npm - @sun-asterisk/sunlint - Versions diffs - 1.3.43 → 1.3.44 - Mend

@sun-asterisk/sunlint 1.3.43 → 1.3.44

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (137) hide show

package/dart_analyzer/lib/analyzer_service.dart ADDED Viewed

@@ -0,0 +1,625 @@
+import 'dart:io';
+import 'package:analyzer/dart/analysis/analysis_context_collection.dart';
+import 'package:analyzer/dart/analysis/results.dart';
+import 'package:analyzer/file_system/physical_file_system.dart';
+import 'package:path/path.dart' as path;
+import 'models/rule.dart';
+import 'models/symbol_table.dart';
+import 'models/violation.dart';
+import 'symbol_table_extractor.dart';
+// Import rules matching folder structure
+import 'rules/base_analyzer.dart';
+// Common rules (C-series)
+import 'rules/common/C002_no_duplicate_code.dart';
+import 'rules/common/C003_no_vague_abbreviations.dart';
+import 'rules/common/C006_function_naming.dart';
+import 'rules/common/C008_variable_declaration_locality.dart';
+import 'rules/common/C010_limit_block_nesting.dart';
+import 'rules/common/C012_command_query_separation.dart';
+import 'rules/common/C013_no_dead_code.dart';
+import 'rules/common/C014_dependency_injection.dart';
+import 'rules/common/C017_constructor_logic.dart';
+import 'rules/common/C018_no_throw_generic_error.dart';
+import 'rules/common/C019_log_level_usage.dart';
+import 'rules/common/C020_unused_imports.dart';
+import 'rules/common/C021_import_organization.dart';
+import 'rules/common/C023_no_duplicate_variable.dart';
+import 'rules/common/C024_no_scatter_hardcoded_constants.dart';
+import 'rules/common/C029_catch_block_logging.dart';
+import 'rules/common/C030_use_custom_error_classes.dart';
+import 'rules/common/C031_validation_separation.dart';
+import 'rules/common/C033_separate_service_repository.dart';
+import 'rules/common/C035_error_logging_context.dart';
+import 'rules/common/C040_centralized_validation.dart';
+import 'rules/common/C041_no_sensitive_hardcode.dart';
+import 'rules/common/C042_boolean_name_prefix.dart';
+import 'rules/common/C043_no_console_or_print.dart';
+import 'rules/common/C047_no_duplicate_retry_logic.dart';
+import 'rules/common/C048_no_bypass_architectural_layers.dart';
+import 'rules/common/C052_parsing_or_data_transformation.dart';
+import 'rules/common/C060_no_override_superclass.dart';
+import 'rules/common/C065_one_behavior_per_test.dart';
+import 'rules/common/C067_no_hardcoded_config.dart';
+import 'rules/common/C070_no_real_time_tests.dart';
+import 'rules/common/C072_single_test_behavior.dart';
+import 'rules/common/C073_validate_required_config_on_startup.dart';
+import 'rules/common/C075_explicit_return_types.dart';
+import 'rules/common/C076_explicit_function_types.dart';
+// Security rules (S-series)
+import 'rules/security/S001_backend_auth_communications.dart';
+import 'rules/security/S002_os_command_injection.dart';
+import 'rules/security/S003_open_redirect_protection.dart';
+import 'rules/security/S004_sensitive_data_logging.dart';
+import 'rules/security/S005_trusted_service_authorization.dart';
+import 'rules/security/S006_no_default_credentials.dart';
+import 'rules/security/S007_output_encoding.dart';
+import 'rules/security/S008_svg_content_sanitization.dart';
+import 'rules/security/S009_no_insecure_encryption.dart';
+import 'rules/security/S010_use_csprng.dart';
