refactor: rename ExtractArtifacts to ExtractArtifactIds for precision

The flag gates artifact ID extraction specifically (the name/purl used to
identify internal modules), not general artifact data. The previous name
caused confusion with CI/CD artifact concepts.

Author: anderruiz

pkg/extractor/extract.go

@@ -149,10 +149,10 @@ var ErrExtractorNotFound = errors.New("could not determine extractor")
 // ScanContext is used to pass context to extractors
 // It is passed to extractors to allow them to access the root directory of the scan as well as the reporter
 type ScanContext struct {
-	EnabledParsers             map[string]bool
-	RootDir                    string
-	Reporter                   reporter.Reporter
-	ExtractMavenPomArtifactIds bool
+	EnabledParsers     map[string]bool
+	RootDir            string
+	Reporter           reporter.Reporter
+	ExtractArtifactIds bool
 }
 
 func ExtractDeps(f DepFile, context ScanContext) (Lockfile, error) {
@@ -201,7 +201,7 @@ func ExtractDeps(f DepFile, context ScanContext) (Lockfile, error) {
 		return parsedLockfile, err
 	}
 	defer depFile.Close()
-	if context.ExtractMavenPomArtifactIds {
+	if context.ExtractArtifactIds {
 		if e, ok := extractor.(ArtifactExtractor); ok {
 			artifact, err := e.GetArtifact(depFile, context)
 			if err == nil {

pkg/extractor/python/parse-pyproject-toml-artifact_test.go

@@ -31,7 +31,7 @@ version = "1.0.0"
 	}
 	defer f.Close()
 
-	artifact, err := python.PyProjectExtractor.GetArtifact(f, extractor.ScanContext{ExtractArtifacts: true})
+	artifact, err := python.PyProjectExtractor.GetArtifact(f, extractor.ScanContext{ExtractArtifactIds: true})
 	if err != nil {
 		t.Fatalf("unexpected error: %v", err)
 	}
@@ -69,7 +69,7 @@ version = "1.0.0"
 	}
 	defer f.Close()
 
-	artifact, err := python.PyProjectExtractor.GetArtifact(f, extractor.ScanContext{ExtractArtifacts: true})
+	artifact, err := python.PyProjectExtractor.GetArtifact(f, extractor.ScanContext{ExtractArtifactIds: true})
 	if err != nil {
 		t.Fatalf("expected no error, got: %v", err)
 	}
@@ -78,7 +78,7 @@ version = "1.0.0"
 	}
 }
 
-func TestPyProjectTOMLExtractor_GetArtifact_ExtractArtifactsDisabled(t *testing.T) {
+func TestPyProjectTOMLExtractor_GetArtifact_ExtractArtifactIdsDisabled(t *testing.T) {
 	t.Parallel()
 
 	dir := t.TempDir()
@@ -97,13 +97,13 @@ name = "my-lib"
 	}
 	defer f.Close()
 
-	// ExtractArtifacts is false — should return nil
-	artifact, err := python.PyProjectExtractor.GetArtifact(f, extractor.ScanContext{ExtractArtifacts: false})
+	// ExtractArtifactIds is false — should return nil
+	artifact, err := python.PyProjectExtractor.GetArtifact(f, extractor.ScanContext{ExtractArtifactIds: false})
 	if err != nil {
 		t.Fatalf("expected no error, got: %v", err)
 	}
 	if artifact != nil {
-		t.Errorf("expected nil artifact when ExtractArtifacts is false, got %+v", artifact)
+		t.Errorf("expected nil artifact when ExtractArtifactIds is false, got %+v", artifact)
 	}
 }
 
@@ -155,7 +155,7 @@ func TestPyProjectTOMLExtractor_GetArtifact_NormalizesName(t *testing.T) {
 			}
 			defer f.Close()
 
-			artifact, err := python.PyProjectExtractor.GetArtifact(f, extractor.ScanContext{ExtractArtifacts: true})
+			artifact, err := python.PyProjectExtractor.GetArtifact(f, extractor.ScanContext{ExtractArtifactIds: true})
 			if err != nil {
 				t.Fatalf("unexpected error: %v", err)
 			}

pkg/extractor/python/parse-pyproject-toml.go

@@ -357,7 +357,7 @@ func isConcreteVersion(version string) bool {
 // own path as Filename so that findArtifact can match packages from sibling
 // lockfiles (e.g. requirements.txt) against this module.
 func (e PyProjectTOMLExtractor) GetArtifact(f extractor.DepFile, ctx extractor.ScanContext) (*models.ScannedArtifact, error) {
-	if !ctx.ExtractArtifacts {
+	if !ctx.ExtractArtifactIds {
 		return nil, nil
 	}
 

pkg/sbomgen/build_files.go

@@ -232,7 +232,7 @@ func parseArtifactID(purl string) string {
 func buildProcessorContext(bom *cyclonedx.BOM) ProcessorContext {
 	ctx := ProcessorContext{
 		FileDependencies: make(map[string][]string),
-		ArtifactIDs: make(map[string]string),
+		ArtifactIDs:      make(map[string]string),
 	}
 
 	for _, comp := range *bom.Components {

pkg/sbomgen/sbomgen.go

@@ -31,19 +31,21 @@ type Options struct {
 	// ExcludePaths is a list of glob patterns to exclude from scanning.
 	ExcludePaths []string
 
