Skip to content

fix: harden three regexes flagged by CodeQL polynomial-redos #55

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
nahiyankhan merged 1 commit into from
Apr 24, 2026
+36 −9
Merged

fix: harden three regexes flagged by CodeQL polynomial-redos #55

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
12 changes: 9 additions & 3 deletions packages/ghost-drift/src/core/embedding/compare.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -345,14 +345,20 @@ function cosineSimilarity(a: number[], b: number[]): number {

// --- Font matching ---

const FONT_SUFFIXES =
/\s*\b(variable|var|vf|pro|new|next|display|text|mono)\b/gi;
const FONT_SUFFIXES = /\b(variable|var|vf|pro|new|next|display|text|mono)\b/gi;

/** Normalize font family name for fuzzy comparison */
/** Normalize font family name for fuzzy comparison.
*
* `FONT_SUFFIXES` intentionally omits a leading `\s*` — combining it with
* `\b` and alternation gives CodeQL's polynomial-redos check an ambiguous
* split. The trailing `.replace(/\s+/g, " ").trim()` folds any whitespace
* the suffix strip left behind, so the result is equivalent.
*/
function normalizeFontFamily(name: string): string {
return name
.replace(/['"]/g, "")
.replace(FONT_SUFFIXES, "")
.replace(/\s+/g, " ")
.trim()
.toLowerCase();
}
Expand Down
33 changes: 27 additions & 6 deletions packages/ghost-drift/src/core/fingerprint/layout.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -164,10 +164,13 @@ function scanHeadings(
): Heading[] {
const out: Heading[] = [];
for (let i = startLine - 1; i < endLine; i++) {
const m = /^(#{1,6})\s+(.*?)\s*$/.exec(lines[i]);
// `\s` rather than `\s+` avoids an ambiguous split with the following
// `.*` (both match spaces) that CodeQL flags as polynomial. `.trim()`
// on the captured group folds extra whitespace either side.
const m = /^(#{1,6})\s(.*)$/.exec(lines[i]);
if (!m) continue;
if (m[1].length === level) {
out.push({ lineNumber: i + 1, level, text: m[2] });
out.push({ lineNumber: i + 1, level, text: m[2].trim() });
} else if (m[1].length < level) {
// A shallower heading ends the region when scanning nested headings
// inside a bounded parent.
Expand All @@ -190,10 +193,28 @@ function isDelimiter(line: string): boolean {
}

function slug(s: string): string {
return s
.toLowerCase()
.replace(/[^a-z0-9]+/g, "-")
.replace(/^-+|-+$/g, "");
// Imperative rather than regex-chained because CodeQL flagged the
// three-stage /[^a-z0-9]+/g → /^-+/ → /-+$/ pipeline as polynomial on
// inputs with many '-' repetitions. Single O(n) pass, same semantics.
let out = "";
let lastDash = true;
for (let i = 0; i < s.length; i++) {
const c = s.charCodeAt(i);
const lower = c >= 65 && c <= 90 ? c + 32 : c;
const isAlnum =
(lower >= 97 && lower <= 122) || (lower >= 48 && lower <= 57);
if (isAlnum) {
out += String.fromCharCode(lower);
lastDash = false;
} else if (!lastDash) {
out += "-";
lastDash = true;
}
}
if (out.length > 0 && out.charCodeAt(out.length - 1) === 45) {
out = out.slice(0, -1);
}
return out;
}

/**
Expand Down
Loading