Skip to content

Iss #89 - Replace regex in commons to address vulnerable regex

Martin Lowe requested to merge malowe/eclipsefdn-api-common:malowe/main/89 into main

Sonar reported that the regex for checking the page is vulnerable to backtracking attacks, so it was removed. In it's place, we added a helper to parse parameters in a query string.

The previous solution of having a regex helper was very expensive computationally, and didn't fully address the issue, so it was discarded.

Merge request reports