You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The regex of the detected-twitter-oauth.yaml rule is quite permissive. It just looks for the first twitter followed by a certain amount of quoted alphanumeric characters anywhere else in the same line following.
If you have a minimized CSS file (which contains only a single line), this is very likely to produce a false positive
To Reproduce
The following part of a CSS file triggers the rule, but really should not:
Describe the bug
The regex of the
detected-twitter-oauth.yaml
rule is quite permissive. It just looks for the firsttwitter
followed by a certain amount of quoted alphanumeric characters anywhere else in the same line following.If you have a minimized CSS file (which contains only a single line), this is very likely to produce a false positive
To Reproduce
The following part of a CSS file triggers the rule, but really should not:
Expected behavior
Either the rule should be written with a stricter regex, or at least CSS files should be ignored as a workaround.
Priority
How important is this to you?
Additional Context
The text was updated successfully, but these errors were encountered: