vuln-regex-detector
ActionsThis is an action to detect vulnerable regular expressions in a pull request
v1.0.3
LatestBy meekdenzo
Tags
(2)A GitHub action to detect vulnerable regex in a pull request.
Add the following to your workflow configuration:
...
- name: Checkout repository
uses: actions/checkout@v2
with:
fetch-depth: '0'
- name: Scan for redos
uses: meekdenzo/[email protected]
...Note that fetch-depth: '0'
Your full basic workflow should look something like this:
name: vuln-regex-detector
on: [workflow_dispatch]
jobs:
build:
name: Scan for redos
runs-on: ubuntu-latest
steps:
- name: Checkout repository
uses: actions/checkout@v2
with:
fetch-depth: '0'
- name: Scan for redos
uses: meekdenzo/[email protected]
vuln-regex-detector is not certified by GitHub. It is provided by a third-party and is governed by separate terms of service, privacy policy, and support documentation.
About
v1.0.3
LatestBy meekdenzo
Tags
(2)vuln-regex-detector is not certified by GitHub. It is provided by a third-party and is governed by separate terms of service, privacy policy, and support documentation.