Skip to content

Commit

Permalink
fix(core): Fix polynomial regex vulnerability
Browse files Browse the repository at this point in the history
  • Loading branch information
michaelbromley committed Oct 27, 2021
1 parent 752cc13 commit 6675757
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion packages/core/src/api/common/extract-session-token.ts
Original file line number Diff line number Diff line change
Expand Up @@ -35,7 +35,7 @@ function getFromCookie(req: Request): string | undefined {
function getFromHeader(req: Request): string | undefined {
const authHeader = req.get('Authorization');
if (authHeader) {
const matches = authHeader.match(/bearer\s+(.+)$/i);
const matches = authHeader.match(/bearer\s(.+)$/i);
if (matches) {
return matches[1];
}
Expand Down

0 comments on commit 6675757

Please sign in to comment.