github
/
gixy
mirror of https://github.com/yandex/gixy
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
116 Commits
5 Branches
10 Tags
955 KiB
Commit Graph

116 Commits (f92423ea71fada244258e1d007ee346551eac090)

Author SHA1 Message Date
Andrew Krasichkov f92423ea71 Added python 3.7 2018-09-28 11:01:34 +03:00
Andrew Krasichkov c0dd214e61 Try to deal with non latin encoding 2018-09-28 11:00:13 +03:00
Andrew Krasichkov 84f79a3e04 Try to parse inline comment in blocks 2018-09-28 11:00:02 +03:00
Fernando Tapia Rico 0e032605b5 Add perl_set directive 
Defined in the ngx_http_perl_module
 2018-09-28 10:59:47 +03:00
Andrey Tikhonov f5a54ad161 Added tests for GeoBlock 2018-04-17 16:45:57 +03:00
Andrey Tikhonov 82508941bd Added test for MapBlock 2018-04-17 16:45:57 +03:00
Andrey Tikhonov 6f0edbc980 Added support for 'geo' blocks 2018-04-17 16:45:57 +03:00
Andrew Krasichkov 5a6cb2c3d0
Update hostspoofing.md 2018-04-04 15:41:33 +03:00
Andrew Krasichkov 86b5e60d6b Bump version to 0.1.9 2018-03-02 15:16:18 +03:00
Andrew Krasichkov 2c44989f4a Exclude CR from HTTP Request splitting 2018-03-02 15:15:30 +03:00
Andrew Krasichkov 902e739106
Update README.RU.md 2018-03-02 13:31:58 +03:00
Andrew Krasichkov 15f5fcef23
Update README.md 2018-03-02 13:31:51 +03:00
Andrew Krasichkov 020f6b08e8 Version bump to 0.1.8 2017-11-10 12:28:35 +03:00
Yoav Tzelnick 0f9b192c13 Syntax error in configuration now fails the manager. making the exit code 1 on syntax error 2017-11-10 12:25:06 +03:00
Andrew Krasichkov ea7d771ab6 [alias_traversal] Minor improvements + respects path in the alias directive: 
- alias /foo/bar/ -> HIGH severity
  - alias /foo/bar -> MEDIUM severity
 2017-11-10 12:22:39 +03:00
Screeny 2a922f37cc minor grammar fix 2017-11-03 17:56:32 +03:00
Andrew Krasichkov 0110b4e7a9 Version up to 0.1.7 2017-10-10 15:12:36 +03:00
Andrew Krasichkov 05d4915901 [http_splitting] Better reason message 2017-10-10 15:12:16 +03:00
Andrew Krasichkov ddd232a6b1 Version up to 0.1.6 2017-10-10 15:02:58 +03:00
Andrew Krasichkov fd4c731c8a [alias_traversal] minor documentation improvements 2017-10-10 15:02:09 +03:00
Andrew Krasichkov 1f9a65a197 [alias_traversal] Added documentation 2017-10-10 15:02:09 +03:00
Andrew Krasichkov d00a58e467 [alias_traversal] Added tests 2017-10-10 15:02:09 +03:00
Andrew Krasichkov 49309996fb First try to implement path traversal detection (via alias) 2017-10-10 15:02:09 +03:00
Andrew Krasichkov acba288be7 [http_splitting] also checks CR injection 2017-10-10 14:18:44 +03:00
Daniel M. Capella b14934d3ba Use nose setuptools integration 
https://nose.readthedocs.io/en/latest/setuptools_integration.html
 2017-07-06 19:51:39 +03:00
Andrew Krasichkov ffbba62b41 More test cases for if parsing 2017-07-06 19:48:29 +03:00
Andrew Krasichkov 04dfa39a54 Better if condition parsing 2017-07-06 19:48:29 +03:00
Andrew Krasichkov e947fd16b4 #65: Fixed origin regex in documentation 2017-07-06 19:24:24 +03:00
Tommy Brunn 7360ee0adb Document Docker usage 2017-06-05 11:56:12 +03:00
orf d4e3d5285e Test on PyPy 2 and 3 2017-06-02 19:58:04 +03:00
buglloc f5fd81c0db Version bump to 0.1.5 2017-05-21 23:10:32 +03:00
buglloc ea1fb2e658 Show file paths in console/text templates only if we analyzed more then 1 config 2017-05-21 23:03:04 +03:00
buglloc ca0dca94cf Better regex parsing error message 2017-05-19 20:15:38 +03:00
Andrew Krasichkov 6f360bc16d Minor templates improvements (#54) 2017-05-19 19:50:53 +03:00
Andrew Krasichkov 183aae602b Deal with severity issue overriding (#53) 2017-05-19 19:47:02 +03:00
Andrew Krasichkov 9643318c93 Checks file existing before opening by parser (#52) 2017-05-19 19:31:39 +03:00
Andrew Krasichkov e477e02350 Support multiple config files (#47) 2017-05-19 19:31:20 +03:00
Andrew Krasichkov 2ea357ea7b Merge pull request #44 from yandex/nonstrict-encoding 
Autodetect config encoding
 2017-05-16 23:05:28 +03:00
Andrew Krasichkov cb4dbc875a Merge branch 'master' into nonstrict-encoding 2017-05-16 23:03:05 +03:00
Andrew Krasichkov 39fa26c7fe Added basic Python 2.6 support (#43) 2017-05-16 23:02:10 +03:00
Screeny 938889961a Fix typo in addheadermultiline.md 2017-05-16 12:15:40 +03:00
Andrew Krasichkov cea880bc40 Try to autodetect encoding for bynary string while parsing. 
Deal with UTF-8 BOM
 2017-05-14 16:05:17 +03:00
Andrew Krasichkov 70d2d1160e Version bump to 0.1.4 2017-05-14 14:56:40 +03:00
Andrew Krasichkov c5df3f073e Improved regex for "if" directive condition capturing 2017-05-14 14:41:21 +03:00
Andrew Krasichkov 92f2c01831 [add_header_redefinition] Exclude HSTS header from defaults, because it is not necessary for security.. 2017-05-14 14:40:57 +03:00
Andrew Krasichkov 7d8fb8845f Allowed more characters for map/upstream/etc directives 2017-05-14 14:36:53 +03:00
Andrew Krasichkov 3c1437c816 Changed file reading logic. Parsers and auditor don't read files by itself, instead of this expect file descriptor or file content. 2017-05-13 14:56:53 +03:00
Andrew Krasichkov 625a25db46 Another workaround for "if" directive parsing with unquoted regex 2017-05-13 13:52:17 +03:00
Andrew Krasichkov 26b2ead72c Added new test cases for "if" directive parsing 2017-05-13 13:52:17 +03:00
Andrew Krasichkov 7d182dbdba Added editorconfig 2017-05-13 13:39:21 +03:00