-
-
The affected code is located in [grammar.js-line191](https://github.com/DmitrySoshnikov/syntax/blob/master/src/grammar/grammar.js#L191). It uses the vulnerable regular expression `'(\\.|[^'\\])*'`. Wh…
-
### Problem
Onigmo is a backtracking regex engine. For this reason, it can sometime
become exceptionally slow, in particular, with this class of inputs:
regex : ^(a+)+$
string: aaaaaaa…
-
We'll need to implement ReDoS and regex injection queries following up on https://github.com/Semmle/ql/pull/2743
-
This issue has been generated on-behalf of snoopysecurity (https://huntr.dev/app/users/snoopysecurity)
## Vulnerability Description
It is possible to insert an evil regex as part of benchmark options…
-
# Description
https://github.com/department-of-veterans-affairs/vets-website/security/dependabot/8
# Acceptance Criteria
- [ ] The denial of service issue with `semver-regex` has been resolved and de…
-
Imported from upstream, reported by mkienow-r7.
prefix is controllable by the caller and could result in a regular expression denial of service (ReDoS).
- api/routes/credentials.js:
`_id: {$r…
-
Moderate | Regular Expression Denial of Service (ReDoS) in micromatch
Package: micromatch
Patched in: >=4.0.8
Dependency of: vite-plugin-commonjs
Path: vite-plugin-commonjs > fast-glob > micr…
-
:robot: A dedicated issue to run tests and deploy release [v0.0.2](https://github.com/deckhouse/deckhouse-test-2/milestone/5).
---
Release issue commands and options
You can trigger release relat…
-
### Preliminary Checks
- [X] This issue is not a duplicate. Before opening a new issue, please search existing issues: https://github.com/gatsbyjs/gatsby/issues
- [X] This issue is not a question,…