hyperpolymath
diff --git a/‎.claude/CLAUDE.md‎
Lines changed: 40 additions & 64 deletions b/‎.claude/CLAUDE.md‎
Lines changed: 40 additions & 64 deletions
diff --git a/‎.machine_readable/ECOSYSTEM.scm‎
Lines changed: 56 additions & 30 deletions b/‎.machine_readable/ECOSYSTEM.scm‎
Lines changed: 56 additions & 30 deletions
@@ -2,7 +2,7 @@
 
 ## Overview
 
-Static analysis and bug signature detection tool. Scans source code for weak points (unwrap/expect, unsafe blocks, panic sites, error handling gaps) across multiple languages.
+Static analysis and bug signature detection tool. Scans source code for weak points (unwrap/expect, unsafe blocks, panic sites, error handling gaps, command injection, unsafe deserialization, FFI boundaries, atom exhaustion, and more) across 47 programming languages.
 
 **Position in AmbientOps ecosystem**: Part of the hospital model, loosely affiliated. Sits alongside the Operating Room as a diagnostic tool for software health (while hardware-crash-team handles hardware health). Independent top-level repo, but feeds findings to the hospital's Records system via verisimdb.
 
@@ -11,6 +11,8 @@ Static analysis and bug signature detection tool. Scans source code for weak poi
 **IMPORTANT: This tool was renamed on 2026-02-08:**
 - Binary: `panic-attacker` → `panic-attack`
 - Subcommand: `xray` → `assail`
+- Module: `src/xray/` → `src/assail/`
+- Type: `XRayReport` → `AssailReport`
 - Report header: `X-RAY` → `ASSAIL`
 
 ## Architecture
@@ -19,12 +21,26 @@ Static analysis and bug signature detection tool. Scans source code for weak poi
 src/
 ├── main.rs              # CLI entry point (clap)
 ├── lib.rs               # Library API
-├── types.rs             # Core types (ScanResult, WeakPoint, etc.)
-├── xray/mod.rs          # Assail analyzer (renamed from xray internally)
-├── attacks/             # 6-axis stress testing
-├── signatures/          # Logic-based bug signatures (Datalog-inspired)
-├── patterns/            # Language-specific pattern matching
+├── types.rs             # Core types (AssailReport, WeakPoint, etc.)
+├── assail/              # Static analysis engine
+│   ├── mod.rs           # Public API: analyze(), analyze_verbose()
+│   ├── analyzer.rs      # 47-language analyzer with per-file detection
+│   └── patterns.rs      # Language-specific attack patterns
+├── kanren/              # miniKanren-inspired logic engine (v2.0.0)
+│   ├── mod.rs           # Module entry, re-exports
+│   ├── core.rs          # Term, Substitution, unification, FactDB, forward chaining
+│   ├── taint.rs         # TaintAnalyzer: source→sink tracking
+│   ├── crosslang.rs     # CrossLangAnalyzer: FFI boundary detection
+│   └── strategy.rs      # SearchStrategy: risk-weighted file prioritisation
+├── attack/              # 6-axis stress testing
+│   ├── executor.rs      # Attack execution engine
+│   └── strategies.rs    # Per-axis attack strategies
+├── signatures/          # Logic-based bug signature detection
+│   ├── engine.rs        # SignatureEngine (use-after-free, deadlock, etc.)
+│   └── rules.rs         # Detection rules
 └── report/
+    ├── mod.rs           # Report generation API
+    ├── generator.rs     # AssaultReport builder
     └── formatter.rs     # Output formatting (text + JSON)
 ```
 
@@ -36,18 +52,31 @@ cargo test
 
 # Run scan:
 panic-attack assail /path/to/repo
-panic-attack assail /path/to/repo --format json --output report.json
-panic-attack assail self-test  # Self-scan for validation
+panic-attack assail /path/to/repo --output report.json
+panic-attack assail /path/to/repo --verbose
+
+# Install:
+cp target/release/panic-attack ~/.asdf/installs/rust/nightly/bin/
 ```
 
