CVE-2026-34827: Ruby Unescaped Regex Interpolation
Unescaped interpolation in a regular expression was detected. When interpolating user-controlled data or configurations into a regular expression for a strip-prefix or match operation, it must be escaped to prevent logic bypass, information disclosure, or Denial of Service (ReDoS). If the interpolation contains regex metacharacters, the substitution may sile
greprules fetch cve-2026-34827-ruby-unescaped-regex-interpolation --engine opengrepDescription
Unescaped interpolation in a regular expression was detected. When interpolating user-controlled data or configurations into a regular expression for a strip-prefix or match operation, it must be escaped to prevent logic bypass, information disclosure, or Denial of Service (ReDoS). If the interpolation contains regex metacharacters, the substitution may sile
Detection target
Not provided
Recommended fix
Not provided
False-positive notes
Not provided
Community feedback
Sign in to report false positives, mark this rule useful, or suggest metadata improvements.