Skip to content

chore(deps): update dependency coreruleset-v3 to v4 in config/_default/params.yaml #365

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

chore(deps): update dependency coreruleset-v3 to v4 in config/_default/params.yaml #365

wants to merge 1 commit into from

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Aug 5, 2025
edited
Loading

This PR contains the following updates:

Package Update Change
coreruleset-v3 major 3.3.7 -> 4.17.1

Release Notes

coreruleset/coreruleset (coreruleset-v3)

v4.17.1

Compare Source

What's Changed

⭐ Important changes
🧰 Other Changes

Full Changelog: coreruleset/coreruleset@v4.17.0...v4.17.1

v4.17.0

Compare Source

What's Changed

⭐ Important changes
🆕 New features and detections 🎉
🧰 Other Changes

New Contributors

Full Changelog: coreruleset/coreruleset@v4.16.0...v4.17.0

v4.16.0

Compare Source

What's Changed

🆕 New features and detections 🎉
🧰 Other Changes

New Contributors

Full Changelog: coreruleset/coreruleset@v4.15.0...v4.16.0

v4.15.0

Compare Source

What's Changed

🆕 New features and detections 🎉
🧰 Other Changes

Full Changelog: coreruleset/coreruleset@v4.14.0...v4.15.0

v4.14.0

Compare Source

What's Changed

🆕 New features and detections 🎉
🧰 Other Changes

Full Changelog: coreruleset/coreruleset@v4.13.0...v4.14.0

v4.13.0

Compare Source

What's Changed

⭐ Important changes
🆕 New features and detections 🎉
🪦 Rule removals
🧰 Other Changes

New Contributors

Full Changelog: coreruleset/coreruleset@v4.12.0...v4.13.0

v4.12.0

Compare Source

What's Changed

🆕 New features and detections 🎉
🧰 Other Changes

New Contributors

Full Changelog: coreruleset/coreruleset@v4.11.0...v4.12.0

v4.11.0

Compare Source

What's Changed

🪦 Rule removals
🧰 Other Changes

Full Changelog: coreruleset/coreruleset@v4.10.0...v4.11.0

v4.10.0

Compare Source

What's Changed

🆕 New features and detections 🎉
🧰 Other Changes

Full Changelog: coreruleset/coreruleset@v4.9.0...v4.10.0

v4.9.0

Compare Source

What's Changed

⭐ Important changes
🆕 New features and detections 🎉
🧰 Other Changes

New Contributors

Full Changelog: coreruleset/coreruleset@v4.8.0...v4.9.0

v4.8.0

Compare Source

What's Changed

⭐ Important changes
🆕 New features and detections 🎉
🧰 Other Changes

New Contributors

Full Changelog: coreruleset/coreruleset@v4.7.0...v4.8.0

v4.7.0

Compare Source

What's Changed

🆕 New features and detections 🎉
🧰 Other Changes

New Contributors

Full Changelog: coreruleset/coreruleset@v4.6.0...v4.7.0

v4.6.0

Compare Source

What's Changed

⭐ Important changes

Big thanks tu @​luelueking for reporting us these two ☝️ .

🧰 Other Changes

New Contributors

Full Changelog: coreruleset/coreruleset@v4.5.0...v4.6.0

v4.5.0

Compare Source

What's Changed

🆕 New features and detections 🎉
🧰 Other Changes

New Contributors

Full Changelog: coreruleset/coreruleset@v4.4.0...v4.5.0

v4.4.0

Compare Source

What's Changed

🆕 New features and detections 🎉
🧰 Other Changes

Full Changelog: coreruleset/coreruleset@v4.3.0...v4.4.0

v4.3.0

Compare Source

What's Changed

🆕 New features and detections 🎉
🧰 Other Changes

New Contributors

Full Changelog: coreruleset/coreruleset@v4.2.0...v4.3.0

v4.2.0

Compare Source

Version 4.2.0 - 2024-04-23

Changes with direct rule impact (sorted by lowest rule ID per change where available):

