git_url_parse is vulnerable to Regular Expression Denial Of Service (ReDoS). The vulnerability exists in git_url_parser.py
which allows an attacker to send a payload in a URL which can cause an application crash due to inefficient regular expression complexity.
github.com/advisories/GHSA-4xqq-73wg-5mjp
github.com/coala/git-url-parse/blob/master/giturlparse/parser.py#L53
github.com/returntocorp/semgrep/commit/52d6328f1e42aad840804282e090d5f26ccb6335
github.com/returntocorp/semgrep/pull/7611
github.com/returntocorp/semgrep/pull/7943
github.com/returntocorp/semgrep/pull/7955
pypi.org/project/git-url-parse