Scout Runner is a command-line tool designed to streamline the precision and recall process of vulnerability detectors. It supports flexible input patterns, including wildcards and nested directory structures, allowing users to efficiently handle large datasets. By automating this step, Scout Runner simplifies data analysis, enabling faster identification and organization of vulnerabilities across multiple files.
$ git clone https://github.com/CoinFabrik/scout-runner.git
$ cd scout-runner
$ cargo install --path .This will install cargo-scout-runner into Cargo.
$ cargo scout-runner <path 1> <path 2> ...Any number of paths pointing to input CSVs can be provided. The paths can contain wildcards, and double stars are supported. For example, this will process each CSV in the data directory.
$ cargo scout-runner data/*.csvOn the other hand, the following will process every CSV in the data directory, including subdirectories.
$ cargo scout-runner data/**/*.csvOther, more complicated patterns such as the following also work.
$ cargo scout-runner data/**/soroban/**/*.csvWe - CoinFabrik - are a research and development company specialized in Web3, with a strong background in cybersecurity. Founded in 2014, we have worked on over 500 blockchain-related projects, EVM based and also for Solana, Algorand, and Polkadot. Beyond development, we offer security audits through a dedicated in-house team of senior cybersecurity professionals, currently working on code in Substrate, Solidity, Clarity, Rust, and TEAL.
Our team has an academic background in computer science and mathematics, with work experience focused on cybersecurity and software development, including academic publications, patents turned into products, and conference presentations. Furthermore, we have an ongoing collaboration on knowledge transfer and open-source projects with the University of Buenos Aires.
Scout Runner is licensed and distributed under a MIT license. Contact us if you're looking for an exception to the terms.