Ruby: add change note for rb/regexp-injection

2026-05-05 05:35:13 +02:00 · 2021-10-29 11:28:34 +01:00
parent bd92403b42
commit fed0a06353
1 changed files with 2 additions and 0 deletions
--- a/ruby/change-notes/2021-10-29-regexp-injection.md
+++ b/ruby/change-notes/2021-10-29-regexp-injection.md
@@ -0,0 +1,2 @@
+lgtm,codescanning
+* A new query (`rb/regexp-injection`) has been added. The query finds regular expressions constructed from user input, which could allow an attacker to perform a Regular Expression Denial of Service (ReDoS) attack.