Tags: isurulucky/coraza
Tags
fix: warn instead of returning error on empty glob result (corazawaf#… …1280) (corazawaf#1281)
Fixed corazawaf#1266 @restpath failing on query string or extra path … …info (corazawaf#1267) * Created failing test for issue * Update regex to prevent greedy matching in REST path and add corresponding test * Remove redundant test for query parameters in REST path * Added additional tests and fixed additional found edge case with ending parameter * Added additional test for empty elements * Update internal/operators/restpath.go from suggestion Co-authored-by: Felipe Zipitría <[email protected]> --------- Co-authored-by: José Carlos Chávez <[email protected]> Co-authored-by: Felipe Zipitría <[email protected]> Co-authored-by: Juan Pablo Tosso <[email protected]> Co-authored-by: Matteo Pace <[email protected]>
Revert "chore: Replace sync.Mutex with sync.Map" (corazawaf#1262) Revert "chore: Replace sync.Mutex with sync.Map (corazawaf#1197)" This reverts commit d5a0d6d.
chore: upgrades go-ftw to 0.6.4. (corazawaf#998) * chore: upgrades go-ftw to 0.6.4. * chore: removes toolchain directive. * fix: fixes test type. * go1.20 mage format --------- Co-authored-by: Matteo Pace <[email protected]>
chore(deps): bump github.com/tidwall/gjson from 1.14.4 to 1.17.0 (cor… …azawaf#878) * chore(deps): bump github.com/tidwall/gjson from 1.14.4 to 1.17.0 Bumps [github.com/tidwall/gjson](https://github.com/tidwall/gjson) from 1.14.4 to 1.17.0. - [Commits](tidwall/gjson@v1.14.4...v1.17.0) --- updated-dependencies: - dependency-name: github.com/tidwall/gjson dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> * chore: manual mod tidy --------- Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Matteo Pace <[email protected]>
chore: adds memoize implementation for regexes and ahocorasick (coraz… …awaf#836) * chore: adds memoize implementation for regexes. Currently we create and allocate memory for every regex we compile, however there are cases where you compile the same regex over and over e.g. corazawaf/coraza-caddy#76. Here we implement the memoize pattern to be able to reuse the regex and reduce the memory consumption. * docs: adds comments to code. * chore: simplify the memoize package by using sync.Map. * feat: extends memoize to ahocorasick and allow impl for tinygo but not synced as no concurrency. * tests: covers memoize_builders in tinygo. * chore: fixes nosync for tinygo. * docs: updates docs. --------- Co-authored-by: Juan Pablo Tosso <[email protected]>
fix: benchmark and propagate the status to not to swallow the failure (… …corazawaf#808) * chore: propagates the pipe status after tee. * Refactor escape_seq_decode * docs: adds more comments. * tests: tweaks the code. * tests: adds test for TestEscapeSeqDecode * chore: simplify the doEscapeSeqDecode function. * chore: aligns go version of benchmarks with tests --------- Co-authored-by: Anuraag Agrawal <[email protected]> Co-authored-by: Felipe Zipitría <[email protected]>
PreviousNext