This patch was also vulnerable ;)
As the regex ended with $, we could bypass it with a newline, then /../../.. + raw gist
This was fixed by using \A and \Z instead of ^ and $!
We’re a place where coders share, stay up-to-date and grow their careers.
We strive for transparency and don't collect excess data.