Add DROP SERVER AUDIT SPECIFICATION statement support

- Add DropServerAuditSpecificationStatement AST type
- Update parser to distinguish DROP SERVER AUDIT from DROP SERVER AUDIT SPECIFICATION
- Add missing server audit group name mappings (LOGIN_CHANGE_PASSWORD_GROUP,
  BROKER_LOGIN_GROUP, SERVER_PRINCIPAL_CHANGE_GROUP, etc.)

Enables: ServerAuditSpecificationStatementTests, Baselines100_ServerAuditSpecificationStatementTests,
         Baselines150_ServerAuditSpecificationStatementTests150, ServerAuditSpecificationStatementTests150

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

Author: kyleconroy

ast/server_audit_statement.go

@@ -33,6 +33,15 @@ type DropServerAuditStatement struct {
 func (s *DropServerAuditStatement) statement() {}
 func (s *DropServerAuditStatement) node()      {}
 
+// DropServerAuditSpecificationStatement represents a DROP SERVER AUDIT SPECIFICATION statement
+type DropServerAuditSpecificationStatement struct {
+	Name       *Identifier
+	IsIfExists bool
+}
+
+func (s *DropServerAuditSpecificationStatement) statement() {}
+func (s *DropServerAuditSpecificationStatement) node()      {}
+
 // AuditTarget represents the target of a server audit
 type AuditTarget struct {
 	TargetKind    string // File, ApplicationLog, SecurityLog

parser/marshal.go

@@ -207,6 +207,8 @@ func statementToJSON(stmt ast.Statement) jsonNode {
 		return dropServerRoleStatementToJSON(s)
 	case *ast.DropServerAuditStatement:
 		return dropServerAuditStatementToJSON(s)
+	case *ast.DropServerAuditSpecificationStatement:
+		return dropServerAuditSpecificationStatementToJSON(s)
 	case *ast.DropDatabaseAuditSpecificationStatement:
 		return dropDatabaseAuditSpecificationStatementToJSON(s)
 	case *ast.DropAvailabilityGroupStatement:
@@ -10308,6 +10310,17 @@ func dropServerAuditStatementToJSON(s *ast.DropServerAuditStatement) jsonNode {
 	return node
 }
 
+func dropServerAuditSpecificationStatementToJSON(s *ast.DropServerAuditSpecificationStatement) jsonNode {
+	node := jsonNode{
+		"$type":      "DropServerAuditSpecificationStatement",
+		"IsIfExists": s.IsIfExists,
+	}
+	if s.Name != nil {
+		node["Name"] = identifierToJSON(s.Name)
+	}
+	return node
+}
+
 func dropDatabaseAuditSpecificationStatementToJSON(s *ast.DropDatabaseAuditSpecificationStatement) jsonNode {
 	node := jsonNode{
 		"$type":      "DropDatabaseAuditSpecificationStatement",

parser/parse_ddl.go

@@ -1086,6 +1086,17 @@ func (p *Parser) parseDropServerRoleStatement() (ast.Statement, error) {
 		return stmt, nil
 	case "AUDIT":
 		p.nextToken()
+		// Check if next token is SPECIFICATION
+		if strings.ToUpper(p.curTok.Literal) == "SPECIFICATION" {
+			p.nextToken()
+			stmt := &ast.DropServerAuditSpecificationStatement{}
+			stmt.Name = p.parseIdentifier()
+			// Skip optional semicolon
+			if p.curTok.Type == TokenSemicolon {
+				p.nextToken()
+			}
+			return stmt, nil
+		}
 		stmt := &ast.DropServerAuditStatement{}
 		stmt.Name = p.parseIdentifier()
 		// Skip optional semicolon

parser/parse_statements.go

@@ -3796,6 +3796,22 @@ func convertAuditGroupName(name string) string {
 		"DATABASE_OBJECT_ACCESS_GROUP":             "DatabaseObjectAccess",
 		"BATCH_COMPLETED_GROUP":                    "BatchCompletedGroup",
 		"BATCH_STARTED_GROUP":                      "BatchStartedGroup",
+		"SUCCESSFUL_LOGIN_GROUP":                   "SuccessfulLogin",
+		"LOGOUT_GROUP":                             "Logout",
+		"SERVER_STATE_CHANGE_GROUP":                "ServerStateChange",
+		"FAILED_LOGIN_GROUP":                       "FailedLogin",
+		"LOGIN_CHANGE_PASSWORD_GROUP":              "LoginChangePassword",
+		"SERVER_ROLE_MEMBER_CHANGE_GROUP":          "ServerRoleMemberChange",
+		"SERVER_PRINCIPAL_IMPERSONATION_GROUP":     "ServerPrincipalImpersonation",
+		"SERVER_OBJECT_OWNERSHIP_CHANGE_GROUP":     "ServerObjectOwnershipChange",
+		"DATABASE_MIRRORING_LOGIN_GROUP":           "DatabaseMirroringLogin",
+		"BROKER_LOGIN_GROUP":                       "BrokerLogin",
+		"SERVER_PERMISSION_CHANGE_GROUP":           "ServerPermissionChange",
+		"SERVER_OBJECT_PERMISSION_CHANGE_GROUP":    "ServerObjectPermissionChange",
+		"SERVER_OPERATION_GROUP":                   "ServerOperation",
+		"TRACE_CHANGE_GROUP":                       "TraceChange",
+		"SERVER_OBJECT_CHANGE_GROUP":               "ServerObjectChange",
+		"SERVER_PRINCIPAL_CHANGE_GROUP":            "ServerPrincipalChange",
 	}
 	if mapped, ok := groupMap[strings.ToUpper(name)]; ok {
 		return mapped

parser/testdata/Baselines100_ServerAuditSpecificationStatementTests/metadata.json

@@ -1 +1 @@
-{"todo": true}
+{}

parser/testdata/Baselines150_ServerAuditSpecificationStatementTests150/metadata.json

@@ -1 +1 @@
-{"todo": true}
+{}

parser/testdata/ServerAuditSpecificationStatementTests/metadata.json

@@ -1 +1 @@
-{"todo": true}
+{}

parser/testdata/ServerAuditSpecificationStatementTests150/metadata.json

@@ -1 +1 @@
-{"todo": true}
+{}