  • fix: increase length of Accept-Encoding header from 50 to 100 (920520 PL1) (Franziska Bühler) [#​3661]
  • fix: add missing roundcube files (930120 PL1, 930121 PL2, 930130 PL1, 932180 PL1) (Esad Cetiner) [#​3635]
  • fix: add visudo and cscli to unix-shell.data (932160 PL1, 932161 PL2) (Esad Cetiner) [#​3663]
  • feat: block crowdsec cscli and visudo commands (932235 PL1, 932236 PL2, 932237 PL3, 932239 PL2, 932260 PL1) (Esad Cetiner) [#​3649]
  • fix: add detection for php evasion attempt (933100 PL1) (Franziska Bühler) [#​3667]

Changes without direct rule impact:

  • feat: disassemble php rule (933100 PL1) (Franziska Bühler) [#​3662]
  • chore: remove references to nonexistant 942110 rule (Esad Cetiner) [#​3648]

Full Changelog: coreruleset/coreruleset@v4.1.0...v4.2.0

v4.1.0

Compare Source

What's Changed

  • feat: add check for combinations of t:lowercase and (?i) to lint (Franziska Bühler) [#​3584]
  • feat: add support for additional ansible and chef commands (932160 PL1, 932161 PL2, 932235 PL1, 932260 PL1, 932236 PL2, 932239 PL2, 932237 PL3) (Esad Cetiner) [#​3601]
  • feat: move HTTP header rules to phase 1 (932161 PL2, 932205 PL2, 932206 PL2, 932237 PL3) (Esad Cetiner) [#​3570]
  • fix: prevent FPs against names due to "cron" (932260 PL1, 932236 PL2, 932237 PL3, 932239 PL2) (@​superlgn) [#​3578]
  • fix: add missing tags and ver action (various rules) (Jozef Sudolský) [#​3571]
  • fix: adding more missing tags and ver actions (Jozef Sudolský) [#​3593]
  • fix: do not check URL fragments in referer headers as part of the existing rule to prevent FPs (932205 PL2) (Max Leske) [#​3485]
  • fix: range expressions must not start with \v (various rules) (Max Leske) [#​3615]
  • fix: remove t:lowercase from rules that use '(?i)' modifier in their regex (942150 PL2, 942151 PL1, 942152 PL2) (Ervin Hegedus) [#​3585]
  • test: change HTTP method to uppercase for test 932260-28 (Matteo Pace) [#​3580]
  • chore(deps): update workflow actions (Max Leske) [#​3613]
  • chore: add Esad Cetiner to list of developers (@​EsadCetiner) [#​3589]

New Contributors

Full Changelog: coreruleset/coreruleset@v4.0.0...v4.1.0

v4.0.0

Compare Source

This is the OWASP CRS version 4.0.0.

