8000 Comparing v4.15.0...v4.16.0 · coreruleset/coreruleset · GitHub
[go: up one dir, main page]
More Web Proxy on the site http://driver.im/
Skip to content
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: coreruleset/coreruleset
Failed to load repositories. Confirm that selected base ref is valid, then try again.
Loading
base: v4.15.0
Choose a base ref
...
head repository: coreruleset/coreruleset
Failed to load repositories. Confirm that selected head ref is valid, then try again.
Loading
compare: v4.16.0
Choose a head ref
  • 20 commits
  • 64 files changed
  • 8 contributors

Commits on Jun 3, 2025

  1. chore: post-release/4.16.0-dev (#4157) 

    Signed-off-by: Felipe Zipitria <felipe.zipitria@owasp.org>
    @fzipi
    fzipi authored Jun 3, 2025
    Configuration menu
    Copy the full SHA
    cfb8738 View commit details
    Browse the repository at this point in the history

Commits on Jun 4, 2025

  1. fix(941160): remove dot star (#4155) 

    Signed-off-by: Felipe Zipitria <felipe.zipitria@owasp.org>
    @fzipi
    fzipi authored Jun 4, 2025
    Configuration menu
    Copy the full SHA
    5574fb2 View commit details
    Browse the repository at this point in the history

Commits on Jun 5, 2025

  1. feat: remediation for Python SSTI (#4145) 

    * feat: Remediation for Python SSTI

This commit include the following:

- Add new rule to the generic attack category to block the Python SSTI payloads
- Add Some test cases to check if the rule works fine or not

* Adding multiple of changes:

- Add the {%%} and <%%> regex to the rule 934180
- Add more regression tests
- Removed some unnecessary comments

* Make the rule msg more generic not just python

* Adding multiple changes after taking the final decision in the monthly meeting for June 2025

- Adjust the new rule to include only the {%%} and <%[=]?%> regex while preserving the old rule 941380
- Removed the removeWhiteSpaces filter
- Adjusted the test for our new rule

* Remove unnecessary characters from the regex

* Remove additional trailing space

* Re-Align with the main branch

* Remove another trailing space

* Update rules/REQUEST-934-APPLICATION-ATTACK-GENERIC.conf

Co-authored-by: Xhoenix <86168235+Xhoenix@users.noreply.github.com>

* Change the action version

* Update rules/REQUEST-934-APPLICATION-ATTACK-GENERIC.conf

Co-authored-by: Felipe Zipitría <3012076+fzipi@users.noreply.github.com>

* Update rules/REQUEST-934-APPLICATION-ATTACK-GENERIC.conf

Co-authored-by: Felipe Zipitría <3012076+fzipi@users.noreply.github.com>

* Add a new tag for the ssti attack

---------

Co-authored-by: Franziska Bühler <franziska.buehler.schmocker@gmail.com>
Co-authored-by: Xhoenix <86168235+Xhoenix@users.noreply.github.com>
Co-authored-by: Felipe Zipitría <3012076+fzipi@users.noreply.github.com>
    @TheRubick @franbuehler
    @Xhoenix @fzipi
    4 people authored Jun 5, 2025
    Configuration menu
    Copy the full SHA
    d98c5dc View commit details
    Browse the repository at this point in the history

Commits on Jun 9, 2025

  1. chore(deps): update owasp/modsecurity-crs:nginx docker digest to daaa… 

    …967 in tests/docker-compose.yml (#4159)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
    @renovate
    renovate[bot] authored Jun 9, 2025
    Configuration menu
    Copy the full SHA
    f42c338 View commit details
    Browse the repository at this point in the history

  2. chore(deps): update owasp/modsecurity-crs:apache docker digest to 235… 

    …c15d in tests/docker-compose.yml (#4158)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
    @renovate
    renovate[bot] authored Jun 9, 2025
    Configuration menu
    Copy the full SHA
    abc6379 View commit details
    Browse the repository at this point in the history

Commits on Jun 16, 2025

  1. fix: update rule 942560 (#4161) 

    * update rule 942560

* update regex

* Update 942560.yaml

added test
    @Xhoenix
    Xhoenix authored Jun 16, 2025
    Configuration menu
    Copy the full SHA
    87345d8 View commit details
    Browse the repository at this point in the history

Commits on Jun 20, 2025

  1. fix(934140): remove dot star (#4165) 

    Signed-off-by: Felipe Zipitria <felipe.zipitria@owasp.org>
    @fzipi
    fzipi authored Jun 20, 2025
    Configuration menu
    Copy the full SHA
    edee5d5 View commit details
    Browse the repository at this point in the history

