coreruleset/coreruleset (coreruleset/coreruleset)
### [`v4.3.0`](https://togithub.com/coreruleset/coreruleset/releases/tag/v4.3.0)
[Compare Source](https://togithub.com/coreruleset/coreruleset/compare/v4.2.0...v4.3.0)
##### What's Changed
##### 🆕 New features and detections 🎉
- feat: catch Java PostgreSQL errors (951240 PL1) by [@azurit](https://togithub.com/azurit) in [https://github.com/coreruleset/coreruleset/pull/3686](https://togithub.com/coreruleset/coreruleset/pull/3686)
- feat: block The Mysterious Mozlila User Agent bot (913100 PL1) by [@brentclark](https://togithub.com/brentclark) in [https://github.com/coreruleset/coreruleset/pull/3646](https://togithub.com/coreruleset/coreruleset/pull/3646)
##### 🧰 Other Changes
- fix: Oracle SQL database data leakage FP (951120 PL1) by [@azurit](https://togithub.com/azurit) in [https://github.com/coreruleset/coreruleset/pull/3685](https://togithub.com/coreruleset/coreruleset/pull/3685)
- fix: typos in 920330 and 942280 tests by [@TimDiam0nd](https://togithub.com/TimDiam0nd) in [https://github.com/coreruleset/coreruleset/pull/3688](https://togithub.com/coreruleset/coreruleset/pull/3688)
- test: change pl-1 to pl1 to be inline with others by [@TimDiam0nd](https://togithub.com/TimDiam0nd) in [https://github.com/coreruleset/coreruleset/pull/3690](https://togithub.com/coreruleset/coreruleset/pull/3690)
- feat: use renovate to update docker-compose by [@theseion](https://togithub.com/theseion) in [https://github.com/coreruleset/coreruleset/pull/3697](https://togithub.com/coreruleset/coreruleset/pull/3697)
- fix: FP for `sched` (932235 PL1, 932236 PL2, 932237 PL3, 932239 PL2, … by [@theseion](https://togithub.com/theseion) in [https://github.com/coreruleset/coreruleset/pull/3701](https://togithub.com/coreruleset/coreruleset/pull/3701)
- fix: collections not being initialized without User-Agent header by [@azurit](https://togithub.com/azurit) in [https://github.com/coreruleset/coreruleset/pull/3645](https://togithub.com/coreruleset/coreruleset/pull/3645)
- feat: refactoring of rule 941310 (PL1 941310) by [@azurit](https://togithub.com/azurit) in [https://github.com/coreruleset/coreruleset/pull/3700](https://togithub.com/coreruleset/coreruleset/pull/3700)
- fix: resolving more FPs with Oracle error messages (951120 PL1) by [@azurit](https://togithub.com/azurit) in [https://github.com/coreruleset/coreruleset/pull/3703](https://togithub.com/coreruleset/coreruleset/pull/3703)
- fix: removing double t:urlDecodeUni (920221 PL1, 920440 PL1, 932200 PL2, 932205 PL2, 932206 PL2) by [@azurit](https://togithub.com/azurit) in [https://github.com/coreruleset/coreruleset/pull/3699](https://togithub.com/coreruleset/coreruleset/pull/3699)
- fix: false positives from PHP config directives and functions (933120 PL1, 933151 PL2) by [@ssigwart](https://togithub.com/ssigwart) in [https://github.com/coreruleset/coreruleset/pull/3638](https://togithub.com/coreruleset/coreruleset/pull/3638)
- feat: prevent detection of web shells rules as malware by Windows Defender (955260 PL1) by [@azurit](https://togithub.com/azurit) in [https://github.com/coreruleset/coreruleset/pull/3687](https://togithub.com/coreruleset/coreruleset/pull/3687)
- fix: fp with name axel by removing it from rce rule (932260 PL1) by [@franbuehler](https://togithub.com/franbuehler) in [https://github.com/coreruleset/coreruleset/pull/3705](https://togithub.com/coreruleset/coreruleset/pull/3705)
##### New Contributors
- [@TimDiam0nd](https://togithub.com/TimDiam0nd) made their first contribution in [https://github.com/coreruleset/coreruleset/pull/3688](https://togithub.com/coreruleset/coreruleset/pull/3688)
- [@brentclark](https://togithub.com/brentclark) made their first contribution in [https://github.com/coreruleset/coreruleset/pull/3646](https://togithub.com/coreruleset/coreruleset/pull/3646)
**Full Changelog**: https://github.com/coreruleset/coreruleset/compare/v4.2.0...v4.3.0
Configuration
📅 Schedule: Branch creation - "before 4am on Monday" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
â™» Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
[ ] If you want to rebase/retry this PR, check this box
This PR has been generated by Mend Renovate. View repository job log here.
