Question 1

How does node-re2 prevent ReDoS attacks?

Accepted Answer

It replaces JavaScript's backtracking engine with Google's RE2, which uses deterministic finite automata to evaluate regex in linear time, avoiding exponential slowdowns from malicious patterns. This is core to its design for safety with untrusted input.

Question 2

Can I use node-re2 in a web browser?

Accepted Answer

No, node-re2 is a Node.js-specific C++ addon and cannot run in browser environments; it's strictly for server-side use, as stated in the README's limitations.

Question 3

What regex features are missing in node-re2?

Accepted Answer

Backreferences (like \1) and lookahead assertions (like (?=...)) are not supported because RE2 avoids backtracking for safety. The README explicitly lists these as limitations and suggests fallbacks to RegExp.

Question 4

node-re2 vs built-in RegExp: which is faster?

Accepted Answer

node-re2 is generally faster for complex patterns and multi-pattern matching due to RE2's optimized engine, but for simple patterns or features like backreferences, RegExp might be more performant. Benchmarks in the README help compare specific use cases.

Question 5

How to install node-re2 on Alpine Linux?

Accepted Answer

Installation may require building from source if precompiled artifacts fail, as noted in release history fixes for Alpine. Ensure C++ dependencies are installed and use npm install, but be prepared for potential compilation issues.

Question 6

Does node-re2 support named capture groups?

Accepted Answer

Yes, it fully supports named capture groups as part of its RegExp API compatibility, allowing you to use them just like with standard RegExp for cleaner code and easier extraction.

node-re2

What is node-re2?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions