Create pipeline for symbol reachability

Signed-off-by: ziad hany <ziadhany2016@gmail.com>

Author: ziadhany

pyproject.toml

@@ -136,12 +136,12 @@ run = "scancodeio:combined_run"
 analyze_docker_image = "scanpipe.pipelines.analyze_docker:Docker"
 analyze_root_filesystem_or_vm_image = "scanpipe.pipelines.analyze_root_filesystem:RootFS"
 analyze_windows_docker_image = "scanpipe.pipelines.analyze_docker_windows:DockerWindows"
+analyze_patch_reachability = "scanpipe.pipelines.analyze_patch_reachability:PatchReachability"
 benchmark_purls = "scanpipe.pipelines.benchmark_purls:BenchmarkPurls"
 collect_strings_gettext = "scanpipe.pipelines.collect_strings_gettext:CollectStringsGettext"
 collect_symbols_ctags = "scanpipe.pipelines.collect_symbols_ctags:CollectSymbolsCtags"
 collect_symbols_pygments = "scanpipe.pipelines.collect_symbols_pygments:CollectSymbolsPygments"
 collect_symbols_tree_sitter = "scanpipe.pipelines.collect_symbols_tree_sitter:CollectSymbolsTreeSitter"
-collect_symbols_patches = "scanpipe.pipelines.collect_patch_symbols:CollectPatchSymbols"
 enrich_with_purldb = "scanpipe.pipelines.enrich_with_purldb:EnrichWithPurlDB"
 fetch_scores = "scanpipe.pipelines.fetch_scores:FetchScores"
 find_vulnerabilities = "scanpipe.pipelines.find_vulnerabilities:FindVulnerabilities"

scanpipe/pipelines/analyze_patch_reachability.py

@@ -0,0 +1,34 @@
+#
+# Copyright (c) nexB Inc. and others. All rights reserved.
+# VulnerableCode is a trademark of nexB Inc.
+# SPDX-License-Identifier: Apache-2.0
+# See http://www.apache.org/licenses/LICENSE-2.0 for the license text.
+# See https://github.com/aboutcode-org/vulnerablecode for support or download.
+# See https://aboutcode.org for more information about nexB OSS projects.
+#
+
+from scanpipe.pipelines import Pipeline
+from scanpipe.pipes import reachability
+
+
+class PatchReachability(Pipeline):
+    """
+    Patch reachability analysis, for given a vulnerability patches
+    """
+    download_inputs = False
+    is_addon = True
+    results_url = "/project/{slug}/resources/?extra_data=reachability"
+
+    @classmethod
+    def steps(cls):
+        return (cls.analyze_and_store_patch_reachability,)
+
+    def analyze_and_store_patch_reachability(self):
+        """
+        Perform symbol-level reachability analysis for each patch.
+        This step compares the AST of patched/vulnerable files against the codebase resources.
+        Results are stored directly in the 'extra_data' of each CodebaseResource.
+        """
+        reachability.analyze_and_store_patch_reachability_results(
+            project=self.project, logger=self.log
+        )