codeql/ruby/change-notes/2021-10-29-regexp-injection.md

lgtm,codescanning

• A new query (rb/regexp-injection) has been added. The query finds regular expressions constructed from user input, which could allow an attacker to perform a Regular Expression Denial of Service (ReDoS) attack.