  2. fix(932370): remove dot star (#4166) 

    Signed-off-by: Felipe Zipitria <felipe.zipitria@owasp.org>
    @fzipi
    fzipi authored Jun 20, 2025
    Configuration menu
    Copy the full SHA
    23a5ebf View commit details
    Browse the repository at this point in the history

  3. fix(955xxx): remove dot star (#4169)

    @Xhoenix
    Xhoenix authored Jun 20, 2025
    Configuration menu
    Copy the full SHA
    6386b68 View commit details
    Browse the repository at this point in the history

Commits on Jun 21, 2025

  1. fix(933150): moving printf to 933160 for additional php syntax check … 

    …(933150 PL-1, 933160 PL-1) (#3840)

* fix: SprintForTheCause false positive by moving printf to 933160 (933150 PL-1, 933160 PL-1)

* fix: update comments

* chore: update regex

* apply code review suggestions

* up

* fix: test numbering

---------

Co-authored-by: Andrew Howe <rubyredxanadu@gmail.com>
Co-authored-by: Felipe Zipitría <3012076+fzipi@users.noreply.github.com>
    @EsadCetiner @RedXanadu @fzipi
    3 people authored Jun 21, 2025
    Configuration menu
    Copy the full SHA
    e91c26b View commit details
    Browse the repository at this point in the history

  2. feat: detect generic config filenames (#4102) 

    * feat: detect generic config filenames

* feat: detect generic config filenames

* feat: detect generic config filenames

---------

Co-authored-by: Felipe Zipitría <3012076+fzipi@users.noreply.github.com>
    @EsadCetiner @fzipi
    EsadCetiner and fzipi authored Jun 21, 2025
    Configuration menu
    Copy the full SHA
    35d132d View commit details
    Browse the repository at this point in the history

Commits on Jun 23, 2025

  1. fix: create a stricter sibling to 932370 and move at to PL-2 (93237… 

    …0 PL-1, 932371 PL-2) (#4015)

* fix: create a stricter sibling to 932370 and move `at` to PL-2 (932370 PL-1, 932371 PL-2)

* fix: tests

* fix: tests

* fix: move pl-2 rule to pl-2 section

* chore: update ver

* chore: update tags

* chore: update regex
    @EsadCetiner
    EsadCetiner authored Jun 23, 2025
    Configuration menu
    Copy the full SHA
    514ec08 View commit details
    Browse the repository at this point in the history

Commits on Jun 24, 2025

  1. fix(942340): remove dot star (#4164) 

    * fix(942340): remove dot star

Signed-off-by: Felipe Zipitria <felipe.zipitria@owasp.org>

* Update regex-assembly/942180.ra

Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>

* fix: re-run crs-toolchain

Signed-off-by: Felipe Zipitria <felipe.zipitria@owasp.org>

---------

Signed-off-by: Felipe Zipitria <felipe.zipitria@owasp.org>
Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>
    @fzipi @theseion
    fzipi and theseion authored Jun 24, 2025
    Configuration menu
    Copy the full SHA
    36d9b31 View commit details
    Browse the repository at this point in the history

  2. feat: update java-errors.data (#4113) 

    * update java-errors.data

* added tests

* move rule to regex assembly syntax

* update regex

* update regex

* added test

* update tests

* Update regex-assembly/952110.ra

Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>

* update regex

---------

Co-authored-by: Felipe Zipitría <3012076+fzipi@users.noreply.github.com>
Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>
    @Xhoenix @fzipi @theseion
    3 people authored Jun 24, 2025
    Configuration menu
    Copy the full SHA
    cc1a72e View commit details
    Browse the repository at this point in the history

  3. refactor(942340): move to regex assembly (#4014) 

    * refactor(942340): move to regex assambly

Signed-off-by: Felipe Zipitria <felipe.zipitria@owasp.org>

* Apply suggestions from code review

Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>

* fix: add output in ra

Signed-off-by: Felipe Zipitria <felipe.zipitria@owasp.org>

* fix: add ^ as xor

Signed-off-by: Felipe Zipitria <felipe.zipitria@owasp.org>

* fix: except

Signed-off-by: Felipe Zipitria <felipe.zipitria@owasp.org>

* fix: swap logical for sql

Signed-off-by: Felipe Zipitria <felipe.zipitria@owasp.org>

* fix: add alternative for logical operators

Signed-off-by: Felipe Zipitria <felipe.zipitria@owasp.org>

* fix: revert to original regex

Signed-off-by: Felipe Zipitria <felipe.zipitria@owasp.org>

* Update regex-assembly/942340.ra

Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>
Signed-off-by: Felipe Zipitria <felipe.zipitria@owasp.org>

