-
## Summary
JSON is often used for request bodies, and this is scanned properly. However, the use of JSON is quickly growing in the contents of variables such as:
- cookies
- query arguments (a …
-
Some services that I use through the reverse proxy feature on Caddy break when I enable Coraza. One example that I've run into is with [Overseerr](https://github.com/sct/overseerr)
### Reproduction…
-
The modsecurity documentation says I should be able to get audit logs in JSON format with `SecAuditLogFormat json`.
Is this supposed to work with proxy-wasm? I still get logs in the native format w…
-
Currently the variable returned by `coraza-spoa` to inform HAProxy to perform a waf block, is called `fail`. The term fail is confusing and should be replaced.
- Additionally [types.Interruption](h…
-
Hello again, thank you very much for your answer in #20 (I tried to find a way into the code by myself with your help but without success this morning).
So my issue today is about logs again, which…
-
## Description
Over the last months we have been receiving issues from users that involve log output in different parts of the library and connectors. For example:
- https://github.com/corazawaf/cor…
-
## Description
Hi, I'm new to ModSecurity and Coraza, so please excuse me if this report is not entirely accurate.
I encountered an issue while using Coraza and testing some plugins. It appears th…
-
### Is there an existing request for this feature?
- [X] I have searched the existing issues for this feature request and I know that duplicates will be closed
### Is your feature request related to…
-
Hello everyone,
as already announced in your Slack channel, I am currently facing issues with Websocket connections in conjunction with coraza-caddy.
These connections work fine if I set `SecRuleE…
-
Hi, im looking into possibly replace lua-resty-lua with lua-resty-coraza.
What is the current plan for this project? And is it ready for production or still in some experimental state?