1. GitHub Security Scanner: Evaluating Tree-sitter for AST-Based Vulnerability Detection to Overcome Regex Limitations
The current regex-based `SecurityScanner` has a critical, documented limitation: it cannot detect multi-line vulnerabilities where a source and sink are on different lines. This architectural gap, tracked in issue #735 and tested in PR #736, leaves a significant blind spot in automated code review. The proposed solutio...