codeql/ruby/change-notes/2021-10-29-regexp-injection.md

mirror of https://github.com/github/codeql.git synced 2025-12-18 18:10:39 +01:00
lgtm,codescanning
* A new query (`rb/regexp-injection`) has been added. The query finds regular expressions constructed from user input, which could allow an attacker to perform a Regular Expression Denial of Service (ReDoS) attack.
	`lgtm,codescanning`
	* A new query (`rb/regexp-injection`) has been added. The query finds regular expressions constructed from user input, which could allow an attacker to perform a Regular Expression Denial of Service (ReDoS) attack.