-
**Description of the false positive**
CodeQL is reporting a log injection vulnerability even though I am deleting the problematic characters with Kotlin's `replace` function call with a Regex as it…
-
I think if we want to catalog the web platform it requires a Birds Eye view down to the individual features. So I thought it'd be a good exercise to do that with everything defined in ECMAScript as it…
-
Tracking issue for:
- [ ] https://github.com/shgysk8zer0/node-http/security/code-scanning/1
> Some regular expressions take a long time to match certain input strings to the point where the ti…
-
Chapter|Translator|Reviewer
-|:-:|:-:
An introduction | [@zhangmac](https://github.com/zhangmac)|
JavaScript Fundamentals | [@leotian](https://github.com/leotian)|
Code quality | |
Objects: th…
-
## CVE-2019-16769 - Medium Severity Vulnerability
Vulnerable Library - serialize-javascript-1.9.0.tgz
Serialize JavaScript to a superset of JSON that includes regular expressions and functions.
Libr…
-
## CVE-2020-7660 - High Severity Vulnerability
Vulnerable Library - serialize-javascript-1.7.0.tgz
Serialize JavaScript to a superset of JSON that includes regular expressions and functions.
Library…
-
### Description
It would be great if validator skipped certain expressions.
A case I noticed this could be useful is a framework that allows using javascript expressions as attribute values in XML…
-
Performance is acceptable in Mobile Safari, but in UIWebView because its using old javascript core, its extremely slow due to the heavily used regular expressions.
http://codepen.io/anon/pen/KpzgKP
…
-
Currently we support only JavaScript regexes. However, _regexp-tree_ can be _language-agnostic_, and support any other formats/modes/syntaxes of regular expressions. Thus, `transform`, and `traverse` …
-
The regular expression engine within JavaScript doesn't provide information about the position of sub-matches within a match. That's one reason why in previous versions Java was used for this if it wa…