Felipe Zipitría

Per https://github.com/SpiderLabs/ModSecurity/pull/2719, we might want to add a new version based on pcre2 only. As compilation flags change, we need to see if this breaks something or not.

Signed-off-by: Felipe Zipitria Add upstream build for CRS docker.

Look on how to retain older images in case latest is broken

15

From #62 , we should investigate if we can have old images laying around in hub. ``` Unfortunately, all images on docker-hub (see: https://hub.docker.com/r/owasp/modsecurity-crs/tags) have just been overridden and it...

Consider adding docker security scanner?

10

We may want to add an action for docker security scanning: https://github.com/phonito/phonito-scanner-action

### Describe the bug While updating the rules for RCE, I found a case we are not covering: ``` data: "TEST=echo | php7.4" ``` The command has no parameters, but...

Signed-off-by: Felipe Zipitria

fix(0FA9HCGT): rce alias builtin detection

2

Add new rule to include `alias` builtin detection. Fixes #2670.

Signed-off-by: Felipe Zipitria Fix testing version in badge

Signed-off-by: Felipe Zipitria Adds two additional SQLi words. Fixes #2732 and #2733.

The list can be get automatically using: ``` curl -ks https://raw.githubusercontent.com/sqlite/sqlite/master/src/shell.c.in | grep -oE '^\s+"(\.[a-z]+)' | cut -f2 -d. ```