Custom Secret Regex (invalid regex) throwing a panic message #4348

cxlucas · 2021-10-07T14:59:24Z

Expected Behavior

If the custom secret regex is invalid or bad formatted, the Kics should avoid running it and must display a default error message.

Actual Behavior

Kics is throwing a panic message in the CLI.

Steps to Reproduce the Problem

(Command line arguments and flags used)

Download the custom regex rules and sample attached to this bug report.
Open terminal.
Go to the Kics folder.
Scan a valid sample with "--secrets-regexes-path path-to-custom-regex-file.json", for example: kics scan -p samples\terraform-secret.tf --secrets-regexes-path samples/regex_rules_48_invalid_regex.json
Kics will throw a panic message in the CLI.

Specifications

Version: 1.4.3
Platform: N/A
Subsystem: N/A

Attachments

samples.zip

The text was updated successfully, but these errors were encountered:

cxlucas added the bug Something isn't working label Oct 7, 2021

cxlucas changed the title ~~Custom Secret Regex (invalid) throwing a panic message~~ Custom Secret Regex (invalid regex) throwing a panic message Oct 7, 2021

rogeriopeixotocx mentioned this issue Oct 7, 2021

fix(engine): handle regexp compilation errors #4347

Merged

cx-joao-reigota closed this as completed in #4347 Oct 8, 2021

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Custom Secret Regex (invalid regex) throwing a panic message #4348

Custom Secret Regex (invalid regex) throwing a panic message #4348

cxlucas commented Oct 7, 2021

Custom Secret Regex (invalid regex) throwing a panic message #4348

Custom Secret Regex (invalid regex) throwing a panic message #4348

Comments

cxlucas commented Oct 7, 2021

Expected Behavior

Actual Behavior

Steps to Reproduce the Problem

Specifications

Attachments