Hi,

In message "Re: [ruby-core:33351] Re: [Ruby 1.9-Bug#4087][Open] String#scan(arg) taints results if arg is a Regexp but not if arg is a String"
    on Thu, 25 Nov 2010 13:31:44 +0900, "U.Nakamura" <usa / garbagecollect.jp> writes:

|In message "[ruby-core:33338] [Ruby 1.9-Bug#4087][Open] String#scan(arg) taints results if arg is a Regexp but not if arg is a String"
|    on Nov.25,2010 05:38:28, <redmine / ruby-lang.org> wrote:
|> Bug #4087: String#scan(arg) taints results if arg is a Regexp but not if arg is a String
|> Is this intended?
|
|Maybe not.
|patch for trunk.

I vaguely remember retrieving fixed string could hardly be security issue,
but I agree it's inconsistent, besides confusing.  Could you check in?

							matz.