Vulnhalla/pyproject.toml at main · ogercyprien/Vulnhalla · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
[tool.poetry]
name = "vulnhalla"
version = "0.1.0"
description = "Automated CodeQL Analysis with LLM Classification"
readme = "README.md"
license = "Apache-2.0"
authors = ["CyberArk Software Ltd. <info@cyberark.com>"]
repository = "https://github.com/cyberark/Vulnhalla"

[tool.poetry.dependencies]
python = ">=3.10,<3.14"
# Python version constraint: >=3.10,<3.14
# - Minimum 3.10
# - Maximum <3.14: Not supported due to grpcio wheels unavailable

requests = "^2.31.0"
python-dotenv = "^1.0.0"
litellm = "^1.0.0"
PyYAML = "^6.0"
textual = "^0.40.0"
pySmartDL = "^1.3.4"
boto3 = "^1.34.0"
[tool.poetry.group.dev.dependencies]
pytest = "^7.4.0"
mypy = "^1.11.0"
types-requests = "^2.31.0"
types-PyYAML = "^6.0"

[tool.poetry.scripts]
vulnhalla-setup = "src.vulnhalla_setup:main"
vulnhalla = "src.pipeline:main_analyze"
vulnhalla-ui = "src.pipeline:main_ui"
vulnhalla-validate = "src.pipeline:main_validate"
vulnhalla-list = "src.pipeline:main_list"
vulnhalla-example = "src.pipeline:main_example"

[build-system]
requires = ["poetry-core"]
build-backend = "poetry.core.masonry.api"

[tool.mypy]
# Mypy configuration - conservative baseline for gradual adoption
python_version = "3.10"

# Handle namespace packages correctly (src/ is not a proper package)
namespace_packages = true
explicit_package_bases = true

# Allow imports from third-party libraries without stubs
ignore_missing_imports = true

# Useful warnings that catch common issues
warn_unused_ignores = true
warn_redundant_casts = true
no_implicit_optional = true

# Exclude non-source directories from type checking
exclude = [
    "^tests/",
    "^output/",
    "^data/",
    "^examples/",
    "__pycache__",
    "^build/",
    "^dist/",
]

# Per-module overrides for gradual adoption
# UI modules use Textual framework with complex typing; relax checks
[[tool.mypy.overrides]]
module = [
    "src.ui.*",
    "src.ui.components.*",
]
# Textual widgets have dynamic attributes and require gradual typing
disable_error_code = ["attr-defined", "misc", "arg-type", "var-annotated", "assignment"]

# LLM module works with dynamic dict structures from API responses
[[tool.mypy.overrides]]
module = "src.llm.*"
disable_error_code = ["attr-defined"]

# Main modules have some legacy typing issues to fix later
[[tool.mypy.overrides]]
module = [
    "src.vulnhalla",
    "src.pipeline",
]
disable_error_code = ["arg-type", "call-arg", "operator"]

# Utils and setup modules with some Optional handling to fix later
[[tool.mypy.overrides]]
module = [
    "src.utils.logger",
    "src.vulnhalla_setup",
]
disable_error_code = ["union-attr"]

# CodeQL modules have some type annotation and return type issues
[[tool.mypy.overrides]]
module = "src.codeql.*"
disable_error_code = ["var-annotated", "return-value", "union-attr", "arg-type", "assignment"]