+import 'rules/security/S011_ech_tls_config.dart';
+import 'rules/security/S012_hardcoded_secrets.dart';
+import 'rules/security/S013_tls_enforcement.dart';
+import 'rules/security/S014_tls_version_enforcement.dart';
+import 'rules/security/S015_insecure_tls_certificate.dart';
+import 'rules/security/S016_no_sensitive_querystring.dart';
+import 'rules/security/S017_use_parameterized_queries.dart';
+import 'rules/security/S018_no_sensitive_browser_storage.dart';
+import 'rules/security/S019_smtp_injection_protection.dart';
+import 'rules/security/S020_no_eval_dynamic_code.dart';
+import 'rules/security/S021_referrer_policy.dart';
+import 'rules/security/S022_escape_output_context.dart';
+import 'rules/security/S023_no_json_injection.dart';
+import 'rules/security/S024_xpath_xxe_protection.dart';
+import 'rules/security/S025_server_side_validation.dart';
+import 'rules/security/S026_tls_all_connections.dart';
+import 'rules/security/S027_mtls_certificate_validation.dart';
+import 'rules/security/S028_file_upload_size_limits.dart';
+import 'rules/security/S029_csrf_protection.dart';
+import 'rules/security/S030_directory_browsing_protection.dart';
+import 'rules/security/S031_secure_session_cookies.dart';
+import 'rules/security/S032_httponly_session_cookies.dart';
+import 'rules/security/S033_samesite_session_cookies.dart';
+import 'rules/security/S034_host_prefix_session_cookies.dart';
+import 'rules/security/S035_separate_app_hostnames.dart';
+import 'rules/security/S036_lfi_rfi_protection.dart';
+import 'rules/security/S037_cache_headers.dart';
+import 'rules/security/S038_no_version_headers.dart';
+import 'rules/security/S039_tls_certificate_validation.dart';
+import 'rules/security/S040_session_fixation_protection.dart';
+import 'rules/security/S041_session_token_invalidation.dart';
+import 'rules/security/S042_require_re_authentication_for_long_lived.dart';
+import 'rules/security/S043_password_changes_invalidate_all_sessions.dart';
+import 'rules/security/S044_re_authentication_required.dart';
+import 'rules/security/S045_brute_force_protection.dart';
+import 'rules/security/S046_jwt_algorithm_allowlist.dart';
+import 'rules/security/S047_oauth_pkce_protection.dart';
+import 'rules/security/S048_oauth_redirect_uri_validation.dart';
+import 'rules/security/S049_short_validity_tokens.dart';
+import 'rules/security/S050_reference_tokens_entropy.dart';
+import 'rules/security/S051_password_length_policy.dart';
+import 'rules/security/S052_weak_otp_entropy.dart';
+import 'rules/security/S053_generic_error_messages.dart';
+import 'rules/security/S054_no_default_accounts.dart';
+import 'rules/security/S055_content_type_validation.dart';
+import 'rules/security/S056_log_injection_protection.dart';
+import 'rules/security/S057_utc_logging.dart';
+import 'rules/security/S058_no_ssrf.dart';
+import 'rules/security/S059_disable_debug_mode.dart';
+import 'rules/security/S060_password_minimum_length.dart';
+// Dart-only rules (D-series)
+import 'rules/dart/D001_recommended_lint_rules.dart';
+import 'rules/dart/D002_dispose_resources.dart';
+import 'rules/dart/D003_prefer_widgets_over_methods.dart';
+import 'rules/dart/D004_avoid_shrinkwrap_listview.dart';
+import 'rules/dart/D005_limit_widget_nesting.dart';
+import 'rules/dart/D006_prefer_extracting_large_callbacks.dart';