* fix: format regex assembly file

Signed-off-by: Felipe Zipitria <felipe.zipitria@owasp.org>

* Update regex-assembly/942340.ra

Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>

* fix: run crs-toolchain

Signed-off-by: Felipe Zipitria <felipe.zipitria@owasp.org>

* fix: apply code review comments

Signed-off-by: Felipe Zipitria <felipe.zipitria@owasp.org>

* chore: finalize regex

---------

Signed-off-by: Felipe Zipitria <felipe.zipitria@owasp.org>
Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>
    @fzipi @theseion
    fzipi and theseion authored Jun 24, 2025
    Configuration menu
    Copy the full SHA
    27ee4e5 View commit details
    Browse the repository at this point in the history

Commits on Jun 26, 2025

  1. fix(933160): remove dot star (#4167) 

    * fix(933160): remove dot star

Signed-off-by: Felipe Zipitria <felipe.zipitria@owasp.org>

* Apply suggestions from code review

Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>

* fix: re-run crs-toolchain

Signed-off-by: Felipe Zipitria <felipe.zipitria@owasp.org>

* Apply suggestions from code review

Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>

* Apply suggestions from code review

* chore: run crs-toolchain update

Signed-off-by: Felipe Zipitria <felipe.zipitria@owasp.org>

---------

Signed-off-by: Felipe Zipitria <felipe.zipitria@owasp.org>
Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>
    @fzipi @theseion
    fzipi and theseion authored Jun 26, 2025
    Configuration menu
    Copy the full SHA
    5f285c7 View commit details
    Browse the repository at this point in the history

  2. feat: added rule to detect Bash Brace Expansion (#3780) 

    * feat: added rule to detect Bash Brace Expansion

* added rule 932281(PL 2)

* fix typo

* updated msg and payloads

* fix  versions

* Update regex-assembly/932280.ra

Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>

* Update regex-assembly/932280.ra

Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>

* Update regex-assembly/932280.ra

Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>

* Update regex-assembly/932281.ra

Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>

* Update rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf

Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>

* Update rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf

Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>

* Update rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf

Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>

* Update rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf

Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>

* update comments

* update comments

* fix linter error

* fix lint error

* Update REQUEST-932-APPLICATION-ATTACK-RCE.conf

* Apply suggestions from code review

Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>

* update comments

* update version string

* added missing tags

---------

Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>
Co-authored-by: Felipe Zipitría <3012076+fzipi@users.noreply.github.com>
    @Xhoenix @theseion @fzipi
    3 people authored Jun 26, 2025
    Configuration menu
    Copy the full SHA
    7f819d2 View commit details
    Browse the repository at this point in the history

Commits on Jun 27, 2025

  1. feat: added MongoDB operators (#4162) 

    * feat: added MongoDB operators

* remove duplicate

* regex update

* added MongoDB operators

* add operators and refactor

* update regex assembly syntax

* crs-toolchain regex update

* added comments

* chore: crs-toolchain regex format

* Update regex-assembly/942290.ra

Co-authored-by: Felipe Zipitría <3012076+fzipi@users.noreply.github.com>

---------

Co-authored-by: Felipe Zipitría <3012076+fzipi@users.noreply.github.com>
    @Xhoenix @fzipi
    Xhoenix and fzipi authored Jun 27, 2025
    Configuration menu
    Copy the full SHA
    fafed56 View commit details
    Browse the repository at this point in the history

Commits on Jun 29, 2025

  1. feat: added zmodload and sudo-rs (#4143) 

    * feat: added zmodload

* regex update

* update unix-shell.data

* remove shell builtins

* remove builtins

* added sudo-rs/visudo-rs

* regex update --all

* added unix-shell-builtins.data

* update rule and comments

* added tokens

* add rule 932162

* remove tokens

* remove rule 932162

* update unix-shell-4andup

---------

Co-authored-by: Max Leske <250711+theseion@users.noreply.github.com>
Co-authored-by: Felipe Zipitría <3012076+fzipi@users.noreply.github.com>
    @Xhoenix @theseion @fzipi
    3 people authored Jun 29, 2025
    Configuration menu
    Copy the full SHA
    4aea599 View commit details
    Browse the repository at this point in the history

  2. chore: release v4.16.0 (#4175) 

    Signed-off-by: Felipe Zipitria <felipe.zipitria@owasp.org>
    @fzipi
    fzipi authored Jun 29, 2025
    Configuration menu
    Copy the full SHA
    b6b3ffe View commit details
    Browse the repository at this point in the history
Loading
0