[SonarCloud] Suppress warning `Python:S5852` or replace the affected RegEx strings with non-* equivalent

Question

PPsyrius opened this issue 7 months ago · 0 comments

From SonarCloud check, for dev branch

Make sure the regex used here, which is vulnerable to polynomial runtime due to backtracking, cannot lead to denial of service.

Using slow regular expressions is security-sensitivepython:S5852

All 3 affected instances are:

pr = re.findall(r"^(.*) $#\d+ .*$$", pr)[0] in scripts/generate_release_notes.py
subdivision_group_re = re.compile(".*: (.*)") and subdivision_aliases_re = re.compile(r"(.*)\s$(.*?)$") in test/test_docs.py