Cross-file analysis starts doing real work.

Cross-file taint

Nyx added a two-pass pipeline. Pass 1 extracts function summaries, caps, propagation behavior, and call edges. Pass 2 uses those summaries to follow taint across files. The summaries are stored in SQLite, so later scans can reuse what did not change.

This also brought explicit cross-language interop edges. Instead of guessing across languages by name, Nyx has a structured way to model the places where code intentionally crosses that boundary.

CFG detectors

The CFG analysis engine shipped with detectors for unguarded sinks, auth gaps in web handlers, unreachable security code, error fallthrough, and resource leaks. C, C++, Go, Rust, and Java resource leak detection were part of this release too.

Other notes

• Multi-language CFG and taint support expanded across all supported languages.
• Finding scores started combining severity, entry-point proximity, path complexity, taint evidence, and confidence.
• Analysis modes landed for full, AST, and taint-oriented scans.
• The scanner reads and hashes each file once, uses Rayon parallelism, and runs SQLite WAL for faster indexed scans.

Release Notes for today's update can be found here.