+import 'rules/dart/D007_prefer_init_first_dispose_last.dart';
+import 'rules/dart/D008_avoid_long_functions.dart';
+import 'rules/dart/D009_limit_function_parameters.dart';
+import 'rules/dart/D010_limit_cyclomatic_complexity.dart';
+import 'rules/dart/D011_prefer_named_parameters.dart';
+import 'rules/dart/D012_prefer_named_boolean_parameters.dart';
+import 'rules/dart/D013_single_public_class.dart';
+import 'rules/dart/D014_unsafe_collection_access.dart';
+import 'rules/dart/D015_copywith_all_parameters.dart';
+import 'rules/dart/D016_project_should_have_tests.dart';
+import 'rules/dart/D017_pubspec_dependencies_review.dart';
+import 'rules/dart/D018_remove_commented_code.dart';
+import 'rules/dart/D019_avoid_single_child_multi_child_widget.dart';
+import 'rules/dart/D020_limit_if_else_branches.dart';
+import 'rules/dart/D021_avoid_negated_boolean_checks.dart';
+import 'rules/dart/D022_use_setstate_correctly.dart';
+import 'rules/dart/D023_avoid_unnecessary_method_overrides.dart';
+import 'rules/dart/D024_avoid_unnecessary_stateful_widget.dart';
+import 'rules/dart/D025_avoid_nested_conditional_expressions.dart';
+/// Main service for Dart code analysis
+/// Manages the analysis context and rule execution
+class AnalyzerService {
+  AnalysisContextCollection? _contextCollection;
+  String? _projectPath;
+  bool _initialized = false;
+  /// Map of rule ID to analyzer
+  final Map<String, BaseAnalyzer> _analyzers = {};
+  /// List of supported rule IDs
+  List<String> get supportedRules => _analyzers.keys.toList();
+  AnalyzerService() {
+    _registerAnalyzers();
+  }
+  /// Register all available analyzers
+  /// Analyzer names match TypeScript rule folder names
+  void _registerAnalyzers() {
+    // Common rules (C-series)
+    _analyzers['C002'] = C002NoDuplicateCodeAnalyzer();
+    _analyzers['C003'] = C003NoVagueAbbreviationsAnalyzer();
+    _analyzers['C006'] = C006FunctionNamingAnalyzer();
+    _analyzers['C008'] = C008VariableDeclarationLocalityAnalyzer();
+    _analyzers['C010'] = C010LimitBlockNestingAnalyzer();
+    _analyzers['C012'] = C012CommandQuerySeparationAnalyzer();
+    _analyzers['C013'] = C013NoDeadCodeAnalyzer();
+    _analyzers['C014'] = C014DependencyInjectionAnalyzer();
+    _analyzers['C017'] = C017ConstructorLogicAnalyzer();
+    _analyzers['C018'] = C018NoThrowGenericErrorAnalyzer();
+    _analyzers['C019'] = C019LogLevelUsageAnalyzer();
+    _analyzers['C020'] = C020UnusedImportsAnalyzer();
+    _analyzers['C021'] = C021ImportOrganizationAnalyzer();
+    _analyzers['C023'] = C023NoDuplicateVariableAnalyzer();
+    _analyzers['C024'] = C024NoScatterHardcodedConstantsAnalyzer();
+    _analyzers['C029'] = C029CatchBlockLoggingAnalyzer();
+    _analyzers['C030'] = C030UseCustomErrorClassesAnalyzer();
+    _analyzers['C031'] = C031ValidationSeparationAnalyzer();
+    _analyzers['C033'] = C033SeparateServiceRepositoryAnalyzer();
+    _analyzers['C035'] = C035ErrorLoggingContextAnalyzer();
+    _analyzers['C040'] = C040CentralizedValidationAnalyzer();
+    _analyzers['C041'] = C041NoSensitiveHardcodeAnalyzer();
+    _analyzers['C042'] = C042BooleanNamePrefixAnalyzer();
+    _analyzers['C043'] = C043NoConsoleOrPrintAnalyzer();
+    _analyzers['C047'] = C047NoDuplicateRetryLogicAnalyzer();
+    _analyzers['C048'] = C048NoBypassArchitecturalLayersAnalyzer();