-	// ExtractMavenPomArtifactIds controls whether Maven pom.xml artifact IDs
-	// and parent dependency relationships are extracted and included in the SBOM.
+	// ExtractArtifactIds controls whether build file artifact IDs and dependency
+	// relationships are extracted and included in the SBOM. When true, extractors
+	// that implement ArtifactExtractor produce file-type components and dependency
+	// edges, enabling GetBuildFileTrees dependency and ID resolution.
 	// Defaults to true in DefaultOptions.
-	ExtractMavenPomArtifactIds bool
+	ExtractArtifactIds bool
 }
 
 // DefaultOptions returns Options with sensible defaults:
 // recursive scanning enabled, no exclusions, and artifact extraction enabled.
 func DefaultOptions() Options {
 	return Options{
-		Recursive:                  true,
-		ExcludePaths:               []string{},
-		ExtractMavenPomArtifactIds: true,
+		Recursive:          true,
+		ExcludePaths:       []string{},
+		ExtractArtifactIds: true,
 	}
 }
 
@@ -57,10 +59,10 @@ func GenerateSBOM(dirs []string, opts Options) ([]byte, error) {
 	}
 
 	actions := scanner.ScannerActions{
-		DirectoryPaths:             dirs,
-		ExcludePaths:               opts.ExcludePaths,
-		Recursive:                  opts.Recursive,
-		ExtractMavenPomArtifactIds: opts.ExtractMavenPomArtifactIds,
+		DirectoryPaths:     dirs,
+		ExcludePaths:       opts.ExcludePaths,
+		Recursive:          opts.Recursive,
+		ExtractArtifactIds: opts.ExtractArtifactIds,
 	}
 
 	r := reporter.NewCycloneDXReporter(&bytes.Buffer{}, &bytes.Buffer{}, reporter.WarnLevel)

pkg/scanner/datadog_sbom_generator.go

@@ -48,10 +48,11 @@ type ScannerActions struct {
 	ManifestParsers     bool
 	DDEnvVars           DDEnvVars
 	ExitOnConfigFailure bool
-	// ExtractMavenPomArtifactIds controls whether Maven pom.xml artifact IDs
-	// and parent dependency relationships are extracted and included in the SBOM.
+	// ExtractArtifactIds controls whether build file artifact IDs and dependency
+	// relationships are extracted and included in the SBOM. When true, extractors
+	// that implement ArtifactExtractor produce ScannedArtifact entries.
 	// When false, ScannedArtifact entries are never produced.
-	ExtractMavenPomArtifactIds bool
+	ExtractArtifactIds bool
 }
 
 type DDEnvVars struct {
@@ -82,7 +83,7 @@ var ErrAPIFailed = models.ErrAPIFailed
 // scanDir walks through the given directory to try to find any relevant files
 // These include:
 //   - Any lockfiles with scanLockfile
-func scanDir(r reporter.Reporter, dir string, repoRoot string, recursive bool, useGitIgnore bool, enabledParsers map[string]bool, cliExcludePaths []string, configExcludePaths []string, extractMavenPomArtifactIds bool) ([]extractor.PackageDetails, []models.ScannedArtifact, error) {
+func scanDir(r reporter.Reporter, dir string, repoRoot string, recursive bool, useGitIgnore bool, enabledParsers map[string]bool, cliExcludePaths []string, configExcludePaths []string, extractArtifacts bool) ([]extractor.PackageDetails, []models.ScannedArtifact, error) {
 	scanRoot := dir
 	// Normalize the scan root once before exclusion matching.
 	if absPath, err := filepath.Abs(dir); err == nil {
@@ -154,7 +155,7 @@ func scanDir(r reporter.Reporter, dir string, repoRoot string, recursive bool, u
 					return nil
 				}
 
-				context := extractor.ScanContext{EnabledParsers: enabledParsers, RootDir: dir, Reporter: r, ExtractMavenPomArtifactIds: extractMavenPomArtifactIds}
+				context := extractor.ScanContext{EnabledParsers: enabledParsers, RootDir: dir, Reporter: r, ExtractArtifactIds: extractArtifacts}
 				pkgs, artifact, err := scanLockfile(path, context)
 				if err != nil {
 					r.Warnf("Attempted to scan lockfile but failed: %s (%v)\n", path, err.Error())
@@ -303,7 +304,7 @@ func DoScan(actions ScannerActions, r reporter.Reporter) (models.VulnerabilityRe
 			absolutePath = absPath
 		}
 		r.Infof("Scanning directory '%s', resolved absolute path '%s'\n", dir, absolutePath)
-		pkgs, artifacts, err := scanDir(r, dir, repoRoot, actions.Recursive, !actions.NoIgnore, enabledParsers, actions.ExcludePaths, configExcludePaths, actions.ExtractMavenPomArtifactIds)
+		pkgs, artifacts, err := scanDir(r, dir, repoRoot, actions.Recursive, !actions.NoIgnore, enabledParsers, actions.ExcludePaths, configExcludePaths, actions.ExtractArtifactIds)
 		if err != nil {
 			return models.VulnerabilityResults{}, err
 		}