 ## Key Design Decisions
 
-- **5 language analyzers**: Rust, C/C++, Go, Python, generic fallback
-- **Weak point categories**: unwrap/expect, unsafe blocks, panic sites, todo/fixme, error suppression
-- **Per-file statistics**: Each file gets individual risk scoring
+- **47 language analyzers**: Rust, C/C++, Go, Python, JavaScript, Ruby, Elixir, Erlang, Gleam, ReScript, OCaml, SML, Scheme, Racket, Haskell, PureScript, Idris, Lean, Agda, Prolog, Logtalk, Datalog, Zig, Ada, Odin, Nim, Pony, D, Nickel, Nix, Shell, Julia, Lua, + 12 nextgen DSLs
+- **20 weak point categories**: UnsafeCode, PanicPath, CommandInjection, UnsafeDeserialization, AtomExhaustion, UnsafeFFI, PathTraversal, HardcodedSecret, etc.
+- **Per-file language detection**: Each file analyzed with its own language-specific patterns
+- **miniKanren logic engine**: Relational reasoning for taint analysis, cross-language vulnerability chains, and search strategy optimisation
 - **Latin-1 fallback**: Non-UTF-8 files handled gracefully
 - **JSON output**: Machine-readable for pipeline integration
 
+## miniKanren Logic Engine (v2.0.0)
+
+The kanren module provides:
+- **Taint analysis**: Tracks data flow from sources (user input, network, deserialization) to sinks (eval, shell commands, SQL queries)
+- **Cross-language reasoning**: Detects vulnerability chains across FFI/NIF/Port/subprocess boundaries
+- **Search strategies**: Auto-selects RiskWeighted, BoundaryFirst, LanguageFamily, BreadthFirst, or DepthFirst based on project characteristics
+- **Forward chaining**: Derives new vulnerability facts from rules applied to existing facts
+- **Backward queries**: Given a vulnerability type, finds which files could cause it
+
 ## Planned Features (Next Priorities)
 
 1. **`sweep` subcommand**: Scan entire directory of git repos in one go
@@ -64,62 +93,9 @@ panic-attack assail self-test  # Self-scan for validation
 - **sustainabot**: Ecological/economic code health metrics
 - **hardware-crash-team**: Sibling tool (hardware diagnostics vs software analysis)
 
-## Sweep Subcommand (Priority - Sonnet Task)
-
-Add a `sweep` subcommand that scans an entire directory of git repos in one pass.
-
-### Design
-
-```
-panic-attack sweep /path/to/repos/ [options]
-  --format json|text|sarif       Output format (default: text)
-  --output report.json           Save aggregate report
-  --push-to-verisimdb URL        Push each result to verisimdb API
-  --push-to-data-repo PATH       Write each result to verisimdb-data repo
-  --min-risk medium              Only report repos at or above this risk level
-  --parallel N                   Number of concurrent scans (default: 4)
-```
-
-### Implementation Steps
-
-1. Add `Sweep` variant to the `Commands` enum in main.rs
-2. Walk the directory looking for `.git/` subdirectories (use walkdir, already a dependency)
-3. For each repo found, call the existing `assail` scan logic
-4. Aggregate results into a summary report
-5. Optionally push each result to verisimdb-data repo as JSON files
-6. Print aggregate summary (total repos, total weak points, top offenders)
-
-### verisimdb-data Integration
-
-When `--push-to-data-repo` is specified:
-- Write each scan result to `{data-repo}/scans/{repo-name}.json`
-- Update `{data-repo}/index.json` with summary entry
-- Git add + commit with message "scan: update {repo-name} results"
-
-### GitHub Actions Reusable Workflow
-
-Create `.github/workflows/scan-and-report.yml` as a reusable workflow:
-```yaml
-# Other repos call this:
-# uses: hyperpolymath/panic-attacker/.github/workflows/scan-and-report.yml@main
-# This runs panic-attack assail on the calling repo
-# and dispatches results to verisimdb-data
-```
-
-## Scan Results from 2026-02-08 Session
-
-21 repos scanned, 118 total weak points, zero critical, 17 high:
-- protocol-squisher: 39 weak points (highest)
-- echidna: 15 weak points
-- verisimdb: 12 weak points
-- Most high-severity findings are expected unsafe blocks in FFI/GC code
-
-Results loaded into verisimdb as hexads (verified working with text search).
-
 ## Code Style
 