+    _analyzers['C052'] = C052ParsingOrDataTransformationAnalyzer();
+    _analyzers['C060'] = C060NoOverrideSuperclassAnalyzer();
+    _analyzers['C065'] = C065OneBehaviorPerTestAnalyzer();
+    _analyzers['C067'] = C067NoHardcodedConfigAnalyzer();
+    _analyzers['C070'] = C070NoRealTimeTestsAnalyzer();
+    _analyzers['C072'] = C072SingleTestBehaviorAnalyzer();
+    _analyzers['C073'] = C073ValidateRequiredConfigOnStartupAnalyzer();
+    _analyzers['C075'] = C075ExplicitReturnTypesAnalyzer();
+    _analyzers['C076'] = C076ExplicitFunctionTypesAnalyzer();
+    // Security rules (S-series)
+    _analyzers['S001'] = S001BackendAuthCommunicationsAnalyzer();
+    _analyzers['S002'] = S002OsCommandInjectionAnalyzer();
+    _analyzers['S003'] = S003OpenRedirectProtectionAnalyzer();
+    _analyzers['S004'] = S004SensitiveDataLoggingAnalyzer();
+    _analyzers['S005'] = S005TrustedServiceAuthorizationAnalyzer();
+    _analyzers['S006'] = S006NoDefaultCredentialsAnalyzer();
+    _analyzers['S007'] = S007OutputEncodingAnalyzer();
+    _analyzers['S008'] = S008SvgContentSanitizationAnalyzer();
+    _analyzers['S009'] = S009NoInsecureEncryptionAnalyzer();
+    _analyzers['S010'] = S010UseCsprngAnalyzer();
+    _analyzers['S011'] = S011EchTlsConfigAnalyzer();
+    _analyzers['S012'] = S012HardcodedSecretsAnalyzer();
+    _analyzers['S013'] = S013TlsEnforcementAnalyzer();
+    _analyzers['S014'] = S014TlsVersionEnforcementAnalyzer();
+    _analyzers['S015'] = S015InsecureTlsCertificateAnalyzer();
+    _analyzers['S016'] = S016NoSensitiveQuerystringAnalyzer();
+    _analyzers['S017'] = S017UseParameterizedQueriesAnalyzer();
+    _analyzers['S018'] = S018NoSensitiveBrowserStorageAnalyzer();
+    _analyzers['S019'] = S019SmtpInjectionProtectionAnalyzer();
+    _analyzers['S020'] = S020NoEvalDynamicCodeAnalyzer();
+    _analyzers['S021'] = S021ReferrerPolicyAnalyzer();
+    _analyzers['S022'] = S022EscapeOutputContextAnalyzer();
+    _analyzers['S023'] = S023NoJsonInjectionAnalyzer();
+    _analyzers['S024'] = S024XpathXxeProtectionAnalyzer();
+    _analyzers['S025'] = S025ServerSideValidationAnalyzer();
+    _analyzers['S026'] = S026TlsAllConnectionsAnalyzer();
+    _analyzers['S027'] = S027MtlsCertificateValidationAnalyzer();
+    _analyzers['S028'] = S028FileUploadSizeLimitsAnalyzer();
+    _analyzers['S029'] = S029CsrfProtectionAnalyzer();
+    _analyzers['S030'] = S030DirectoryBrowsingProtectionAnalyzer();
+    _analyzers['S031'] = S031SecureSessionCookiesAnalyzer();
+    _analyzers['S032'] = S032HttpOnlySessionCookiesAnalyzer();
+    _analyzers['S033'] = S033SameSiteSessionCookiesAnalyzer();
+    _analyzers['S034'] = S034HostPrefixSessionCookiesAnalyzer();
+    _analyzers['S035'] = S035SeparateAppHostnamesAnalyzer();
+    _analyzers['S036'] = S036LfiRfiProtectionAnalyzer();
+    _analyzers['S037'] = S037CacheHeadersAnalyzer();
+    _analyzers['S038'] = S038NoVersionHeadersAnalyzer();
+    _analyzers['S039'] = S039TlsCertificateValidationAnalyzer();
+    _analyzers['S040'] = S040SessionFixationProtectionAnalyzer();
+    _analyzers['S041'] = S041SessionTokenInvalidationAnalyzer();
+    _analyzers['S042'] = S042RequireReAuthenticationForLongLivedAnalyzer();
+    _analyzers['S043'] = S043PasswordChangesInvalidateAllSessionsAnalyzer();
+    _analyzers['S044'] = S044ReAuthenticationRequiredAnalyzer();
