Felipe Zipitría
Felipe Zipitría
I'm 🤔 about moving this to a `.data` file and apply also the `cmdline unix` filter. @theseion what do you think?
Added more tests to match single and double quotes also.
GraphQL and others are coming, for sure. We can use the OData test service in https://services.odata.org/ and see what we get. Probably proxying it with modsec will give us an...
Looks like also https://pragmatiqa.com/xodata/ is using that site for tests.
I'm tagging you both because you did most of the work on plugins setup @RedXanadu @azurit
So we agree on: - source of truth: [coreruleset.org/docs.](https://coreruleset.org/docs/configuring/plugins/). - every plugin has a small intro on what it does, and points ☝️ for installing/configuring - we can adapt the...
I think we need to do a massive review on the plugins and see if everything matches this: > - every plugin has a small intro on what it does,...
- Added most of the modsecurity files that we use in our containers (yeah, those weren't there 😱 ) - I don't think the `[jboss]` usage in that list will...
> Where did those `[jboss]` entries come from? Are they really path components? I think those are broken. They will never match in our case. My reasoning is that they...
Updates: - still updating the cross-reference on restricted files for this. - probably removing/changing the `[jboss]` to at least a fixed string would make it match. otherwise, is the same...