Security fix for ReDoS (#3177)

* Security fix for ReDoS Security fix for ReDoS vulnerability. * Update trim.js * Update trim.js * Update trim.js
ramda · Oct 7, 2021 · 37af6ae · 37af6ae
1 parent a1a90dd
commit 37af6ae
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/source/trim.js b/source/trim.js
@@ -1,7 +1,7 @@
 import _curry1 from './internal/_curry1.js';
 
 
-var ws = '\x09\x0A\x0B\x0C\x0D\x20\xA0\u1680\u180E\u2000\u2001\u2002\u2003' +
+var ws = '\x09\x0A\x0B\x0C\x0D\x20\xA0\u1680\u2000\u2001\u2002\u2003' +
          '\u2004\u2005\u2006\u2007\u2008\u2009\u200A\u202F\u205F\u3000\u2028' +
          '\u2029\uFEFF';
 var zeroWidth = '\u200b';
@@ -21,7 +21,7 @@ var hasProtoTrim = (typeof String.prototype.trim === 'function');
  *      R.trim('   xyz  '); //=> 'xyz'
  *      R.map(R.trim, R.split(',', 'x, y, z')); //=> ['x', 'y', 'z']
  */
-var trim = !hasProtoTrim || (ws.trim() || !zeroWidth.trim()) ?
+var trim = !hasProtoTrim || ws.trim() || !zeroWidth.trim() ?
   _curry1(function trim(str) {
     var beginRx = new RegExp('^[' + ws + '][' + ws + ']*');
     var endRx = new RegExp('[' + ws + '][' + ws + ']*$');