GitHub

JavaScript Regex Security Scanner

If necessary you can ignore certain files or directories using the option --ignore-pattern. For example, to ignore vendored code to focus on problems in your own project you can use: Detect cases of ...
IEEE

Rexstepper: a Reference Debugger for JavaScript Regular Expressions

Abstract: Regular expressions are notoriously difficult to get right, with developers often having to resort to trial-and-error approaches. Even so, little attention ...
The Hacker News

Why Secrets in JavaScript Bundles are Still Being Missed

Leaked API keys are no longer unusual, nor are the breaches that follow. So why are sensitive tokens still being so easily exposed? To find out, Intruder’s research team looked at what traditional ...
GIGAZINE

Finally, to fully utilize the YouTube download function of yt-dlp, a JavaScript runtime such as Deno is required, and the installation procedure is like this

YouTube's specifications are extremely complex and change frequently. The yt-dlp development team previously supported YouTube using a method that heavily relied on regular expressions. However, in ...
TechRadar

An incredibly popular JavaScript library might have some worrying malware issues

CVE-2025-12735 in expr-eval allows remote code execution via unsafe input evaluation Vulnerable versions ≤2.0.2; patched in 2.0.3 and forked in expr-eval-fork 3.0.0 Developers should sanitize ...
InfoWorld

ECMAScript 2025: The best new features in JavaScript

We’ll start with the most far-reaching addition, which the spec describes as “a new Iterator global with associated static and prototype methods for working with iterators.” The most exciting part of ...
IEEE

Fast Regular Expression Matching Using Small TCAM

Abstract: Regular expression (RE) matching is a core component of deep packet inspection in modern networking and security devices. In this paper, we propose the first hardware-based RE matching ...