+    _analyzers['S045'] = S045BruteForceProtectionAnalyzer();
+    _analyzers['S046'] = S046JwtAlgorithmAllowlistAnalyzer();
+    _analyzers['S047'] = S047OAuthPkceProtectionAnalyzer();
+    _analyzers['S048'] = S048OAuthRedirectUriValidationAnalyzer();
+    _analyzers['S049'] = S049ShortValidityTokensAnalyzer();
+    _analyzers['S050'] = S050ReferenceTokensEntropyAnalyzer();
+    _analyzers['S051'] = S051PasswordLengthPolicyAnalyzer();
+    _analyzers['S052'] = S052WeakOtpEntropyAnalyzer();
+    _analyzers['S053'] = S053GenericErrorMessagesAnalyzer();
+    _analyzers['S054'] = S054NoDefaultAccountsAnalyzer();
+    _analyzers['S055'] = S055ContentTypeValidationAnalyzer();
+    _analyzers['S056'] = S056LogInjectionProtectionAnalyzer();
+    _analyzers['S057'] = S057UtcLoggingAnalyzer();
+    _analyzers['S058'] = S058NoSsrfAnalyzer();
+    _analyzers['S059'] = S059DisableDebugModeAnalyzer();
+    _analyzers['S060'] = S060PasswordMinimumLengthAnalyzer();
+    // Dart-only rules (D-series)
+    _analyzers['D001'] = D001RecommendedLintRulesAnalyzer();
+    _analyzers['D002'] = D002DisposeResourcesAnalyzer();
+    _analyzers['D003'] = D003PreferWidgetsOverMethodsAnalyzer();
+    _analyzers['D004'] = D004AvoidShrinkwrapListviewAnalyzer();
+    _analyzers['D005'] = D005LimitWidgetNestingAnalyzer();
+    _analyzers['D006'] = D006PreferExtractingLargeCallbacksAnalyzer();
+    _analyzers['D007'] = D007PreferInitFirstDisposeLastAnalyzer();
+    _analyzers['D008'] = D008AvoidLongFunctionsAnalyzer();
+    _analyzers['D009'] = D009LimitFunctionParametersAnalyzer();
+    _analyzers['D010'] = D010LimitCyclomaticComplexityAnalyzer();
+    _analyzers['D011'] = D011PreferNamedParametersAnalyzer();
+    _analyzers['D012'] = D012PreferNamedBooleanParametersAnalyzer();
+    _analyzers['D013'] = D013SinglePublicClassAnalyzer();
+    _analyzers['D014'] = D014UnsafeCollectionAccessAnalyzer();
+    _analyzers['D015'] = D015CopyWithAllParametersAnalyzer();
+    _analyzers['D016'] = D016ProjectShouldHaveTestsAnalyzer();
+    _analyzers['D017'] = D017PubspecDependenciesReviewAnalyzer();
+    _analyzers['D018'] = D018RemoveCommentedCodeAnalyzer();
+    _analyzers['D019'] = D019AvoidSingleChildMultiChildWidgetAnalyzer();
+    _analyzers['D020'] = D020LimitIfElseBranchesAnalyzer();
+    _analyzers['D021'] = D021AvoidNegatedBooleanChecksAnalyzer();
+    _analyzers['D022'] = D022UseSetStateCorrectlyAnalyzer();
+    _analyzers['D023'] = D023AvoidUnnecessaryMethodOverridesAnalyzer();
+    _analyzers['D024'] = D024AvoidUnnecessaryStatefulWidgetAnalyzer();
+    _analyzers['D025'] = D025AvoidNestedConditionalExpressionsAnalyzer();
+  }
+  /// Initialize the analyzer with a project path
+  Future<void> initialize({
+    required String projectPath,
+    List<String>? targetFiles,
+    String? sdkPath,
+  }) async {
+    _projectPath = projectPath;
+    // Create analysis context collection
+    final resourceProvider = PhysicalResourceProvider.INSTANCE;
+    // Determine included paths
+    final includedPaths = <String>[];
+    if (targetFiles != null && targetFiles.isNotEmpty) {
+      // Use specific files
+      for (final file in targetFiles) {
+        var absolutePath =
+            path.isAbsolute(file) ? file : path.join(projectPath, file);
+        // Normalize the path to remove .. and .
