Merge branch 'master' into feature/improve-transfers-2008

paul-fresquet · web-flow · commit de0c31c5e7cb · 2025-08-21T11:55:36.000+02:00
diff --git a/src/ByteSync.Client/Business/Configurations/ApplicationSettings.cs b/src/ByteSync.Client/Business/Configurations/ApplicationSettings.cs
@@ -309,8 +309,13 @@ private void InitializeClientId()
         var modulo = (long) (value % Math.Pow(base26Converter.FiguresCount, 10));
         var identifier = base26Converter.ConvertTo(modulo, 10).ToUpper();
 
+        var regex = new Regex(
+            @"^(....)(...)(...)$",
+            RegexOptions.None,
+            TimeSpan.FromMilliseconds(200) 
+        );
         // https://stackoverflow.com/questions/3968845/format-string-with-dashes
-        identifier = Regex.Replace(identifier, @"^(....)(...)(...)$", "$1-$2-$3");
+        identifier = regex.Replace(identifier, "$1-$2-$3");
 
         ClientId = identifier;
     }
diff --git a/src/ByteSync.Client/Business/Filtering/Evaluators/ActionComparisonExpressionEvaluator.cs b/src/ByteSync.Client/Business/Filtering/Evaluators/ActionComparisonExpressionEvaluator.cs
@@ -81,7 +81,10 @@ private int GetActionCount(ComparisonItem item, string[] pathParts)
     
     private int FilterActionsByType(List<AtomicAction> actions, string actionType)
     {
-        var actionTypePattern = new Regex(@"^([a-zA-Z-]+)$", RegexOptions.IgnoreCase);
+        var actionTypePattern = new Regex(
+            @"^([a-zA-Z-]+)$", 
+            RegexOptions.IgnoreCase,
+            TimeSpan.FromMilliseconds(500));
         var match = actionTypePattern.Match(actionType);
         
         if (!match.Success)
diff --git a/src/ByteSync.Client/Business/Filtering/Evaluators/BaseElementPathExpressionEvaluator.cs b/src/ByteSync.Client/Business/Filtering/Evaluators/BaseElementPathExpressionEvaluator.cs
@@ -34,13 +34,20 @@ public override bool Evaluate(BaseElementPathExpression expression, ComparisonIt
 
             searchText = "^" + Regex.Escape(expression.SearchText).Replace("\\*", ".*") + "$";
         }
-
+        
+        var regex = new Regex(
+            searchText,
+            RegexOptions.IgnoreCase,
+            TimeSpan.FromMilliseconds(200) 
+        );
+        
+        // https://stackoverflow.com/questions/3968845/format-string-with-dashes
         return comparisonOperator switch
         {
             ComparisonOperator.Equals => string.Equals(targetValue, searchText, StringComparison.OrdinalIgnoreCase),
             ComparisonOperator.NotEquals => !string.Equals(targetValue, searchText, StringComparison.OrdinalIgnoreCase),
-            ComparisonOperator.RegexMatch => Regex.IsMatch(targetValue, searchText, RegexOptions.IgnoreCase),
-            ComparisonOperator.RegexNotMatch => !Regex.IsMatch(targetValue, searchText, RegexOptions.IgnoreCase),
+            ComparisonOperator.RegexMatch => regex.IsMatch(targetValue),
+            ComparisonOperator.RegexNotMatch => !regex.IsMatch(targetValue),
             _ => false
         };
     }
diff --git a/src/ByteSync.Client/Business/Filtering/Evaluators/PropertyComparer.cs b/src/ByteSync.Client/Business/Filtering/Evaluators/PropertyComparer.cs
@@ -41,20 +41,37 @@ private bool CompareStrings(PropertyValueCollection collection1, PropertyValueCo
             {
                 var s2 = (value2.Value as string)!;
 
