sqlparse is a non-validating SQL parser module for Python. There is a regular Expression Denial of Service in sqlparse vulnerability. The regular expression may cause exponential backtracking on strings containing many repetitions of
in SQL comments. Only the formatting feature that removes comments from SQL statements is affected by this regular expression.