+        absolutePath = path.normalize(absolutePath);
+        if (File(absolutePath).existsSync()) {
+          includedPaths.add(absolutePath);
+        }
+      }
+    } else {
+      // Use project path
+      includedPaths.add(path.normalize(projectPath));
+    }
+    if (includedPaths.isEmpty) {
+      includedPaths.add(path.normalize(projectPath));
+    }
+    // Resolve SDK path
+    final resolvedSdkPath = sdkPath ?? _findSdkPath();
+    if (resolvedSdkPath != null) {
+      _log('Using SDK path: $resolvedSdkPath');
+    }
+    _contextCollection = AnalysisContextCollection(
+      includedPaths: includedPaths,
+      resourceProvider: resourceProvider,
+      sdkPath: resolvedSdkPath,
+    );
+    _initialized = true;
+    _log('Initialized with project: $projectPath');
+    _log('Included paths: $includedPaths');
+  }
+  /// Find the Dart SDK path
+  String? _findSdkPath() {
+    // Try DART_SDK environment variable
+    final dartSdk = Platform.environment['DART_SDK'];
+    if (dartSdk != null && _isValidSdkPath(dartSdk)) {
+      return dartSdk;
+    }
+    // Try to find 'dart' command in PATH
+    final dartFromPath = _findDartInPath();
+    if (dartFromPath != null) {
+      return dartFromPath;
+    }
+    // Try to find from resolved executable (works when running via 'dart run')
+    final dartExe = Platform.resolvedExecutable;
+    final exeName = path.basename(dartExe).toLowerCase();
+    // Only use this if we're running from 'dart' executable
+    if (exeName == 'dart' || exeName == 'dart.exe') {
+      // Dart SDK structure: <sdk>/bin/dart
+      final sdkPath = path.dirname(path.dirname(dartExe));
+      if (_isValidSdkPath(sdkPath)) {
+        return sdkPath;
+      }
+    }
+    // Try common locations
+    final commonPaths = [
+      '/usr/local/opt/dart/libexec', // Homebrew on macOS
+      '/opt/homebrew/opt/dart/libexec', // Homebrew on Apple Silicon
+      '/usr/lib/dart', // Linux
+      'C:\\tools\\dart-sdk', // Windows
+      // FVM common paths
+      '${Platform.environment['HOME']}/fvm/default/bin/cache/dart-sdk',
+    ];
+    for (final p in commonPaths) {
+      if (_isValidSdkPath(p)) {
+        return p;
+      }
+    }
+    // Try to find FVM version
+    final fvmPath = _findFvmSdk();
+    if (fvmPath != null) {
+      return fvmPath;
+    }
+    return null;
+  }
+  /// Check if a path is a valid Dart SDK
+  bool _isValidSdkPath(String sdkPath) {
+    // A valid SDK has lib/core/core.dart
+    return Directory(sdkPath).existsSync() &&
+        File(path.join(sdkPath, 'lib', 'core', 'core.dart')).existsSync();
+  }
+  /// Find dart executable in PATH and return SDK path
+  String? _findDartInPath() {
+    try {
+      final result = Process.runSync('which', ['dart']);
+      if (result.exitCode == 0) {
+        final dartPath = (result.stdout as String).trim();
+        if (dartPath.isNotEmpty) {
+          // Resolve symlinks
+          final resolved = File(dartPath).resolveSymbolicLinksSync();
+          // <sdk>/bin/dart -> <sdk>
+          var sdkPath = path.dirname(path.dirname(resolved));
+          // Check if this is Flutter SDK, try the embedded Dart SDK
+          if (!_isValidSdkPath(sdkPath)) {
+            // Flutter SDK structure: <flutter>/bin/dart -> try <flutter>/bin/cache/dart-sdk
+            final flutterEmbeddedSdk =
+                path.join(sdkPath, 'bin', 'cache', 'dart-sdk');
+            if (_isValidSdkPath(flutterEmbeddedSdk)) {