-                if (op switch
-                    {
-                        ComparisonOperator.Equals => string.Equals(s1, s2, StringComparison.OrdinalIgnoreCase),
-                        ComparisonOperator.NotEquals => !string.Equals(s1, s2, StringComparison.OrdinalIgnoreCase),
-                        ComparisonOperator.GreaterThan => string.Compare(s1, s2, StringComparison.OrdinalIgnoreCase) > 0,
-                        ComparisonOperator.LessThan => string.Compare(s1, s2, StringComparison.OrdinalIgnoreCase) < 0,
-                        ComparisonOperator.GreaterThanOrEqual => string.Compare(s1, s2, StringComparison.OrdinalIgnoreCase) >= 0,
-                        ComparisonOperator.LessThanOrEqual => string.Compare(s1, s2, StringComparison.OrdinalIgnoreCase) <= 0,
-                        ComparisonOperator.RegexMatch => Regex.IsMatch(s1, s2),
-                        _ => throw new ArgumentException($"Unsupported string operator: {op}")
-                    })
-                {
-                    return true;
-                }
+				bool isMatch;
+				if (op == ComparisonOperator.RegexMatch)
+				{
+					try
+					{
+						var safeRegex = new Regex(s2, RegexOptions.IgnoreCase, TimeSpan.FromMilliseconds(500));
+						isMatch = safeRegex.IsMatch(s1);
+					}
+					catch (ArgumentException)
+					{
+						isMatch = false;
+					}
+				}
+				else
+				{
+					isMatch = op switch
+					{
+						ComparisonOperator.Equals => string.Equals(s1, s2, StringComparison.OrdinalIgnoreCase),
+						ComparisonOperator.NotEquals => !string.Equals(s1, s2, StringComparison.OrdinalIgnoreCase),
+						ComparisonOperator.GreaterThan => string.Compare(s1, s2, StringComparison.OrdinalIgnoreCase) > 0,
+						ComparisonOperator.LessThan => string.Compare(s1, s2, StringComparison.OrdinalIgnoreCase) < 0,
+						ComparisonOperator.GreaterThanOrEqual => string.Compare(s1, s2, StringComparison.OrdinalIgnoreCase) >= 0,
+						ComparisonOperator.LessThanOrEqual => string.Compare(s1, s2, StringComparison.OrdinalIgnoreCase) <= 0,
+						_ => throw new ArgumentException($"Unsupported string operator: {op}")
+					};
+				}
+
+				if (isMatch)
+				{
+					return true;
+				}
             }
         }
 
diff --git a/src/ByteSync.Client/Business/Filtering/Evaluators/PropertyComparisonExpressionEvaluator.cs b/src/ByteSync.Client/Business/Filtering/Evaluators/PropertyComparisonExpressionEvaluator.cs
@@ -48,10 +48,11 @@ private bool CompareWithLiteral(PropertyValueCollection sourceValues, string tar
         // Handle special case for regex
         if (op == ComparisonOperator.RegexMatch && sourceValues.Any(sv => sv.Value is string))
         {
-            try
-            {
-                return sourceValues.Any(sv => Regex.IsMatch(sv.Value.ToString()!, targetValue));
-            }
+			try
+			{
+				var safeRegex = new Regex(targetValue, RegexOptions.IgnoreCase, TimeSpan.FromMilliseconds(500));
+				return sourceValues.Any(sv => safeRegex.IsMatch(sv.Value.ToString()!));
+			}
             catch (ArgumentException)
             {
                 // Invalid regex
diff --git a/src/ByteSync.Client/Business/Filtering/Extensions/DurationExtensions.cs b/src/ByteSync.Client/Business/Filtering/Extensions/DurationExtensions.cs
@@ -7,7 +7,9 @@ public static class DurationExtensions
 {
     public static TimeSpan ToTimeSpan(this string durationWithUnit)
     {
-        var match = Regex.Match(durationWithUnit, @"^(\d+(?:\.\d+)?)\s*([a-zA-Z]+)$");
+        var safeRegex = new Regex(@"^(\d+(?:\.\d+)?)\s*([a-zA-Z]+)$", RegexOptions.None, TimeSpan.FromMilliseconds(500));
+
+        var match = safeRegex.Match(durationWithUnit);
         if (!match.Success)
             return TimeSpan.FromSeconds(double.Parse(durationWithUnit)); // Assume seconds if no unit
 
