fix: make grants regexp stricted, prevent unsafeWindow + other stuff from being matched

Author: netux

src/util.ts

@@ -6,7 +6,7 @@ import type { MemberExpression } from 'estree';
 
 const META_START = '// ==UserScript==';
 const META_END = '// ==/UserScript==';
-const GRANTS_REGEXP = /^unsafeWindow|GM[._][a-zA-Z0-9_]+/;
+const GRANTS_REGEXP = /^(unsafeWindow$|GM[._]\w+)/;
 
 export function collectGrants(ast: AstNode) {
   let scope = attachScopes(ast, 'scope');

test/util.test.ts

@@ -53,6 +53,13 @@ describe('collectGrants', () => {
     expect(result).toContain('unsafeWindow');
   });
 
+  it('should return nothing unsafeWindow when presented with unsafeWindowButNotReally', () => {
+    const astNode = parseCodeAsEstreeAst(`unsafeWindowButNotReally`);
+    const result = collectGrants(astNode);
+
+    expect(result.size).toBe(0);
+  });
+
   it('should return unsafeWindow even when a subfield is accessed', () => {
     const astNode = parseCodeAsEstreeAst(`unsafeWindow.anotherThing`);
     const result = collectGrants(astNode);