release/20250605

What's Changed

⚙️ Dependency updates

• chore(deps): update dependency modsecurity2 to v2.9.10 in docker-bake.hcl by @renovate in #359
• chore(deps): update dependency coreruleset/coreruleset to v4.15.0 in readme.md by @renovate in #360

Full Changelog: release/20250525...release/20250605

release/20250525

What's Changed

⚙️ Dependency updates

• chore(config): migrate renovate config in {{packageFile}} by @renovate in #353
• chore(deps): update dependency modsecurity2 to v2.9.9 in docker-bake.hcl by @renovate in #358
• Update ModSecurity-nginx 1.0.4 by @khiemdoan in #357

🧰 Other changes

• Fix typos and improve spelling in README.md by @yujie0505 in #354

New Contributors

• @yujie0505 made their first contribution in #354

Full Changelog: release/20250505...release/20250525

release/20250505

What's Changed

🛠 Fixes

• fix: work around configure issue with GCC 14+ by @theseion in #351

⚙️ Dependency updates

• chore(deps): update nginxinc/nginx-unprivileged docker tag to v1.28.0 in readme.md by @renovate in #350
• chore(deps): update dependency coreruleset/coreruleset to v4.14.0 in readme.md by @renovate in #352

Full Changelog: release/20250407...release/20250505

release/20250407

What's Changed

⚙️ Dependency updates

• chore(deps): update dependency coreruleset/coreruleset to v4.13.0 in readme.md by @renovate in #347

Full Changelog: release/20250323...release/20250407

release/20250323

What's Changed

⚙️ Dependency updates

• chore(deps): update dependency coreruleset/coreruleset to v4.12.0 in readme.md by @renovate in #342

🧰 Other changes

• chore: add automatic release categorization by @theseion in #341
• feat(apache): switch to pcre2 by @fzipi in #218
• docs: update buildx targets by @theseion in #346

Full Changelog: release/20250227...release/20250323

release/20250227

What's Changed

• docs: add k8s errors by @fzipi in #335
• fix: Add allowedVersions to restrict Nginx to stable releases by @nakamo326 in #337
• feat: enable running nginx containers with read-only root fs by @theseion in #210
• fix: use correct tags for read-only images by @theseion in #338
• chore(deps): update dependency modsecurity3 to v3.0.14 in docker-bake.hcl by @renovate in #333
• fix: default paranoia settings break CRS by @theseion in #339

New Contributors

• @nakamo326 made their first contribution in #337

Full Changelog: release/20250207...release/20250227

release/20250207

Important

Do not use the *nginx images in this release. They are affected by a vulnerability in libmodsecurity3 v3.0.13.

• blogpost
• CVE-2025-27110

What's Changed

• fix: replace $upstream variable with BACKEND env var by @theseion in #331

Full Changelog: release/20250205...release/20250207

release/20250205

Important

This release fixes an issue with the nginx* images in the two previous releases. Those images were accidentally built with an unstable version of the ModSecurity-Nginx nginx connector.

What's Changed

• chore: update QEMU to v9.2.0 by @theseion in #327

Full Changelog: release/20250201...release/20250205

release/20250201

Important

Please do not use the nginx* images from this release. They are broken.

What's Changed

• chore(deps): update dependency coreruleset/coreruleset to v4.11.0 in readme.md by @renovate in #325
• fix: set correct variable names for ANOMALY_INBOUND and OUTBOUND by @franbuehler in #321
• use stable version of modsecurity nginx connector by @fichte in #328

New Contributors

• @fichte made their first contribution in #328

Full Changelog: release/20250127...release/20250201

release/20250127

Important

Please do not use the nginx* images from this release. They are broken.

What's Changed

• docs: fix default value for ALLOWED_REQUEST_CONTENT_TYPE by @andreasferber in #318
• chore(deps): update httpd docker tag to v2.4.63 in readme.md by @renovate in #322
• chore: update QEMU by @theseion in #323

New Contributors

• @andreasferber made their first contribution in #318

Full Changelog: release/20250105...release/20250127