 - SPDX headers on all files: `PMPL-1.0-or-later`
 - Author: Jonathan D.A. Jewell <jonathan.jewell@open.ac.uk>
 - Use anyhow::Result for error handling
-- Zero compiler warnings policy
 - Serde derive on public types for JSON serialization
@@ -1,74 +1,95 @@
 ;; SPDX-License-Identifier: PMPL-1.0-or-later
-;; Ecosystem position for panic-attacker
+;; Ecosystem position for panic-attack (formerly panic-attacker)
 ;; Media Type: application/vnd.ecosystem+scm
 
 (ecosystem
   (version "1.0")
-  (name "panic-attacker")
+  (name "panic-attack")
   (type "tool")
-  (purpose "Universal stress testing and logic-based bug signature detection")
+  (purpose "Universal static analysis and logic-based bug signature detection for 47 languages")
 
   (position-in-ecosystem
     (layer "development-tools")
     (category "testing-quality")
-    (subcategory "stress-testing-analysis")
-    (maturity "beta")
+    (subcategory "static-analysis-stress-testing")
+    (maturity "stable")
     (adoption "internal"))
 
   (related-projects
+    (project
+      (name "verisimdb")
+      (relationship "data-store")
+      (integration "panic-attack scan results stored as hexads in verisimdb")
+      (url "https://github.com/hyperpolymath/verisimdb")
+      (description "Verification-similarity database for code quality metrics"))
+
+    (project
+      (name "verisimdb-data")
+      (relationship "data-pipeline")
+      (integration "scan JSON ingested via ingest-scan.sh into verisimdb-data repo")
+      (url "https://github.com/hyperpolymath/verisimdb-data")
+      (description "Git-based data store for verisimdb scan results"))
+
     (project
       (name "hypatia")
       (relationship "consumer")
-      (integration "uses panic-attacker for repository health assessment")
+      (integration "uses panic-attack for repository health assessment, VeriSimDB connector")
       (url "https://github.com/hyperpolymath/hypatia")
       (description "Neurosymbolic CI/CD intelligence"))
 
     (project
       (name "gitbot-fleet")
       (relationship "consumer")
-      (integration "bots can trigger panic-attacker scans")
+      (integration "bots can trigger panic-attack scans via repository_dispatch")
       (url "https://github.com/hyperpolymath/gitbot-fleet")
       (description "Repository automation bots (rhodibot, echidnabot, etc.)"))
 
     (project
-      (name "git-seo")
+      (name "ambientops")
       (relationship "sibling-tool")
-      (integration "complementary repository analysis")
-      (url "https://github.com/hyperpolymath/git-seo")
-      (description "Git repository analysis and optimization"))
+      (integration "hospital model: panic-attack is diagnostic tool, ambientops is operating room")
+      (url "https://github.com/hyperpolymath/ambientops")
+      (description "AmbientOps hospital model for software health"))
+
+    (project
+      (name "hardware-crash-team")
+      (relationship "sibling-tool")
+      (integration "panic-attack handles software diagnostics, hardware-crash-team handles hardware")
+      (url "https://github.com/hyperpolymath/hardware-crash-team")
+      (description "Hardware health diagnostics"))
 
