Added python REDOS rules (!59) · Merge requests · GitLab.com / GitLab Security Division / Product Security Department / Application Security / SAST Custom Rules

Please check this box if this contribution uses AI-generated content (including content generated by GitLab Duo features) as outlined in the GitLab DCO & CLA. As a benefit of being a GitLab Community Contributor, you receive complimentary access to GitLab Duo.

What problem is this solving

This is catching any code that could potentially allow REDOS in python (using re library without timeout instead of regex library which mitigates against redos or timeout with the re library)

Related issue

REDOS

Output from semgrep with the new rule

Edited Apr 03, 2025 by 🤖 GitLab Bot 🤖

Added python REDOS rules

What problem is this solving

Related issue

Output from semgrep with the new rule

Merge request reports