ctl vulnerabilities /path/to/project
 ```
 
 ### Filter by severity:
 ```bash
-iac-gen vulnerabilities --severity high
+sync-ctl vulnerabilities --severity high
 ```
 
 Available severity levels: `low`, `medium`, `high`, `critical`
 
 ### Export results:
 ```bash
 # Export as JSON
-iac-gen vulnerabilities --format json --output report.json
+sync-ctl vulnerabilities --format json --output report.json
 
 # Export as table (default)
-iac-gen vulnerabilities --output report.txt
+sync-ctl vulnerabilities --output report.txt
 ```
 
 ### Check vulnerabilities as part of dependency analysis:
 ```bash
-iac-gen dependencies --vulnerabilities /path/to/project
+sync-ctl dependencies --vulnerabilities /path/to/project
 ```
 
 ## Required Tools
@@ -153,7 +153,7 @@ This makes it easy to integrate into CI/CD pipelines:
 ```yaml
 # GitHub Actions example
 - name: Check vulnerabilities
-  run: iac-gen vulnerabilities --severity high
+  run: sync-ctl vulnerabilities --severity high
 ```
 
 ## Limitations

examples/debug_java_vulnerabilities.rs

@@ -0,0 +1,104 @@
+use env_logger;
+use log::{info, debug, error};
+use syncable_cli::analyzer::dependency_parser::{DependencyParser, Language};
+use syncable_cli::analyzer::vulnerability_checker::VulnerabilityChecker;
+use std::path::Path;
+use std::env;
+
+#[tokio::main]
+async fn main() -> Result<(), Box<dyn std::error::Error>> {
+    // Enable debug logging
+    env::set_var("RUST_LOG", "debug");
+    env_logger::init();
+    
+    // Get project path from command line args or use current directory
+    let args: Vec<String> = env::args().collect();
+    let project_path = if args.len() > 1 {
+        Path::new(&args[1])
+    } else {
+        Path::new(".")
+    };
+    
+    info!("🔍 Debug Java vulnerability scanning in: {}", project_path.display());
+    
+    // Parse dependencies
+    let parser = DependencyParser::new();
+    info!("📦 Parsing dependencies...");
+    let dependencies = parser.parse_all_dependencies(project_path)?;
+    
+    if dependencies.is_empty() {
+        error!("❌ No dependencies found!");
+        info!("Make sure you're in a Java project directory with:");
+        info!("  - pom.xml (Maven project)");
+        info!("  - build.gradle or build.gradle.kts (Gradle project)");
+        return Ok(());
+    }
+    
+    // Show detailed dependency information
+    info!("📊 Found dependencies in {} languages:", dependencies.len());
+    for (lang, deps) in &dependencies {
+        info!("  {:?}: {} dependencies", lang, deps.len());
+        if *lang == Language::Java {
+            info!("    Java dependencies details:");
+            for dep in deps.iter().take(10) {
+                info!("      - {} v{} (source: {:?})", dep.name, dep.version, dep.source);
+            }
+            if deps.len() > 10 {
+                info!("      ... and {} more", deps.len() - 10);
+            }
+        }
+    }
+    
+    // Check if Java dependencies were found
+    if !dependencies.contains_key(&Language::Java) {
+        error!("❌ No Java dependencies detected!");
+        info!("Troubleshooting steps:");
+        info!("1. Make sure you're in a Java project directory");
+        info!("2. For Maven projects: ensure pom.xml exists and has <dependencies> section");
+        info!("3. For Gradle projects: ensure build.gradle exists with dependency declarations");
+        info!("4. Run 'mvn dependency:resolve' or 'gradle build' to ensure dependencies are resolved");
+        return Ok(());
+    }
+    
+    // Check vulnerabilities
+    info!("🛡️ Checking for vulnerabilities...");
+    let checker = VulnerabilityChecker::new();
+    
+    match checker.check_all_dependencies(&dependencies, project_path).await {
+        Ok(report) => {
+            info!("✅ Vulnerability scan completed successfully!");
+            info!("📊 Results:");
+            info!("  Total vulnerabilities: {}", report.total_vulnerabilities);
+            info!("  Critical: {}", report.critical_count);
+            info!("  High: {}", report.high_count);
+            info!("  Medium: {}", report.medium_count);
+            info!("  Low: {}", report.low_count);
+            
+            if report.total_vulnerabilities > 0 {
+                info!("🚨 Vulnerable dependencies:");
+                for vuln_dep in &report.vulnerable_dependencies {
+                    info!("  - {} v{} ({} vulnerabilities)", 
+                          vuln_dep.name, vuln_dep.version, vuln_dep.vulnerabilities.len());
+                    for vuln in &vuln_dep.vulnerabilities {
+                        info!("    • {} [{:?}] - {}", vuln.id, vuln.severity, vuln.title);
+                    }
+                }
+            } else {
+                info!("✅ No vulnerabilities found!");
+                info!("This could mean:");
+                info!("  - Your dependencies are up to date and secure");
+                info!("  - The vulnerability scanner (grype) didn't find any issues");
+                info!("  - The dependency versions couldn't be matched with vulnerability databases");
+            }
+        }
+        Err(e) => {
+            error!("❌ Vulnerability scanning failed: {}", e);
+            info!("Common issues:");
+            info!("  - grype not installed: brew install grype");
+            info!("  - Project not built: run 'mvn compile' or 'gradle build'");
+            info!("  - Dependencies not resolved: run 'mvn dependency:resolve'");
+        }
+    }
+    
+    Ok(())
+} 

install.sh

@@ -44,9 +44,9 @@ echo ""
 echo "✅ Installation complete!"
 echo ""
 echo "🎯 Quick Start:"
-echo "   iac-gen --help                # Show help"
-echo "   iac-gen analyze .             # Analyze current directory"
-echo "   iac-gen vuln-check .          # Check for vulnerabilities"
+echo "   sync-ctl --help                # Show help"
+echo "   sync-ctl analyze .             # Analyze current directory"
+echo "   sync-ctl vuln-check .          # Check for vulnerabilities"
 echo ""
 echo "📚 For more information, see TUTORIAL.md"
 echo ""