Enhance static code analyzer rule to support positional and named password arguments

[nureka-rodrigo]

Purpose

Fixes: ballerina-platform/ballerina-library#8103

Description

This PR includes below improvements.

• Updated SecurePasswordAnalyzer to detect empty passwords in both named and positional arguments for MySQL client initialization.
• Refactored analyzer logic for improved accuracy and maintainability.
• Added support for custom MySQL import prefixes.
• Updated test resources and expected outputs to cover new cases.
• Bumped balScanVersion to 0.10.0 and used scan-tool's test API to perform testing.

Checklist

• Linked to an issue
• Updated the specification
• Updated the changelog
• Added tests
• Checked native-image compatibility

[ThisaruGuruge]

Can't we use the Semantic API for this?

[nureka-rodrigo]

As far as I know, the SemanticModel is primarily used to find references and usages of a given Node or Symbol. In this case, I am looking for a NamedArgumentNode with 'PASSWORD' as the argument name.

[ThisaruGuruge]

You can access the parameters of a function using the MethodSymbol class.

I am suggesting this because that the toString, trim, etc. are not that readable, while using the Semantic API, you can easily, and cleanly check these. Check this example as well.

[nureka-rodrigo]

@ThisaruGuruge I tried, but I wasn’t able to do this using the Semantic API. In the case of password = "test123", using semanticModel.symbol(passwordArgument) always returns empty.

[ThisaruGuruge]

You probably cannot validate the values using the Semantic API, my suggestion was to use it for types and names.

[nureka-rodrigo]

@ThisaruGuruge Shall we go with the current implementation?

[codecov]

Codecov Report

❌ Patch coverage is 0% with 48 lines in your changes missing coverage. Please review.
✅ Project coverage is 72.48%. Comparing base (5cbfcbc) to head (87844d5).
⚠️ Report is 1 commits behind head on master.

Files with missing lines	Patch %	Lines
...ler/staticcodeanalyzer/SecurePasswordAnalyzer.java	0.00%	44 Missing ⚠️
...b/mysql/compiler/staticcodeanalyzer/MySQLRule.java	0.00%	2 Missing ⚠️
...er/staticcodeanalyzer/MySQLStaticCodeAnalyzer.java	0.00%	1 Missing ⚠️
...mysql/compiler/staticcodeanalyzer/RuleFactory.java	0.00%	1 Missing ⚠️

❌ Your project check has failed because the head coverage (72.48%) is below the target coverage (80.00%). You can increase the head coverage or adjust the target coverage.

Additional details and impacted files

@@             Coverage Diff              @@
##             master    #1425      +/-   ##
============================================
- Coverage     74.43%   72.48%   -1.96%     
  Complexity      125      125              
============================================
  Files            27       27              
  Lines           669      687      +18     
  Branches        128      136       +8     
============================================
  Hits            498      498              
- Misses          122      140      +18     
  Partials         49       49              

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[ThisaruGuruge]

PR build is failing. @nureka-rodrigo can you please check?

[daneshk]

This is already addressed in the PR #1427