Fix ReDos
azu opened this issue · comments
azu commented
CodeQL detect ReDoS on packages/@secretlint/secretlint-rule-npm/src/index.ts:45
This that depends on may run slow on strings starting with 'http://' and with many repetitions of 'http://a/'.
Tracking issue for:
Probably, we can use const XOAuthPattern = /https?:\/\/(.{1,256}):x-oauth-basic@github.com\//g;
azu commented
fixed