This PR contains the following updates:
4.2.0->4.3.0Release Notes
coreruleset/coreruleset (coreruleset/coreruleset)
### [`v4.3.0`](https://togithub.com/coreruleset/coreruleset/releases/tag/v4.3.0) [Compare Source](https://togithub.com/coreruleset/coreruleset/compare/v4.2.0...v4.3.0) ##### What's Changed ##### 🆕 New features and detections 🎉 - feat: catch Java PostgreSQL errors (951240 PL1) by [@azurit](https://togithub.com/azurit) in [https://github.com/coreruleset/coreruleset/pull/3686](https://togithub.com/coreruleset/coreruleset/pull/3686) - feat: block The Mysterious Mozlila User Agent bot (913100 PL1) by [@brentclark](https://togithub.com/brentclark) in [https://github.com/coreruleset/coreruleset/pull/3646](https://togithub.com/coreruleset/coreruleset/pull/3646) ##### 🧰 Other Changes - fix: Oracle SQL database data leakage FP (951120 PL1) by [@azurit](https://togithub.com/azurit) in [https://github.com/coreruleset/coreruleset/pull/3685](https://togithub.com/coreruleset/coreruleset/pull/3685) - fix: typos in 920330 and 942280 tests by [@TimDiam0nd](https://togithub.com/TimDiam0nd) in [https://github.com/coreruleset/coreruleset/pull/3688](https://togithub.com/coreruleset/coreruleset/pull/3688) - test: change pl-1 to pl1 to be inline with others by [@TimDiam0nd](https://togithub.com/TimDiam0nd) in [https://github.com/coreruleset/coreruleset/pull/3690](https://togithub.com/coreruleset/coreruleset/pull/3690) - feat: use renovate to update docker-compose by [@theseion](https://togithub.com/theseion) in [https://github.com/coreruleset/coreruleset/pull/3697](https://togithub.com/coreruleset/coreruleset/pull/3697) - fix: FP for `sched` (932235 PL1, 932236 PL2, 932237 PL3, 932239 PL2, … by [@theseion](https://togithub.com/theseion) in [https://github.com/coreruleset/coreruleset/pull/3701](https://togithub.com/coreruleset/coreruleset/pull/3701) - fix: collections not being initialized without User-Agent header by [@azurit](https://togithub.com/azurit) in [https://github.com/coreruleset/coreruleset/pull/3645](https://togithub.com/coreruleset/coreruleset/pull/3645) - feat: refactoring of rule 941310 (PL1 941310) by [@azurit](https://togithub.com/azurit) in [https://github.com/coreruleset/coreruleset/pull/3700](https://togithub.com/coreruleset/coreruleset/pull/3700) - fix: resolving more FPs with Oracle error messages (951120 PL1) by [@azurit](https://togithub.com/azurit) in [https://github.com/coreruleset/coreruleset/pull/3703](https://togithub.com/coreruleset/coreruleset/pull/3703) - fix: removing double t:urlDecodeUni (920221 PL1, 920440 PL1, 932200 PL2, 932205 PL2, 932206 PL2) by [@azurit](https://togithub.com/azurit) in [https://github.com/coreruleset/coreruleset/pull/3699](https://togithub.com/coreruleset/coreruleset/pull/3699) - fix: false positives from PHP config directives and functions (933120 PL1, 933151 PL2) by [@ssigwart](https://togithub.com/ssigwart) in [https://github.com/coreruleset/coreruleset/pull/3638](https://togithub.com/coreruleset/coreruleset/pull/3638) - feat: prevent detection of web shells rules as malware by Windows Defender (955260 PL1) by [@azurit](https://togithub.com/azurit) in [https://github.com/coreruleset/coreruleset/pull/3687](https://togithub.com/coreruleset/coreruleset/pull/3687) - fix: fp with name axel by removing it from rce rule (932260 PL1) by [@franbuehler](https://togithub.com/franbuehler) in [https://github.com/coreruleset/coreruleset/pull/3705](https://togithub.com/coreruleset/coreruleset/pull/3705) ##### New Contributors - [@TimDiam0nd](https://togithub.com/TimDiam0nd) made their first contribution in [https://github.com/coreruleset/coreruleset/pull/3688](https://togithub.com/coreruleset/coreruleset/pull/3688) - [@brentclark](https://togithub.com/brentclark) made their first contribution in [https://github.com/coreruleset/coreruleset/pull/3646](https://togithub.com/coreruleset/coreruleset/pull/3646) **Full Changelog**: https://github.com/coreruleset/coreruleset/compare/v4.2.0...v4.3.0Configuration
📅 Schedule: Branch creation - "before 4am on Monday" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
â™» Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Mend Renovate. View repository job log here.