[SonarCloud] Suppress warning `Python:S5852` or replace the affected RegEx strings with non-* equivalent
PPsyrius opened this issue · 0 comments
PPsyrius commented
From SonarCloud check, for dev
branch
Make sure the regex used here, which is vulnerable to polynomial runtime due to backtracking, cannot lead to denial of service.
Using slow regular expressions is security-sensitivepython:S5852
All 3 affected instances are:
pr = re.findall(r"^(.*) \(#\d+ .*\)$", pr)[0]
in scripts/generate_release_notes.pysubdivision_group_re = re.compile(".*: (.*)")
andsubdivision_aliases_re = re.compile(r"(.*)\s\((.*?)\)")
in test/test_docs.py