+              return flutterEmbeddedSdk;
+            }
+          } else {
+            return sdkPath;
+          }
+        }
+      }
+    } catch (_) {
+      // Ignore errors
+    }
+    return null;
+  }
+  /// Find Dart SDK from FVM
+  String? _findFvmSdk() {
+    final home = Platform.environment['HOME'];
+    if (home == null) return null;
+    final fvmVersionsDir = Directory(path.join(home, 'fvm', 'versions'));
+    if (!fvmVersionsDir.existsSync()) return null;
+    // Find any version and use its SDK
+    try {
+      final versions = fvmVersionsDir.listSync().whereType<Directory>();
+      for (final versionDir in versions) {
+        final sdkPath = path.join(versionDir.path, 'bin', 'cache', 'dart-sdk');
+        if (_isValidSdkPath(sdkPath)) {
+          return sdkPath;
+        }
+      }
+    } catch (_) {
+      // Ignore errors
+    }
+    return null;
+  }
+  // Patterns for generated files that should be skipped
+  static final _generatedFilePatterns = [
+    // Code generation patterns
+    RegExp(r'\.g\.dart$'),              // json_serializable, built_value
+    RegExp(r'\.gen\.dart$'),            // flutter_gen (assets, localization)
+    RegExp(r'\.gql\.dart$'),            // GraphQL code generation
+    RegExp(r'\.graphql\.dart$'),        // GraphQL code generation (alternative)
+    RegExp(r'\.freezed\.dart$'),        // freezed unions and sealed classes
+    RegExp(r'\.gr\.dart$'),             // gRPC code generation
+    RegExp(r'\.pb\.dart$'),             // Protocol buffers
+    RegExp(r'\.pbenum\.dart$'),         // Protocol buffers enums
+    RegExp(r'\.pbserver\.dart$'),       // Protocol buffers server
+    RegExp(r'\.pbjson\.dart$'),         // Protocol buffers JSON
+    RegExp(r'\.mocks\.dart$'),          // Mockito generated mocks
+    RegExp(r'\.config\.dart$'),         // Injectable and other config generators
+    RegExp(r'\.iconfig\.dart$'),        // Injectable config
+    RegExp(r'\.mapper\.dart$'),         // Mapper generators (dart_mappable)
+    RegExp(r'\.drift\.dart$'),          // Drift database
+    RegExp(r'\.chopper\.dart$'),        // Chopper HTTP client
+    RegExp(r'\.reflectable\.dart$'),    // Reflectable code generation
+    // Directory patterns
+    RegExp(r'__generated__'),           // General generated directory
+    RegExp(r'/generated/'),             // Generated directory
+    RegExp(r'\.generated\.'),           // Files with .generated. in name
+    // Special cases
+    RegExp(r'pigeon\.dart$'),           // Pigeon platform channels
+    RegExp(r'l10n\.dart$'),             // Flutter intl localization
+    RegExp(r'_l10n\.dart$'),            // Flutter intl localization (alternative)
+  ];
+  /// Check if file is auto-generated
+  bool _isGeneratedFile(String filePath) {
+    final fileName = path.basename(filePath);
+    final fullPath = filePath.toLowerCase();
+    return _generatedFilePatterns.any((p) => p.hasMatch(fullPath) || p.hasMatch(fileName));
+  }
+  /// Analyze a single file with specified rules
+  Future<List<Violation>> analyzeFile({
+    required String filePath,
+    List<dynamic>? rulesData,
+  }) async {
+    if (!_initialized) {
+      throw StateError('AnalyzerService not initialized');
+    }
+    final absolutePath = _getAbsolutePath(filePath);
+    // Skip generated files - they are auto-generated and shouldn't be analyzed for security