diff --git a/src/ByteSync.Client/Business/Filtering/Extensions/SizeUnitExtensions.cs b/src/ByteSync.Client/Business/Filtering/Extensions/SizeUnitExtensions.cs
@@ -7,7 +7,8 @@ public static class SizeUnitExtensions
 {
     public static long ToBytes(this string sizeWithUnit)
     {
-        var match = Regex.Match(sizeWithUnit, @"^(\d+(?:\.\d+)?)\s*([a-zA-Z]+)$");
+        var safeRegex = new Regex(@"^(\d+(?:\.\d+)?)\s*([a-zA-Z]+)$", RegexOptions.None, TimeSpan.FromMilliseconds(500));
+        var match = safeRegex.Match(sizeWithUnit);
         if (!match.Success)
             return long.Parse(sizeWithUnit); // Assume bytes if no unit specified
 
diff --git a/src/ByteSync.Client/Services/Communications/SafetyWordsComputer.cs b/src/ByteSync.Client/Services/Communications/SafetyWordsComputer.cs
@@ -24,7 +24,8 @@ public string[] Compute(string hexInput)
         {
             throw new ArgumentOutOfRangeException(nameof(hexInput), "input can not be empty");
         }
-        if (!Regex.IsMatch(hexInput, "^[0-9a-f]+$", RegexOptions.IgnoreCase))
+        var safeRegex = new Regex("^[0-9a-f]+$", RegexOptions.IgnoreCase, TimeSpan.FromMilliseconds(500));
+        if (!safeRegex.IsMatch(hexInput))
         {
             throw new ArgumentOutOfRangeException(nameof(hexInput), "wrong input format");
         }
diff --git a/src/ByteSync.Client/Services/Communications/WebAccessor.cs b/src/ByteSync.Client/Services/Communications/WebAccessor.cs
@@ -1,4 +1,5 @@
-﻿using System.Runtime.InteropServices;
+﻿using System.IO;
+using System.Runtime.InteropServices;
 using System.Threading.Tasks;
 using ByteSync.Interfaces;
 using ByteSync.Interfaces.Controls.Communications;
@@ -150,16 +151,19 @@ private static void DoOpenUrl(string url)
             if (RuntimeInformation.IsOSPlatform(OSPlatform.Windows))
             {
                 url = url.Replace("&", "^&");
-                System.Diagnostics.Process.Start(new System.Diagnostics.ProcessStartInfo("cmd", $"/c start {url}")
+                var cmdTrustedPath = Path.Combine(Environment.SystemDirectory, "cmd.exe");
+                System.Diagnostics.Process.Start(new System.Diagnostics.ProcessStartInfo(cmdTrustedPath, $"/c start {url}")
                     { CreateNoWindow = true });
             }
             else if (RuntimeInformation.IsOSPlatform(OSPlatform.Linux))
             {
-                System.Diagnostics.Process.Start("xdg-open", url);
+                var xdgTrustedPath = "/usr/bin/xdg-open";
+                System.Diagnostics.Process.Start(xdgTrustedPath, url);
             }
             else if (RuntimeInformation.IsOSPlatform(OSPlatform.OSX))
             {
-                System.Diagnostics.Process.Start("open", url);
+                var openTrustedPath = "/usr/bin/open";
+                System.Diagnostics.Process.Start(openTrustedPath, url);
             }
             else
             {
diff --git a/src/ByteSync.Client/Services/Comparisons/SynchronizationRuleMatcher.cs b/src/ByteSync.Client/Services/Comparisons/SynchronizationRuleMatcher.cs
@@ -375,7 +375,8 @@ private bool ConditionMatchesName(AtomicCondition condition, ComparisonItem comp
             condition.ConditionOperator.In(ConditionOperatorTypes.Equals, ConditionOperatorTypes.NotEquals))
         {
             var regex = "^" + Regex.Escape(pattern).Replace("\\*", ".*") + "$";
-            var isMatch = Regex.IsMatch(name, regex, RegexOptions.IgnoreCase);
+            var safeRegex = new Regex(regex,RegexOptions.IgnoreCase,TimeSpan.FromMilliseconds(500));
+            var isMatch = safeRegex.IsMatch(name);
             result = condition.ConditionOperator == ConditionOperatorTypes.Equals ? isMatch : !isMatch;
         }
         else
diff --git a/src/ByteSync.Client/Services/Updates/ApplicationRestarter.cs b/src/ByteSync.Client/Services/Updates/ApplicationRestarter.cs
@@ -110,7 +110,7 @@ private void DoStartNewInstanceWithOpenCommand()
         // https://stackoverflow.com/questions/1308755/how-to-launch-an-app-on-os-x-with-command-line-the-best-way
             
