polyfills icon indicating copy to clipboard operation
polyfills copied to clipboard

Published 20 hours ago verified publisher icon webcomponents

[ShadyCSS] : regular expression may cause exponential backtracking

Open romainmenke opened this issue 4 years ago • 4 comments

CodeQL warnings :

/(:host)(?:\(((?:\([^)(]*\)|[^)(]*)+?)\))/

This part of the regular expression may cause exponential backtracking on strings starting with ':host(' and containing many repetitions of '''.

CWE-400 CWE-730

/(?:::slotted)(?:\(((?:\([^)(]*\)|[^)(]*)+?)\))/

This part of the regular expression may cause exponential backtracking on strings starting with '::slotted(' and containing many repetitions of '''.

CWE-400 CWE-730

As far as I can tell this issue is not recent, but CodeQL can now detect it.

romainmenke avatar Feb 12 '21 08:02 romainmenke

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.

stale[bot] avatar Feb 12 '22 18:02 stale[bot]

Hi bot!

Please don't mark as stale, this is still an issue and this repo is in dire need of TLC...

romainmenke avatar Feb 12 '22 18:02 romainmenke

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.

stale[bot] avatar Mar 18 '23 15:03 stale[bot]

Still not stale, just being ignored

romainmenke avatar Mar 18 '23 15:03 romainmenke