📊 Quantitative test results for language: eng, year: 2023, size: 10K, paranoia level: 1:
🚀 Quantitative testing did not detect new false positives

Your regex is too wide, it is matching, for example:

\anything-here-unlimited-lenght{
\anything-here-unlimited-lenght=
\anything-here-unlimited-lenght|

I suggest to match only specitifc latex commands, which we consider dangerous, for example \openin\file=.

Should not be merged yet.

Already merged, revert not possible without creating another PR. Will create another PR with suggested changes.

Thanks.

@Xhoenix @azurit seems like this rule sneaked in release v4.17.0 without the proposed change. I am actually worried about the potential false positives it may create. Should we act on it ? Thanks in advance

Thanks @S0obi. @Xhoenix could you open that PR? We can create a patch release.

FYI @fzipi.

Ugh.

@Xhoenix You promised to send a PR, do you have time for it or should we handle it?

I wanted to implement the changes, but decided not due to the discussion in #4210. Let's get that sorted out.

It MUST be changed somehow, no matter what, we cannot match strings like \................whole web page containing anything with any lenght................= on PL1.

I'll try to modify #4210.

@azurit I've suggested some changes in #4210 , either you can implement those, or close that PR and come up with your own changes, otherwise we'll have to revert this PR, until a fix is provided, since we can't accept a clear FP at PL 1 in production.

For what is worth, we are reverting this one then until someone comes with a fix.