Implement ReDoS vulnerability detection on a regexp AST

semgrep / semgrep

Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.

https://semgrep.dev

GNU Lesser General Public License v2.1

10.68k stars 627 forks source link

Implement ReDoS vulnerability detection on a regexp AST #3737

Open mjambon opened 3 years ago

mjambon commented 3 years ago

This is part of #3735

stale[bot] commented 3 years ago

This issue is being marked stale because there hasn't been any activity in 30 days. Please leave a comment if you think this issue is still relevant and should be prioritized, otherwise it will be automatically closed in 7 days (you can always reopen it later).

stale[bot] commented 2 years ago

Stale-bot has closed this stale item. Please reopen it if this is in error.