         ProcessStartInfo processStartInfo = new ProcessStartInfo();
-        processStartInfo.FileName = "open";
+        processStartInfo.FileName = "/usr/bin/open";
             
         var applicationLauncher = new FileInfo(ApplicationLauncherFullName);
         DirectoryInfo appDirectory = 
diff --git a/src/ByteSync.Client/Services/Updates/DeleteUpdateBackupSnippetsService.cs b/src/ByteSync.Client/Services/Updates/DeleteUpdateBackupSnippetsService.cs
@@ -25,11 +25,11 @@ public Task DeleteBackupSnippetsAsync()
             _logger.LogWarning("Unable to guess ApplicationBaseDirectory");
             return Task.CompletedTask;
         }
-        
+
         var regexes = new List<Regex>
         {
-            new(@$"{UpdateConstants.BAK_EXTENSION}\d+$"),
-            new(@$"^{UpdateConstants.UPDATE_UNZIP_EXTRACT_START_NAME}")
+            new(@$"{UpdateConstants.BAK_EXTENSION}\d+$", RegexOptions.None, TimeSpan.FromMilliseconds(500)),
+            new(@$"^{UpdateConstants.UPDATE_UNZIP_EXTRACT_START_NAME}", RegexOptions.None, TimeSpan.FromMilliseconds(500))
         };
         
         foreach (var regex in regexes)
diff --git a/src/ByteSync.Common/Helpers/DebugUtils.cs b/src/ByteSync.Common/Helpers/DebugUtils.cs
@@ -1,5 +1,6 @@
 ﻿using System;
 using System.Runtime.CompilerServices;
+using System.Security.Cryptography;
 using System.Threading;
 using System.Threading.Tasks;
 using Serilog;
@@ -8,8 +9,7 @@ namespace ByteSync.Common.Helpers;
 
 public class DebugUtils
 {
-    private static Random _random = new Random();
-    
+
     public static async Task DebugTaskDelay(double seconds, 
         [CallerMemberName] string callerName = "", [CallerFilePath] string callerFilePath = "")
     {
@@ -23,13 +23,14 @@ public static async Task DebugTaskDelay(double minSeconds, double maxSeconds,
     #if DEBUG
 
         double milliseconds;
-        if (minSeconds == maxSeconds)
+        double epsilon = 1e-10;
+        if (double.Abs(minSeconds - maxSeconds) < epsilon)
         {
             milliseconds = minSeconds * 1000;
         }
         else
         {
-            milliseconds = _random.Next((int)(minSeconds * 1000), (int)(maxSeconds * 1000));
+            milliseconds = RandomNumberGenerator.GetInt32((int)(minSeconds * 1000), (int)(maxSeconds * 1000) + 1);
         }
 
         double seconds = milliseconds / 1000d;
@@ -75,7 +76,7 @@ public static bool IsRandom(decimal probability0To1,
         
         var top = (int) Math.Pow(10, decimals);
 
-        var r = _random.Next(top) + 1;
+        var r = RandomNumberGenerator.GetInt32(top + 1) + 1;
 
         bool isRandom = r < iProbability;
         
