yoeunes
diff --git a/‎composer.json‎
Lines changed: 1 addition & 0 deletions b/‎composer.json‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎phpstan.dist.neon‎
Lines changed: 1 addition & 2 deletions b/‎phpstan.dist.neon‎
Lines changed: 1 addition & 2 deletions
diff --git a/‎public/library-bundle.json‎
Lines changed: 79 additions & 78 deletions b/‎public/library-bundle.json‎
Lines changed: 79 additions & 78 deletions
diff --git a/‎src/Bridge/Symfony/Analyzer/RouteIssue.php‎
Lines changed: 25 additions & 0 deletions b/‎src/Bridge/Symfony/Analyzer/RouteIssue.php‎
Lines changed: 25 additions & 0 deletions
diff --git a/‎src/Bridge/Symfony/Analyzer/RouteRequirementAnalyzer.php‎
Lines changed: 113 additions & 0 deletions b/‎src/Bridge/Symfony/Analyzer/RouteRequirementAnalyzer.php‎
Lines changed: 113 additions & 0 deletions
diff --git a/‎src/Bridge/Symfony/CacheWarmer/RegexParserCacheWarmer.php‎
Lines changed: 71 additions & 0 deletions b/‎src/Bridge/Symfony/CacheWarmer/RegexParserCacheWarmer.php‎
Lines changed: 71 additions & 0 deletions
diff --git a/‎src/Bridge/Symfony/Command/RegexParserValidateCommand.php‎
Lines changed: 71 additions & 0 deletions b/‎src/Bridge/Symfony/Command/RegexParserValidateCommand.php‎
Lines changed: 71 additions & 0 deletions
diff --git a/‎src/Bridge/Symfony/DataCollector/CollectedRegex.php‎
Lines changed: 0 additions & 49 deletions b/‎src/Bridge/Symfony/DataCollector/CollectedRegex.php‎
Lines changed: 0 additions & 49 deletions
@@ -17,6 +17,7 @@
         "phpunit/phpunit": "^12.4.5",
         "phpstan/phpstan": "^2.1.32",
         "phpstan/phpstan-phpunit": "^2.0.8",
+        "symfony/console": "^7.3|^8.0",
         "symfony/http-kernel": "^7.3|^8.0",
         "symfony/dependency-injection": "^7.3|^8.0",
         "symfony/config": "^7.3|^8.0",
 
@@ -24,8 +24,7 @@ parameters:
         - tests/Bridge/PHPStan/Fixtures/*
 
     bootstrapFiles:
-#        - tools/rector/vendor/autoload.php
-        #- tools/phpbench/vendor/autoload.php
+        - tools/phpstan/vendor/autoload.php
 
     editorUrl: 'phpstorm://open?file=%%file%%&line=%%line%%'
 