+    if (_isGeneratedFile(absolutePath)) {
+      _log('Skipping generated file: $absolutePath');
+      return [];
+    }
+    if (!File(absolutePath).existsSync()) {
+      _log('File not found: $absolutePath');
+      return [];
+    }
+    // Parse rules from data
+    final rules = _parseRules(rulesData);
+    // Get the analysis context for this file
+    final context = _contextCollection!.contextFor(absolutePath);
+    final session = context.currentSession;
+    // Get parsed unit (more reliable for linting)
+    final result = session.getParsedUnit(absolutePath);
+    if (result is! ParsedUnitResult) {
+      _log('Failed to parse: $absolutePath');
+      return [];
+    }
+    final unit = result.unit;
+    final violations = <Violation>[];
+    // Run each applicable analyzer
+    for (final rule in rules) {
+      final analyzer = _analyzers[rule.id];
+      if (analyzer == null) continue;
+      try {
+        final ruleViolations = analyzer.analyze(
+          unit: unit,
+          filePath: absolutePath,
+          rule: rule,
+          lineInfo: result.lineInfo,
+        );
+        violations.addAll(ruleViolations);
+      } catch (e) {
+        _logError('Analyzer ${rule.id} failed: $e');
+      }
+    }
+    _log('Analyzed $absolutePath: ${violations.length} violations');
+    return violations;
+  }
+  /// Get symbol table for a file
+  Future<SymbolTable?> getSymbolTable(String filePath) async {
+    if (!_initialized) {
+      throw StateError('AnalyzerService not initialized');
+    }
+    final absolutePath = _getAbsolutePath(filePath);
+    if (!File(absolutePath).existsSync()) {
+      _log('File not found: $absolutePath');
+      return null;
+    }
+    // Get the analysis context for this file
+    final context = _contextCollection!.contextFor(absolutePath);
+    final session = context.currentSession;
+    // Get parsed unit (faster than resolved for symbol extraction)
+    final result = session.getParsedUnit(absolutePath);
+    if (result is! ParsedUnitResult) {
+      _log('Failed to parse: $absolutePath');
+      return null;
+    }
+    // Extract symbol table
+    final extractor = SymbolTableExtractor(
+      filePath: absolutePath,
+      fileName: path.basename(absolutePath),
+      lineInfo: result.lineInfo,
+    );
+    return extractor.extract(result.unit);
+  }
+  /// Parse rules from JSON data
+  List<Rule> _parseRules(List<dynamic>? rulesData) {
+    if (rulesData == null || rulesData.isEmpty) {
+      // Return all supported rules with default config
+      return supportedRules.map((id) => Rule(id: id)).toList();
+    }
+    return rulesData.map((data) {
+      if (data is String) {
+        return Rule(id: data);
+      } else if (data is Map<String, dynamic>) {
+        return Rule.fromJson(data);
+      } else {
+        return Rule(id: data.toString());
+      }
+    }).toList();
+  }
+  /// Get absolute path for a file
+  String _getAbsolutePath(String filePath) {
+    if (path.isAbsolute(filePath)) {
+      return path.normalize(filePath);
+    }
+    return path
+        .normalize(path.join(_projectPath ?? Directory.current.path, filePath));
+  }
+  /// Dispose resources
+  void dispose() {
+    _contextCollection = null;
+    _initialized = false;
+  }
+  void _log(String message) {
+    stderr.writeln('[AnalyzerService] $message');
+  }
+  void _logError(String message) {
+    stderr.writeln('[AnalyzerService ERROR] $message');
+  }
+}