Tags: ssteo/coraza
Tags
feat: use DirectiveOptions instead of waf.Config to share variables a… …cross directives (corazawaf#206)
feat(operator): support SecRule "! ^some" as a valid @rx negation (co… …razawaf#197) * support for corazawaf#195 * fix for the case `SecRule "!" "id:1"`
V2/rc2 (corazawaf#158) * fix sync.pool memory issues on transactions * add OUTBOUND_DATA_ERROR support * actions: fix httpbin * add examples and update readme * add response capabilities to test engine * remove cache from test files * actions: fallback action wget * add phase 4 support for crs tests * add examples/ exclusions for coverage * fix response body size limit discussion * move variables.VariablesCount to types * go-fmt bodybuffers
V2/tx syncpool (corazawaf#136) * audit logging rework * fix: add tests and fixes for file modes * fix github actions, now only upload v1.17.x * add lint action * add golangci-lint to lint checks * a few variable name changes for v2.0 final release * update license to 2022 * add sync pool to cache transactions * fix: weird matching bug * add tx.Clean info
Rules refactor (corazawaf#125) * refactor rules * fix: utf8ToUnicode bug
V2/fix byteranges (corazawaf#123) * many performance optimizations * fix: macro expansion keys are now case insensitive * optimization: switch from strconv to ascii runes * optimization: switch from append to strings.Builder * remove error format from variables.Parse * refactor macro expansion engine * fix: fix byte range tests and code * fix: remove dummy println * refactor validatebyterange * fix: capture action * fix: codeql 'vulnerability' on validateByteRange
Merge pull request corazawaf#120 from jptosso/v2/directive-plugins V2/directive plugins
PreviousNext