 
@@ -0,0 +1,25 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * This file is part of the RegexParser package.
+ *
+ * (c) Younes ENNAJI <[email protected]>
+ *
+ * For the full copyright and license information, please view the LICENSE
+ * file that was distributed with this source code.
+ */
+
+namespace RegexParser\Bridge\Symfony\Analyzer;
+
+/**
+ * @internal
+ */
+final readonly class RouteIssue
+{
+    public function __construct(
+        public string $message,
+        public bool $isError,
+    ) {}
+}
@@ -0,0 +1,113 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * This file is part of the RegexParser package.
+ *
+ * (c) Younes ENNAJI <[email protected]>
+ *
+ * For the full copyright and license information, please view the LICENSE
+ * file that was distributed with this source code.
+ */
+
+namespace RegexParser\Bridge\Symfony\Analyzer;
+
+use RegexParser\Regex;
+use Symfony\Component\Routing\RouteCollection;
+
+/**
+ * Analyses Symfony route requirements and reports regex issues.
+ *
+ * @internal
+ */
+final readonly class RouteRequirementAnalyzer
+{
+    private const array PATTERN_DELIMITERS = ['/', '#', '~', '%'];
+
+    public function __construct(
+        private Regex $regex,
+        private int $warningThreshold,
+        private int $redosThreshold,
+    ) {}
+
+    /**
+     * @return list<RouteIssue>
+     */
+    public function analyze(RouteCollection $routes): array
+    {
+        $issues = [];
+
+        foreach ($routes as $name => $route) {
+            foreach ($route->getRequirements() as $parameter => $requirement) {
+                if (!\is_scalar($requirement)) {
+                    continue;
+                }
+
+                $pattern = trim((string) $requirement);
+                if ('' === $pattern) {
+                    continue;
+                }
+
+                $normalizedPattern = $this->normalizePattern($pattern);
+                $result = $this->regex->validate($normalizedPattern);
+
+                if (!$result->isValid) {
+                    $issues[] = new RouteIssue(
+                        \sprintf(
+                            'Route "%s" requirement "%s" is invalid: %s',
+                            (string) $name,
+                            $parameter,
+                            $result->error ?? 'unknown error',
+                        ),
+                        true,
+                    );
+
+                    continue;
+                }
+
+                if ($result->complexityScore >= $this->redosThreshold) {
+                    $issues[] = new RouteIssue(
+                        \sprintf(
+                            'Route "%s" requirement "%s" may be vulnerable to ReDoS (score: %d).',
+                            (string) $name,
+                            $parameter,
+                            $result->complexityScore,
+                        ),
+                        true,
+                    );
+
+                    continue;
+                }
+
+                if ($result->complexityScore >= $this->warningThreshold) {
+                    $issues[] = new RouteIssue(
+                        \sprintf(
+                            'Route "%s" requirement "%s" is complex (score: %d).',
+                            (string) $name,
+                            $parameter,
+                            $result->complexityScore,
+                        ),
+                        false,
+                    );
+                }
+            }
+        }
+
+        return $issues;
+    }
+
+    private function normalizePattern(string $pattern): string
+    {
+        $firstChar = $pattern[0] ?? '';
+
+        if (\in_array($firstChar, self::PATTERN_DELIMITERS, true)) {
+            return $pattern;
+        }
+
+        $delimiter = '#';
+        $body = str_replace($delimiter, '\\'.$delimiter, $pattern);
+
+        return $delimiter.'^'.$body.'$'.$delimiter;
+    }
+}
@@ -0,0 +1,71 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * This file is part of the RegexParser package.
+ *
+ * (c) Younes ENNAJI <[email protected]>
+ *
+ * For the full copyright and license information, please view the LICENSE
+ * file that was distributed with this source code.
+ */
+
+namespace RegexParser\Bridge\Symfony\CacheWarmer;
+
+use Psr\Log\LoggerInterface;
+use Psr\Log\LogLevel;
+use RegexParser\Bridge\Symfony\Analyzer\RouteIssue;
+use RegexParser\Bridge\Symfony\Analyzer\RouteRequirementAnalyzer;
+use Symfony\Component\HttpKernel\CacheWarmer\CacheWarmerInterface;
+use Symfony\Component\Routing\RouterInterface;
+
+/**
+ * Surfaces regex warnings during Symfony cache warmup.
+ *
+ * @internal
+ */
+final readonly class RegexParserCacheWarmer implements CacheWarmerInterface
+{
+    public function __construct(
+        private RouteRequirementAnalyzer $analyzer,
+        private ?RouterInterface $router = null,
+        private ?LoggerInterface $logger = null,
+    ) {}
+
+    #[\Override]
+    public function isOptional(): bool
+    {
+        return true;
+    }
+
+    #[\Override]
+    public function warmUp(string $cacheDir, ?string $buildDir = null): array
+    {
+        if (null === $this->router) {
+            return [];
+        }
+
+        $issues = $this->analyzer->analyze($this->router->getRouteCollection());
+
+        foreach ($issues as $issue) {
+            $this->log($issue);
+        }
+
+        return [];
+    }
+
+    private function log(RouteIssue $issue): void
+    {
+        if (null !== $this->logger) {
+            $this->logger->log(
+                $issue->isError ? LogLevel::ERROR : LogLevel::WARNING,
+                $issue->message,
+            );
+
+            return;
+        }
+
+        error_log($issue->message);
+    }
+}
@@ -0,0 +1,71 @@
+<?php
+
+declare(strict_types=1);
+
+/*
+ * This file is part of the RegexParser package.
+ *
+ * (c) Younes ENNAJI <[email protected]>
+ *
+ * For the full copyright and license information, please view the LICENSE
+ * file that was distributed with this source code.
+ */
+
+namespace RegexParser\Bridge\Symfony\Command;
+
+use RegexParser\Bridge\Symfony\Analyzer\RouteRequirementAnalyzer;
+use Symfony\Component\Console\Command\Command;
+use Symfony\Component\Console\Input\InputInterface;
+use Symfony\Component\Console\Output\OutputInterface;
+use Symfony\Component\Console\Style\SymfonyStyle;
+use Symfony\Component\Routing\RouterInterface;
+
+final class RegexParserValidateCommand extends Command
+{
+    protected static $defaultName = 'regex-parser:check';
+
+    protected static $defaultDescription = 'Validates regex usage found in the Symfony application.';
+
+    public function __construct(
+        private readonly RouteRequirementAnalyzer $analyzer,
+        private readonly ?RouterInterface $router = null,
+    ) {
+        parent::__construct();
+    }
+
+    #[\Override]
+    protected function execute(InputInterface $input, OutputInterface $output): int
+    {
+        $io = new SymfonyStyle($input, $output);
+
+        if (null === $this->router) {
+            $io->warning('No router service was found; skipping regex checks.');
+
+            return Command::SUCCESS;
+        }
+
+        $issues = $this->analyzer->analyze($this->router->getRouteCollection());
+
+        if ([] === $issues) {
+            $io->success('No regex issues detected in route requirements.');
+
+            return Command::SUCCESS;
+        }
+
+        $hasErrors = false;
+        foreach ($issues as $issue) {
+            $hasErrors = $hasErrors || $issue->isError;
+            $io->writeln(\sprintf(
+                '%s %s',
+                $issue->isError ? '<error>[error]</error>' : '<comment>[warn]</comment>',
+                $issue->message,
+            ));
+        }
+
+        if (!$hasErrors) {
+            $io->success('RegexParser found warnings only.');
+        }
+
+        return $hasErrors ? Command::FAILURE : Command::SUCCESS;
+    }
+}