@@ -110,7 +111,7 @@ public static void DebugSleep(double minSeconds, double maxSeconds,
         }
         else
         {
-            milliseconds = _random.Next((int)(minSeconds * 1000), (int)(maxSeconds * 1000));
+            milliseconds = RandomNumberGenerator.GetInt32((int)(minSeconds * 1000), (int)(maxSeconds * 1000) + 1);
         }
 
         double seconds = milliseconds / 1000d;
diff --git a/src/ByteSync.Common/Helpers/RandomUtils.cs b/src/ByteSync.Common/Helpers/RandomUtils.cs
@@ -1,14 +1,14 @@
 ﻿using System;
 using System.Collections.Generic;
 using System.Linq;
+using System.Security.Cryptography;
 using System.Text;
 
 namespace ByteSync.Common.Helpers;
 
 public static class RandomUtils
 {
-    private static readonly Random _random = new Random();
-
+    
     /// <summary>
     /// Génère une chaîne de lettres alétoires.
     /// </summary>
@@ -36,24 +36,24 @@ public static char GetRandomLetter(bool? upperCase)
     {
         if (upperCase == null)
         {
-            if (_random.Next(2) == 0)
+            if (RandomNumberGenerator.GetInt32(2) == 0)
             {
-                return (char) _random.Next('A', 'Z');
+                return (char) RandomNumberGenerator.GetInt32('A', 'Z');
             }
             else
             {
-                return (char) _random.Next('a', 'z');
+                return (char) RandomNumberGenerator.GetInt32('a', 'z');
             }
         }
         else
         {
             if (upperCase.Value)
             {
-                return (char) _random.Next('A', 'Z');
+                return (char) RandomNumberGenerator.GetInt32('A', 'Z');
             }
             else
             {
-                return (char) _random.Next('a', 'z');
+                return (char) RandomNumberGenerator.GetInt32('a', 'z');
             }
         }
     }
@@ -69,7 +69,7 @@ public static string GetRandomNumber(int digits)
         int max = (int) Math.Pow(10, digits); // max = 1000
         max = max - 1; // max = 999, OK :)
 
-        var result = _random.Next(1, max).ToString().PadLeft(digits, '0');
+        var result = RandomNumberGenerator.GetInt32(1, max).ToString().PadLeft(digits, '0');
 
         return result;
     }
@@ -82,7 +82,7 @@ public static T GetRandomElement<T>(ICollection<T> collection)
         }
         else
         {
-            var r = _random.Next(collection.Count);
+            var r = RandomNumberGenerator.GetInt32(collection.Count);
 
             if (collection is IList<T>)
             {
diff --git a/tests/ByteSync.Client.IntegrationTests/Business/Filtering/TestFiltering_Name.cs b/tests/ByteSync.Client.IntegrationTests/Business/Filtering/TestFiltering_Name.cs
@@ -1,4 +1,6 @@
 ﻿using FluentAssertions;
+using ByteSync.Business.Filtering.Expressions;
+using ByteSync.Business.Filtering.Parsing;
 
 namespace ByteSync.Client.IntegrationTests.Business.Filtering;
 