Important changes:
  • feat: introduce plugin architecture for extending CRS and minimizing attack surface. (Christian Folini, Max Leske, Jozef Sudolský, Andrew Howe) [#​2038, #​2448, #​2404]
  • feat: migrate application exclusions and less-used functionality to plugins (Christian Folini, Max Leske, Jozef Sudolský, Andrew Howe)
  • feat: introduce early blocking option (Christian Folini) [#​1955]
  • feat: introduce new rule file/category to detect use of common web shells in responses (955100-955340 PL1, 955350 PL2) (Jozef Sudolský, Andrea Menin) [#​1962, #​2039, #​2116]
  • feat: rename 'Node.js' category to 'generic' (Felipe Zipitría) [#​2340]
  • feat: make all formerly PCRE-only regular expressions compatible with RE2/Hyperscan regular expression engines (Max Leske, Felipe Zipitría, Allan Boll, Franziska Bühler) [#​1868, #​2356, #​2425, #​2426, #​2371, #​2372]
  • feat: add support for HTTP/3 (Jozef Sudolský) [#​3218]
  • feat: add granular control over reporting levels in 9801xx rules (Simon Studer, Andrew Howe, Christian Folini) [#​2482, #​2488]
  • feat: add new rule to explicitly detect multiple Content-Type abuse (CVE-2023-38199) (920620 PL1) (Andrea Menin) [#​3237]
  • feat: add enable_default_collections flag to not initialize collections by default (Matteo Pace) [#​3141]
  • feat: extend definition of restricted headers to include Content-Encoding and Accept-Charset by default (920450 PL1, 920451 PL2) (Walter Hop) [#​2780, #​2782]
  • feat: drop HTTP/0.9 support to resolve FP (Federico G. Schwindt) [#​1966]
  • fix: refactor and rename anomaly scoring variables and paranoia level definition (Simon Studer) [#​2417]
  • tests: complete goal of 100% test coverage for rules (entire team, Juan-Pablo Tosso, NiceYouKnow)
  • feat: switch to using WordNet instead of spell for finding English words in spell.sh (Max Leske) [#​3242]
  • feat: publish nightly packages regularly (Felipe Zipitría) [#​2207]
Tool changes:
  • feat: extend spell.sh script with an opt-in manual list of common and partial words. (Matteo Pace) [#​3273]
  • feat: rework spell.sh utility to help with detection of false positives English words (Andrea Menin) [#​3029]
  • feat: improve usability of spell.sh utility (Max Leske) [#​3238]
  • feat: extend rules-check.py script to better enforce rule format in project guidelines (Ervin Hegedus) [#​3113]
  • feat: extend rules-check.py script to ensure that auditLogParts is only used in last chained rule (Ervin Hegedus) [#​2609]
  • feat: extend rules-check.py script to ensure that rules use @rx operator explicitly (Ervin Hegedus) [#​2541]
  • feat: extend rules-check.py script to strip comments when parsing crs-setup.conf.example (Ervin Hegedus) [#​3161]
  • feat: add utility to change version numbers (Ervin Hegedus) [#​2085]
  • feat: add utility script to find rules without tests (Ervin Hegedus) [#​2279]
  • feat: add crs-rules-check tool that runs sanity checks against rules (Ervin Hegedus) [#​2236]
  • feat: add utility to find longest data lengths (Ervin Hegedus) [#​2277]
  • feat: improve rule-ctl script to modify rules (Max Leske) [#​2193]
  • feat: improve unique ID matching and documentation in send-payload-pls.sh (Manuel Spartan) [#​2288]
  • feat: unify regexp utils to automate error-prone actions and automatically update rules from regular expression sources (Max Leske) [#​2149, #​2223, #​2423, #​2495, #​2489, #​2473]
  • fix: adjust log directories needed for volume mounts to Git (Max Leske) [#​2103]
  • fix: replace backend docker container for tests to fix JSON Unicode reflection (Max Leske) [#​3464]
  • feat: add new test method: check for tags on rules against allowlist (Ervin Hegedus) [#​3437]
Changes with direct rule impact (sorted by lowest rule ID per change where available):
  • feat: add placeholder files for new plugin architecture (Walter Hop) [#​2515]
  • feat: check initialization and use for all TX variables (Ervin Hegedus) [[#​3043](https://redirect.gi

Configuration

📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM ( * 0-3 * * * ) (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot added dependencies Pull requests that update a dependency file github-releases major labels Aug 5, 2025
@cloudflare-workers-and-pages Cloudflare Workers and Pages
Copy link

Deploying website with  Cloudflare Pages  Cloudflare Pages

Latest commit: 67f8a0c
Status: ✅  Deploy successful!
Preview URL: https://49cf79bb.website-1u6.pages.dev
Branch Preview URL: https://renovate-major-4-all-major.website-1u6.pages.dev

View logs

@renovate renovate bot force-pushed the renovate/major-4-all-major branch from 67f8a0c to bded53f Compare August 5, 2025 13:08
@fzipi fzipi closed this Aug 5, 2025
@renovate Renovate
Copy link
Contributor Author

renovate bot commented Aug 5, 2025

Renovate Ignore Notification

Because you closed this PR without merging, Renovate will ignore this update. You will not get PRs for any future 4.x releases. But if you manually upgrade to 4.x then Renovate will re-enable minor and patch updates automatically.

If you accidentally closed this PR, or if you changed your mind: rename this PR to get a fresh replacement PR.

@renovate renovate bot deleted the renovate/major-4-all-major branch August 5, 2025 13:09
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file github-releases major
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@fzipi