Change Json regex to prevent timeout with partial json #43

ogchrislem · 2024-05-13T10:52:26Z

Json parsing can fail with incomplete json, timing out with no exception thrown. Adding the word boundary match to the regex prevents this. Unsure of any further implications but complete json is still parsed and coloured successfully after the change

Example failing code before change using ColorCode via Markdig

using Markdown.ColorCode;
using ColorCode.Styling;
using System;

public class Program
{
	public static void Main()
	{
		
		var markdownPipeline = new Markdig.MarkdownPipelineBuilder()            
			.UseColorCode(styleDictionary: StyleDictionary.DefaultDark)			
			.Build();
		
		var result = Markdig.Markdown.ToHtml("```json\n[\n    {\n        \"jsonfield1\": \"value1\",\n        \"jsonfield2\": \"value2\"\n    },\n    {\n        \"jsonfield1\": \"value1 value1 value1 value1 value1 value1 value1 ",markdownPipeline);
		
		Console.WriteLine(result); 
	}
}

Json parsing can fail with incomplete json, and just timeout with no exception thrown. Adding the word boundary match to the regex prevents this. Unsure of any further implications but complete json is still parsed successfully after the change

ogchrislem · 2024-05-13T10:57:14Z

@dotnet-policy-service agree

hoverwars approved these changes Oct 30, 2024

View reviewed changes

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Change Json regex to prevent timeout with partial json #43

Change Json regex to prevent timeout with partial json #43

Uh oh!

ogchrislem commented May 13, 2024

Uh oh!

ogchrislem commented May 13, 2024

Uh oh!

Uh oh!

Change Json regex to prevent timeout with partial json #43

Are you sure you want to change the base?

Change Json regex to prevent timeout with partial json #43

Uh oh!

Conversation

ogchrislem commented May 13, 2024

Uh oh!

ogchrislem commented May 13, 2024

Uh oh!

Uh oh!