@@ -598,4 +600,54 @@ public void TestEvaluate_RegexPattern_LogExtensions()
         result3.Should().BeFalse(); // log.txt doesn't end with .log
         result4.Should().BeFalse(); // data.log.backup doesn't end with .log
     }
+
+    [Test]
+    public void TestRegexNotMatch_Wildcard_NotEquals_WhenMatchesPattern_ShouldBeFalse()
+    {
+        // Arrange
+        var comparisonItem = PrepareComparisonWithOneContent(
+            "A1", "sameHash", DateTime.Now, 50, "file123.txt");
+
+        // NotEquals with wildcard triggers RegexNotMatch arm
+        var filterText = "name!=*.txt";
+
+        // Act
+        var result = EvaluateFilterExpression(filterText, comparisonItem);
+
+        // Assert
+        result.Should().BeFalse();
+    }
+
+    [Test]
+    public void TestRegexNotMatch_Wildcard_NotEquals_WhenDoesNotMatchPattern_ShouldBeTrue()
+    {
+        // Arrange
+        var comparisonItem = PrepareComparisonWithOneContent(
+            "A1", "sameHash", DateTime.Now, 50, "file123.doc");
+
+        var filterText = "name!=*.txt";
+
+        // Act
+        var result = EvaluateFilterExpression(filterText, comparisonItem);
+
+        // Assert
+        result.Should().BeTrue();
+    }
+
+    [Test]
+    public void TestDefaultBranch_WhenUnknownOperator_ShouldReturnFalse()
+    {
+        // Arrange
+        var comparisonItem = PrepareComparisonWithOneContent(
+            "A1", "sameHash", DateTime.Now, 50, "file123.txt");
+
+        var expr = new NameExpression("file123.txt", (ComparisonOperator)123);
+        var evaluator = _evaluatorFactory.GetEvaluator(expr);
+
+        // Act
+        var result = evaluator.Evaluate(expr, comparisonItem);
+
+        // Assert
+        result.Should().BeFalse();
+    }
 }
diff --git a/tests/ByteSync.Client.Tests/Business/Configurations/ApplicationSettingsTests.cs b/tests/ByteSync.Client.Tests/Business/Configurations/ApplicationSettingsTests.cs
diff --git a/tests/ByteSync.Client.Tests/Business/Filtering/PropertyComparerTests.cs b/tests/ByteSync.Client.Tests/Business/Filtering/PropertyComparerTests.cs
diff --git a/tests/ByteSync.Client.Tests/Business/Filtering/PropertyComparisonExpressionEvaluatorTests.cs b/tests/ByteSync.Client.Tests/Business/Filtering/PropertyComparisonExpressionEvaluatorTests.cs
diff --git a/tests/ByteSync.Client.Tests/ByteSync.Client.Tests.csproj b/tests/ByteSync.Client.Tests/ByteSync.Client.Tests.csproj
diff --git a/tests/ByteSync.Common.Tests/ByteSync.Common.Tests.csproj b/tests/ByteSync.Common.Tests/ByteSync.Common.Tests.csproj
diff --git a/tests/ByteSync.Common.Tests/Helpers/DebugUtilsTests.cs b/tests/ByteSync.Common.Tests/Helpers/DebugUtilsTests.cs
diff --git a/tests/ByteSync.Common.Tests/Helpers/RandomUtilsTests.cs b/tests/ByteSync.Common.Tests/Helpers/RandomUtilsTests.cs

