Skip to main content

Mixed Scripts Check

The following rule type is available for detecting mixed scripts in pull requests.

stacklok/mixed_scripts_check - Ensure that the pull request does not contain any mixed scripts

For every pull request submitted to a repository, this rule will check if the pull request adds a new change patch that contains mixed scripts.

If it does, the rule will fail and the pull request will be commented on.

This detects and highlights the use of strings with mixed scripts that could potentially hide malicious code.

For more information, see https://unicode.org/reports/tr39/#Mixed_Script_Detection and https://www.usenix.org/system/files/usenixsecurity23-boucher.pdf

Entity

  • pull_request

Type

  • stacklok/mixed_scripts_check

Rule Parameters

The stacklok/mixed_scripts_check rule supports the following parameters:

  • None

Rule Definition Options

The stacklok/mixed_scripts_check rule has the following options:

  • None