Incomplete regular expression WORKFORCE_AUDIENCE_PATTERN #1385
Labels
priority: p2
Moderately-important priority. Fix may not be included in next release.
type: bug
Error or flaw in code with unintended results or allowing sub-optimal usage patterns.
My repository( (hankei6km/gdrive-act-share ) contains the code that bundles googleapis/google-auth-library-nodejs. And my repositry is enabled CodeQL.
CodeQL has detected that it has not escaped the meta-character.
google-auth-library-nodejs/src/auth/baseexternalclient.ts
Lines 61 to 62 in 54cfaaf
Environment details
google-auth-library
version: google-auth-library@7.14.0Steps to reproduce
I checked it in the cloned repository.
I Added
//iam.googleapisXcom/locations/global/workforcePools/workloadPools/providers/oidc
to this test.https://github.com/hankei6km/test-google-auth-library-nodejs/blob/b5f091b2b304645e7039e6eb778130ad88fb6842/test/test.baseexternalclient.ts#L285-L286
It was not thrown.
https://github.com/hankei6km/test-google-auth-library-nodejs/runs/5672358984?check_suite_focus=true#step:8:820
After fixing it, it was thrown.
https://github.com/hankei6km/test-google-auth-library-nodejs/blob/7fd8372539d77c69552848c1e3e95d76d44a8e30/src/auth/baseexternalclient.ts#L60-L62
The text was updated successfully, but these errors were encountered: