Skip to content

Embed Backdoor Rules #518

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
vamsipolavarapu-msft wants to merge 1 commit into
base: main
Choose a base branch
from
Draft

Embed Backdoor Rules #518

vamsipolavarapu-msft wants to merge 1 commit into from

Conversation

@vamsipolavarapu-msft
Copy link

@vamsipolavarapu-msft vamsipolavarapu-msft commented Oct 23, 2025

Copilot generated

This pull request refactors the DetectBackdoorTool to improve how backdoor detection rules are loaded and used, transitioning from loading rules from the file system to using embedded resources. This makes rule management more robust and simplifies deployment. Additionally, the detection workflow and result display logic have been modernized for clarity and maintainability.

Backdoor rule loading and resource management:

  • All backdoor detection rule JSON files in Resources\BackdoorRules are now included as embedded resources in the Shared.CLI.csproj file, replacing previous content-only inclusion. This allows the application to load rules directly from the assembly rather than the file system.
  • The legacy RULE_DIRECTORY property and related filesystem-based rule loading logic have been removed from DetectBackdoorTool, and replaced with a new LoadEmbeddedRules() method that loads all embedded rule files at runtime.

Detection workflow and result display improvements:

  • The main RunAsync method now validates targets, loads embedded rules, and processes each target (package URL, directory, or file) with improved error handling and logging.
  • Detection results are now displayed in a clearer format, showing the number of matches per target and providing improved output for each match, including trimmed file paths and excerpted code lines.
  • Legacy detection and result display logic have been removed in favor of the new workflow, streamlining the codebase and improving maintainability.

@vamsipolavarapu
Embed Backdoor Rules and Refactor Analysis
97bbbf6 
Enhanced the project by embedding backdoor rule JSON files as `EmbeddedResource` items in `Shared.CLI.csproj`, allowing runtime access without file system dependency. Updated `CharacteristicTool.cs` to support embedded rules in `AnalyzeFile`, `AnalyzeDirectory`, and `AnalyzePackage` methods, and added `AnalyzeDirectoryRaw` for raw match records. Refactored `DetectBackdoorTool.cs` to load rules directly from assembly resources, removing the `RULE_DIRECTORY` property. Introduced new methods for package and directory analysis, improving flexibility and reducing external file reliance.
@gfs
Copy link
Contributor

gfs commented Oct 23, 2025

/azp run

@azure-pipelines
Copy link

azure-pipelines bot commented Oct 23, 2025

Azure Pipelines successfully started running 1 pipeline(s).

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@vamsipolavarapu-msft @gfs @vamsipolavarapu