GHSL-2021-121: fix ReDoS bug

airbnb / streamalert

StreamAlert is a serverless, realtime data analysis framework which empowers you to ingest, analyze, and alert on data from any environment, using datasources and alerting logic you define.

https://streamalert.io

Apache License 2.0

2.86k stars 334 forks source link

GHSL-2021-121: fix ReDoS bug #1325

Closed kevinbackhouse closed 1 year ago

kevinbackhouse commented 2 years ago

Fixes: #1317

This regex is very inefficient on strings like "https://a.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-}"