Updates CRS dependency - Githubissues

corazawaf / coraza-caddy

OWASP Coraza middleware for Caddy. It provides Web Application Firewall capabilities

https://www.coraza.io/

Apache License 2.0

290 stars 35 forks source link

Closed M4tteoP closed 11 months ago

M4tteoP commented 11 months ago

Updates coraza-coreruleset dependency. It notably includes rule 920620 meant to address CVE-2023-38199 – Multiple Content-Type Headers.

The PR also:

Updates go CI to 1.20
Updates Caddy to 2.7.3
Updates Coraza to 3.0.3
Removes content-length header when a response body rule is triggered
Relies on the new e2e utility provided by Coraza: https://github.com/corazawaf/coraza#e2e-testing

sonarcloud[bot] commented 11 months ago

Kudos, SonarCloud Quality Gate passed!

No Coverage information
No Duplication information