Fix polynomial regex (ReDoS) flagged by CodeQL

Split the single regex with overlapping quantifiers into two separate
patterns for mustache comments and mustache block comments. Each uses
a specific character class ([\w\s,/-]*) that cannot cause polynomial
backtracking. Also removes the -+$ cleanup regex since the block
comment pattern now captures only the rules content without trailing
dashes.

Co-Authored-By: Claude Opus 4.6 (1M context) <[email protected]>

Author: NullVoxPopuli

lib/processors/template-lint-disable.js

@@ -3,12 +3,15 @@
 const noop = require('ember-eslint-parser/noop');
 
 /**
- * Regex pattern for template-lint-disable mustache comments:
+ * Regex patterns for template-lint-disable mustache comments.
+ * Two separate patterns to avoid polynomial backtracking (ReDoS):
  *   {{! template-lint-disable rule1 rule2 }}
  *   {{!-- template-lint-disable rule1 rule2 --}}
  */
-const TEMPLATE_LINT_DISABLE_REGEX =
-  /{{!-*\s*template-lint-disable\s*([\s\S]*?)-*}}/g;
+const MUSTACHE_COMMENT_REGEX =
+  /{{!\s+template-lint-disable([\w\s,/-]*)}}/g;
+const MUSTACHE_BLOCK_COMMENT_REGEX =
+  /{{!--\s*template-lint-disable([\w\s,/-]*)--}}/g;
 
 // Store disable directives per file
 const fileDisableDirectives = new Map();
@@ -19,35 +22,37 @@ const fileDisableDirectives = new Map();
  *
  * template-lint-disable means "disable next line" (like eslint-disable-next-line).
  */
-function parseDisableDirectives(text) {
-  const directives = [];
-  const lines = text.split('\n');
-
-  for (let i = 0; i < lines.length; i++) {
-    const line = lines[i];
-    TEMPLATE_LINT_DISABLE_REGEX.lastIndex = 0;
+function collectMatches(line, lineIndex, directives) {
+  for (const regex of [MUSTACHE_COMMENT_REGEX, MUSTACHE_BLOCK_COMMENT_REGEX]) {
+    regex.lastIndex = 0;
     let match;
 
-    while ((match = TEMPLATE_LINT_DISABLE_REGEX.exec(line)) !== null) {
+    while ((match = regex.exec(line)) !== null) {
       const rulesPart = (match[1] || '').trim();
-      // Strip trailing -- from mustache block comments
-      const cleaned = rulesPart.replace(/-+$/, '').trim();
-
-      const rules = cleaned
-        ? cleaned.split(/[\s,]+/).filter(Boolean)
+      const rules = rulesPart
+        ? rulesPart.split(/[\s,]+/).filter(Boolean)
         : []; // empty = disable all
 
-      // Comment is on line i+1 (1-indexed), next line is i+2.
+      // Comment is on line lineIndex+1 (1-indexed), next line is lineIndex+2.
       // In template ASTs, TextNodes can start on the same line as the comment
       // (e.g. the newline after {{! template-lint-disable }} is part of the
       // following TextNode), so we suppress both the comment line and the next.
       directives.push({
-        commentLine: i + 1,
-        nextLine: i + 2,
+        commentLine: lineIndex + 1,
+        nextLine: lineIndex + 2,
         rules,
       });
     }
   }
+}
+
+function parseDisableDirectives(text) {
+  const directives = [];
+  const lines = text.split('\n');
+
+  for (let i = 0; i < lines.length; i++) {
+    collectMatches(lines[i], i, directives);
+  }
 
   return directives;
 }