safe-regex2

detect possibly catastrophic, exponential-time regular expressions

3.1.0

latest

source

npm

Version published: last year

Weekly downloads: 1.5M; decreased by-4.72%

Maintainers: 1

Install size: 72.1 kB

Created: 5 years ago

Weekly downloads

Readme

Source

safe-regex2

detect potentially catastrophic exponential-time regular expressions by limiting the star height to 1

This is a fork of https://github.com/substack/safe-regex at 1.1.0.

WARNING: This module has both false positives and false negatives. It is not meant as a full checker, but it detect basic cases.

example

var safe = require('safe-regex2');
var regex = process.argv.slice(2).join(' ');
console.log(safe(regex));

$ node safe.js '(x+x+)+y'
false
$ node safe.js '(beep|boop)*'
true
$ node safe.js '(a+){10}'
false
$ node safe.js '\blocation\s*:[^:\n]+\b(Oakland|San Francisco)\b'
true

methods

var safe = require('safe-regex')

var ok = safe(re, opts={})

Return a boolean ok whether or not the regex re is safe and not possibly catastrophic.

re can be a RegExp object or just a string.

If the re is a string and is an invalid regex, returns false.

opts.limit - maximum number of allowed repetitions in the entire regex. Default: 25.

install

With npm do:

npm install safe-regex2

license

MIT

Keywords

FAQs

What is safe-regex2?

Is safe-regex2 popular?

Is safe-regex2 well maintained?

Last updated on 04 Dec 2022

Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install