-
this used to work until up to 2.4.2
looks like that was introduced by https://github.com/tjenkinson/redos-detector/pull/612
-
This is a most useful project, especially given it can be easily incorporated into any CI workflow. So, please keep up the good work!
Until recently, our experience is its results are broadly in li…
-
It doesn't look like your scanner checks for regexes vulnerable to catastrophic backtracking (-> REDOS).
To do that you could use some tools I built [here](https://github.com/davisjam/vuln-regex-de…
-
## Feature
Coming back to #600 (which was 8 years ago)... Nowadays, there are excellent libraries available to check a regex against ReDoS vulnerabilities. I suggest adding such check to regex101. …
-
the regex : **^[0-9]{0,65536}$** will be cause RegexStaticAnalysis hang up. please confirm the normal regex . but the tools SDL Regex Fuzzer v1.10 it will check the regex very fast.
-
It would be useful to have an opt-in tool to help enforce some best practices and avoid some common pitfalls. Individual rules should be able to be turned on or off.
Some possible linter rules, in …
-
Hi all,
I'm a systems/security researcher at Virginia Tech and have been studying the incidence of vulnerable regexes in the wild.
This plugin's [unsafe regex detector](https://github.com/nodese…
-
# Bug Report ⚠️
The regex verification may be blocking safe regexes, such as:
1. `a+`, `b+`, `c+`, **...**, `\w+`
2. `-?\d+` _(classic number verification)_
3. `[a-zA-Z]\w+` _(classic word veri…
-
- [x] I've [opened a support ticket](https://trufflesuite.zendesk.com/hc/en-us/requests/new) before filing this issue.
---------------------------
## Issue
`@truffle/hdwallet-provider@2.1.1` …
-
I've just try to build AdGuardHome with latest release ( v0.108.0-b.7 or master as of today) of Fedora 36 on x86_64
and it seem to failed due to OpenSSL compatibility issue(?)
### Prerequisites
…