github
/
gixy
mirror of https://github.com/yandex/gixy
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
92 Commits
5 Branches
10 Tags
974 KiB
Commit Graph

92 Commits (alias_traversal)

Author SHA1 Message Date
Andrew Krasichkov 91e060e958 [alias_traversal] minor documentation improvements 2017-10-10 15:00:15 +03:00
Andrew Krasichkov 556b3e3e0b [alias_traversal] Added documentation 2017-10-10 14:59:18 +03:00
Andrew Krasichkov 072c661aa7 [alias_traversal] Added tests 2017-06-06 22:10:17 +03:00
Andrew Krasichkov 97981755c3 First try to implement path traversal detection (via alias) 2017-06-06 21:10:33 +03:00
Tommy Brunn 7360ee0adb Document Docker usage 2017-06-05 11:56:12 +03:00
orf d4e3d5285e Test on PyPy 2 and 3 2017-06-02 19:58:04 +03:00
buglloc f5fd81c0db Version bump to 0.1.5 2017-05-21 23:10:32 +03:00
buglloc ea1fb2e658 Show file paths in console/text templates only if we analyzed more then 1 config 2017-05-21 23:03:04 +03:00
buglloc ca0dca94cf Better regex parsing error message 2017-05-19 20:15:38 +03:00
Andrew Krasichkov 6f360bc16d Minor templates improvements (#54) 2017-05-19 19:50:53 +03:00
Andrew Krasichkov 183aae602b Deal with severity issue overriding (#53) 2017-05-19 19:47:02 +03:00
Andrew Krasichkov 9643318c93 Checks file existing before opening by parser (#52) 2017-05-19 19:31:39 +03:00
Andrew Krasichkov e477e02350 Support multiple config files (#47) 2017-05-19 19:31:20 +03:00
Andrew Krasichkov 2ea357ea7b Merge pull request #44 from yandex/nonstrict-encoding 
Autodetect config encoding
 2017-05-16 23:05:28 +03:00
Andrew Krasichkov cb4dbc875a Merge branch 'master' into nonstrict-encoding 2017-05-16 23:03:05 +03:00
Andrew Krasichkov 39fa26c7fe Added basic Python 2.6 support (#43) 2017-05-16 23:02:10 +03:00
Screeny 938889961a Fix typo in addheadermultiline.md 2017-05-16 12:15:40 +03:00
Andrew Krasichkov cea880bc40 Try to autodetect encoding for bynary string while parsing. 
Deal with UTF-8 BOM
 2017-05-14 16:05:17 +03:00
Andrew Krasichkov 70d2d1160e Version bump to 0.1.4 2017-05-14 14:56:40 +03:00
Andrew Krasichkov c5df3f073e Improved regex for "if" directive condition capturing 2017-05-14 14:41:21 +03:00
Andrew Krasichkov 92f2c01831 [add_header_redefinition] Exclude HSTS header from defaults, because it is not necessary for security.. 2017-05-14 14:40:57 +03:00
Andrew Krasichkov 7d8fb8845f Allowed more characters for map/upstream/etc directives 2017-05-14 14:36:53 +03:00
Andrew Krasichkov 3c1437c816 Changed file reading logic. Parsers and auditor don't read files by itself, instead of this expect file descriptor or file content. 2017-05-13 14:56:53 +03:00
Andrew Krasichkov 625a25db46 Another workaround for "if" directive parsing with unquoted regex 2017-05-13 13:52:17 +03:00
Andrew Krasichkov 26b2ead72c Added new test cases for "if" directive parsing 2017-05-13 13:52:17 +03:00
Andrew Krasichkov 7d182dbdba Added editorconfig 2017-05-13 13:39:21 +03:00
Andrew Krasichkov 3fcc7f7eae Added dockerignore 2017-05-13 13:23:49 +03:00
Tommy Brunn 85d075e3ec Rebase docker image on python:2.7-alpine 2017-05-13 13:02:19 +03:00
Tommy Brunn ff42a521c4 Add trailing newline 2017-05-13 13:02:19 +03:00
Tommy Brunn 75b0e33546 Add Dockerfile 2017-05-13 13:02:19 +03:00
Andrew Krasichkov 8486606456 Better error message for "if" directive 2017-05-12 19:40:14 +03:00
Andrew Krasichkov f7de6bf6ff Added tox to dev dependencies 2017-05-12 17:22:46 +03:00
Jason Novinger 746c255ab2 Minor grammar fix 
"doesn't" --> "don't"
 2017-05-12 17:20:53 +03:00
Bernd Eidenschink a21d887dbe Fix typo 
"$host" holds the described value, not "$http"
 2017-05-11 17:24:04 +03:00
Andrew Krasichkov 11ebf7dbb4 Version bump to 0.1.3 2017-05-11 11:49:07 +03:00
Andrew Krasichkov 1cbcc2661f By default use english docs. 
// TODO: i18n
 2017-05-11 11:44:39 +03:00
Andrew Krasichkov 150d9f2a3d Minor docs update 2017-05-11 11:44:05 +03:00
Andrew Krasichkov f225f9a8fb Minor readme improvements 2017-05-11 00:50:32 +03:00
Andrew Krasichkov 0b0d3496d9 Update README.RU.md 2017-05-11 00:38:21 +03:00
Andrew Krasichkov b643cf3160 Minor documentation refactoring 2017-05-11 00:36:07 +03:00
Andrew Krasichkov 7255ea610f Merge branch 'kr2142-master' 2017-05-10 20:48:02 +03:00
Yaroslav Buchnev c5094571f8 Added eng documentation. 2017-05-10 18:44:01 +03:00
Andrew Krasichkov 0ba9b217d8 Version up to 0.1.2 2017-05-02 12:08:16 +03:00
Andrew Krasichkov 5dfcd5e68b Added tests for comment parsing 2017-05-02 12:05:32 +03:00
Andrew Krasichkov 521d4e39f5 Reworked Nginx comments parsing 2017-05-02 12:05:32 +03:00
Andrew Krasichkov 8de6f0a698 Added auth_request_set directive (#21) 2017-05-02 12:04:06 +03:00
Andrew Krasichkov 1a1a725227 Merge pull request #19 from gongled/feature-rpm-support 
Added RPM specs
 2017-05-02 00:23:58 +03:00
Gleb Goncharov 65a4b846fa Added RPM specs 2017-04-29 13:18:47 +04:00
Andrew Krasichkov 3dc9bde70b Minor code style improvements 2017-04-29 11:19:56 +03:00
Andrew Krasichkov 411b74f7ba Merge pull request #18 from denyska/patch-1 
Updated README.md, fixed spelling mistakes.
 2017-04-29 10:52:20 +03:00