Tags: deeparmor/coraza
Tags
fix: warn instead of returning error on empty glob result (corazawaf#… …1280) (corazawaf#1281)
Fixed corazawaf#1266 @restpath failing on query string or extra path … …info (corazawaf#1267) * Created failing test for issue * Update regex to prevent greedy matching in REST path and add corresponding test * Remove redundant test for query parameters in REST path * Added additional tests and fixed additional found edge case with ending parameter * Added additional test for empty elements * Update internal/operators/restpath.go from suggestion Co-authored-by: Felipe Zipitría <3012076+fzipi@users.noreply.github.com> --------- Co-authored-by: José Carlos Chávez <jcchavezs@gmail.com> Co-authored-by: Felipe Zipitría <3012076+fzipi@users.noreply.github.com> Co-authored-by: Juan Pablo Tosso <jptosso@gmail.com> Co-authored-by: Matteo Pace <pace.matteo96@gmail.com>
Revert "chore: Replace sync.Mutex with sync.Map" (corazawaf#1262) Revert "chore: Replace sync.Mutex with sync.Map (corazawaf#1197)" This reverts commit d5a0d6d.
chore: upgrades go-ftw to 0.6.4. (corazawaf#998) * chore: upgrades go-ftw to 0.6.4. * chore: removes toolchain directive. * fix: fixes test type. * go1.20 mage format --------- Co-authored-by: Matteo Pace <pace.matteo96@gmail.com>
chore(deps): bump github.com/tidwall/gjson from 1.14.4 to 1.17.0 (cor… …azawaf#878) * chore(deps): bump github.com/tidwall/gjson from 1.14.4 to 1.17.0 Bumps [github.com/tidwall/gjson](https://github.com/tidwall/gjson) from 1.14.4 to 1.17.0. - [Commits](tidwall/gjson@v1.14.4...v1.17.0) --- updated-dependencies: - dependency-name: github.com/tidwall/gjson dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * chore: manual mod tidy --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Matteo Pace <pace.matteo96@gmail.com>
chore: adds memoize implementation for regexes and ahocorasick (coraz… …awaf#836) * chore: adds memoize implementation for regexes. Currently we create and allocate memory for every regex we compile, however there are cases where you compile the same regex over and over e.g. corazawaf/coraza-caddy#76. Here we implement the memoize pattern to be able to reuse the regex and reduce the memory consumption. * docs: adds comments to code. * chore: simplify the memoize package by using sync.Map. * feat: extends memoize to ahocorasick and allow impl for tinygo but not synced as no concurrency. * tests: covers memoize_builders in tinygo. * chore: fixes nosync for tinygo. * docs: updates docs. --------- Co-authored-by: Juan Pablo Tosso <jptosso@gmail.com>
fix: benchmark and propagate the status to not to swallow the failure (… …corazawaf#808) * chore: propagates the pipe status after tee. * Refactor escape_seq_decode * docs: adds more comments. * tests: tweaks the code. * tests: adds test for TestEscapeSeqDecode * chore: simplify the doEscapeSeqDecode function. * chore: aligns go version of benchmarks with tests --------- Co-authored-by: Anuraag Agrawal <anuraaga@gmail.com> Co-authored-by: Felipe Zipitría <3012076+fzipi@users.noreply.github.com>
PreviousNext