Original file line number	Diff line number	Diff line change
`@@ -7,7 +7,9 @@ public static class DurationExtensions`
`7`	`7`	`{`
`8`	`8`	`public static TimeSpan ToTimeSpan(this string durationWithUnit)`
`9`	`9`	`{`
`10`		`- var match = Regex.Match(durationWithUnit, @"^(\d+(?:\.\d+)?)\s*([a-zA-Z]+)$");`
	`10`	`+ var safeRegex = new Regex(@"^(\d+(?:\.\d+)?)\s*([a-zA-Z]+)$", RegexOptions.None, TimeSpan.FromMilliseconds(500));`
	`11`	`+`
	`12`	`+ var match = safeRegex.Match(durationWithUnit);`
`11`	`13`	`if (!match.Success)`
`12`	`14`	`return TimeSpan.FromSeconds(double.Parse(durationWithUnit)); // Assume seconds if no unit`
`13`	`15`
Original file line number	Diff line number	Diff line change
`@@ -7,7 +7,8 @@ public static class SizeUnitExtensions`
`7`	`7`	`{`
`8`	`8`	`public static long ToBytes(this string sizeWithUnit)`
`9`	`9`	`{`
`10`		`- var match = Regex.Match(sizeWithUnit, @"^(\d+(?:\.\d+)?)\s*([a-zA-Z]+)$");`
	`10`	`+ var safeRegex = new Regex(@"^(\d+(?:\.\d+)?)\s*([a-zA-Z]+)$", RegexOptions.None, TimeSpan.FromMilliseconds(500));`
	`11`	`+ var match = safeRegex.Match(sizeWithUnit);`
`11`	`12`	`if (!match.Success)`
`12`	`13`	`return long.Parse(sizeWithUnit); // Assume bytes if no unit specified`
`13`	`14`
Original file line number	Diff line number	Diff line change
`@@ -24,7 +24,8 @@ public string[] Compute(string hexInput)`
`24`	`24`	`{`
`25`	`25`	`throw new ArgumentOutOfRangeException(nameof(hexInput), "input can not be empty");`
`26`	`26`	`}`
`27`		`- if (!Regex.IsMatch(hexInput, "^[0-9a-f]+$", RegexOptions.IgnoreCase))`
	`27`	`+ var safeRegex = new Regex("^[0-9a-f]+$", RegexOptions.IgnoreCase, TimeSpan.FromMilliseconds(500));`
	`28`	`+ if (!safeRegex.IsMatch(hexInput))`
`28`	`29`	`{`
`29`	`30`	`throw new ArgumentOutOfRangeException(nameof(hexInput), "wrong input format");`
`30`	`31`	`}`
Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,5 @@`
`1`		`-using System.Runtime.InteropServices;`
	`1`	`+using System.IO;`
	`2`	`+using System.Runtime.InteropServices;`
`2`	`3`	`using System.Threading.Tasks;`
`3`	`4`	`using ByteSync.Interfaces;`
`4`	`5`	`using ByteSync.Interfaces.Controls.Communications;`
`@@ -150,16 +151,19 @@ private static void DoOpenUrl(string url)`
`150`	`151`	`if (RuntimeInformation.IsOSPlatform(OSPlatform.Windows))`
`151`	`152`	`{`
`152`	`153`	`url = url.Replace("&", "^&");`
`153`		`- System.Diagnostics.Process.Start(new System.Diagnostics.ProcessStartInfo("cmd", $"/c start {url}")`
	`154`	`+ var cmdTrustedPath = Path.Combine(Environment.SystemDirectory, "cmd.exe");`
	`155`	`+ System.Diagnostics.Process.Start(new System.Diagnostics.ProcessStartInfo(cmdTrustedPath, $"/c start {url}")`
`154`	`156`	`{ CreateNoWindow = true });`
`155`	`157`	`}`
`156`	`158`	`else if (RuntimeInformation.IsOSPlatform(OSPlatform.Linux))`
`157`	`159`	`{`
`158`		`- System.Diagnostics.Process.Start("xdg-open", url);`
	`160`	`+ var xdgTrustedPath = "/usr/bin/xdg-open";`
	`161`	`+ System.Diagnostics.Process.Start(xdgTrustedPath, url);`
`159`	`162`	`}`
`160`	`163`	`else if (RuntimeInformation.IsOSPlatform(OSPlatform.OSX))`
`161`	`164`	`{`
`162`		`- System.Diagnostics.Process.Start("open", url);`
	`165`	`+ var openTrustedPath = "/usr/bin/open";`
	`166`	`+ System.Diagnostics.Process.Start(openTrustedPath, url);`
`163`	`167`	`}`
`164`	`168`	`else`
`165`	`169`	`{`
Original file line number	Diff line number	Diff line change
`@@ -375,7 +375,8 @@ private bool ConditionMatchesName(AtomicCondition condition, ComparisonItem comp`
`375`	`375`	`condition.ConditionOperator.In(ConditionOperatorTypes.Equals, ConditionOperatorTypes.NotEquals))`
`376`	`376`	`{`
`377`	`377`	`var regex = "^" + Regex.Escape(pattern).Replace("\\", ".") + "$";`
`378`		`- var isMatch = Regex.IsMatch(name, regex, RegexOptions.IgnoreCase);`
	`378`	`+ var safeRegex = new Regex(regex,RegexOptions.IgnoreCase,TimeSpan.FromMilliseconds(500));`
	`379`	`+ var isMatch = safeRegex.IsMatch(name);`
`379`	`380`	`result = condition.ConditionOperator == ConditionOperatorTypes.Equals ? isMatch : !isMatch;`
`380`	`381`	`}`
`381`	`382`	`else`