Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
fix(api): fix inefficient RegExp that may cause ReDoS
Fixes inefficient RegExp which could cause Regular expression Denial of Service attack The problematic part (?:\[(?:\d*|[a-z0-9_-]+)\])* will matches (empty) [] [0123] [abcd] [0a_1b_c2] [][] [0123][] [abcd][0a_1b_c2] All these pattern is covered with the fixed regexp, I think.
- Loading branch information