Closed PPsyrius closed 7 months ago
From SonarCloud check, for dev branch
dev
Make sure the regex used here, which is vulnerable to polynomial runtime due to backtracking, cannot lead to denial of service. Using slow regular expressions is security-sensitivepython:S5852
Make sure the regex used here, which is vulnerable to polynomial runtime due to backtracking, cannot lead to denial of service.
Using slow regular expressions is security-sensitivepython:S5852
All 3 affected instances are:
pr = re.findall(r"^(.*) \(#\d+ .*\)$", pr)[0]
subdivision_group_re = re.compile(".*: (.*)")
subdivision_aliases_re = re.compile(r"(.*)\s\((.*?)\)")
From SonarCloud check, for
dev
branchAll 3 affected instances are:
pr = re.findall(r"^(.*) \(#\d+ .*\)$", pr)[0]
in scripts/generate_release_notes.pysubdivision_group_re = re.compile(".*: (.*)")
andsubdivision_aliases_re = re.compile(r"(.*)\s\((.*?)\)")
in test/test_docs.py