     (project
       (name "echidna")
       (relationship "test-subject")
-      (integration "used as benchmark for panic-attacker testing")
+      (integration "used as benchmark for panic-attack testing (15 weak points)")
       (url "https://github.com/hyperpolymath/echidna")
       (description "Automated theorem proving orchestrator"))
 
     (project
       (name "eclexia")
       (relationship "test-subject")
-      (integration "used as benchmark for panic-attacker testing")
+      (integration "used as benchmark for panic-attack testing")
       (url "https://github.com/hyperpolymath/eclexia")
       (description "Resource-aware adaptive programming language"))
 
     (project
       (name "rsr-template-repo")
       (relationship "template-provider")
-      (integration "panic-attacker follows RSR standards")
+      (integration "panic-attack follows RSR standards")
       (url "https://github.com/hyperpolymath/rsr-template-repo")
       (description "RSR-compliant repository template"))
 
     (project
       (name "0-ai-gatekeeper-protocol")
       (relationship "standard-provider")
-      (integration "panic-attacker implements AI manifest protocol")
+      (integration "panic-attack implements AI manifest protocol")
       (url "https://github.com/hyperpolymath/0-ai-gatekeeper-protocol")
       (description "Universal AI manifest system"))
 
     (project
       (name "robot-repo-automaton")
       (relationship "potential-consumer")
-      (integration "could use panic-attacker for automated quality checks")
+      (integration "could use panic-attack for automated quality checks")
       (url "https://github.com/hyperpolymath/robot-repo-automaton")
       (description "Automated repository fixes with confidence thresholds")))
 
@@ -111,45 +132,50 @@
 
   (future-integrations
     (integration
-      (name "Datalog engine")
-      (status "planned-v0.5")
-      (description "Real logic programming engine (Crepe/Datafrog)"))
+      (name "sweep subcommand")
+      (status "planned-v2.1")
+      (description "Bulk scanning of directory-of-repos with aggregated results"))
+
+    (integration
+      (name "verisimdb API push")
+      (status "planned-v2.1")
+      (description "Push scan results as hexads directly to verisimdb API"))
 
     (integration
-      (name "Constraint sets")
-      (status "planned-v0.4")
-      (description "YAML-based stress profiles"))
+      (name "hypatia pipeline")
+      (status "planned-v2.1")
+      (description "Feed kanren facts as Logtalk predicates to hypatia rule engine"))
 
     (integration
-      (name "CI/CD platforms")
-      (status "planned-v1.0")
-      (description "GitHub Actions, GitLab CI, Jenkins integration"))
+      (name "SARIF output")
+      (status "planned-v2.2")
+      (description "SARIF output for GitHub Security tab and CodeQL integration"))
 
     (integration
       (name "crates.io")
-      (status "planned-v1.0")
+      (status "planned-v3.0")
       (description "Publish as cargo-installable tool")))
 
   (ecosystem-contributions
     (contribution
       (type "tool")
-      (value "Novel stress testing approach combining X-Ray + multi-axis + logic-based detection"))
+      (value "Universal static analysis combining assail scan + miniKanren logic engine + multi-axis stress testing"))
 
     (contribution
       (type "pattern")
-      (value "Demonstrates Datalog-inspired bug detection in Rust"))
+      (value "miniKanren-inspired relational reasoning for taint analysis and cross-language vulnerability detection in Rust"))
 
     (contribution
       (type "benchmark")
-      (value "Provides quality metrics for hyperpolymath projects"))
+      (value "Provides quality metrics for hyperpolymath projects across 47 languages"))
 
     (contribution
       (type "standard")
       (value "Follows and validates RSR compliance patterns")))
 
   (metadata
     (created "2026-02-07")
-    (updated "2026-02-07")
+    (updated "2026-02-08")
     (maintainer "Jonathan D.A. Jewell <jonathan.jewell@open.ac.uk>")
     (license "PMPL-1.0-or-later")
     (repository "https://github.com/hyperpolymath/panic-attacker")))