Skip to content

fix(detectors): Update SQL Injection Regex #93650

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 3 commits into from
Jun 16, 2025
Merged

fix(detectors): Update SQL Injection Regex #93650

merged 3 commits into from
Jun 16, 2025

Conversation

roggenkemper
Copy link
Member

@roggenkemper roggenkemper commented Jun 16, 2025
edited
Loading

the previous regex prevented matching strings like accounts if the key/value was account but didn't catch things like account.id which would lead to too many potential replacements. the new regex should do a better job at this and add a test in for it.

@github-actions github-actions bot added the Scope: Backend Automatically applied to PRs that change backend components label Jun 16, 2025
@codecov Codecov
Copy link

codecov bot commented Jun 16, 2025
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

✅ All tests successful. No failed tests found.

Additional details and impacted files 
@@            Coverage Diff             @@
##           master   #93650      +/-   ##
==========================================
+ Coverage   83.12%   88.03%   +4.91%     
==========================================
  Files       10324    10324              
  Lines      595574   595578       +4     
  Branches    23135    23135              
==========================================
+ Hits       495045   524321   +29276     
+ Misses     100035    70763   -29272     
  Partials      494      494

@roggenkemper roggenkemper marked this pull request as ready for review June 16, 2025 21:43
@roggenkemper roggenkemper requested review from a team as code owners June 16, 2025 21:43
@roggenkemper roggenkemper merged commit 431da3e into master Jun 16, 2025
64 checks passed
@roggenkemper roggenkemper deleted the roggenkemper/fixregex branch June 16, 2025 22:43
billyvg pushed a commit that referenced this pull request Jun 18, 2025
@roggenkemper @billyvg
fix(detectors): Update SQL Injection Regex (#93650)
8db1d03 
the previous regex prevented matching strings like `accounts` if the
key/value was `account` but didn't catch things like `account.id` which
would lead to too many potential replacements. the new regex should do a
better job at this and add a test in for it.
andrewshie-sentry pushed a commit that referenced this pull request Jun 19, 2025
@roggenkemper @andrewshie-sentry
fix(detectors): Update SQL Injection Regex (#93650)
0e8f815 
the previous regex prevented matching strings like `accounts` if the
key/value was `account` but didn't catch things like `account.id` which
would lead to too many potential replacements. the new regex should do a
better job at this and add a test in for it.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@nora-shap nora-shap nora-shap approved these changes

Assignees
No one assigned
Labels
Scope: Backend Automatically applied to PRs that change backend components
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@roggenkemper @nora-shap