jcchavezs
Follow
Pinned
1,104 contributions in the last year
Activity overview
Contributed to
corazawaf/coraza,
corazawaf/coraza-proxy-wasm,
jcchavezs/modsecurity-wasm-filter-e2e
and 71 other
repositories
Contribution activity
March 2023
Created a pull request in corazawaf/coraza that received 40 comments
Rework Logger API
This PR follows this PR manojgop#3 and conflates some of the efforts from @manojgop, @ns-sundar and me around reducing allocations in logging in th…
+919
−370
•
40
comments
Opened 15 other pull requests in 4 repositories
corazawaf/coraza
8
merged
1
closed
- chore: avoids initializing the audit log on every directive.
- chore: improves debug log by adding the status.
- breaking: removes logger from the WrapHandler function.
- breaking: removes INBOUND_ERROR_DATA in favour of INBOUND_DATA_ERROR.
- chore: removes CTL regex.
- feat: adds support for response args and response body processor.
- Response JSON body processor
- chore: runs go work sync on format.
- chore: reallocate loggers
corazawaf/coraza-proxy-wasm
4
merged
jcchavezs/coraza-httpbin
1
merged
corazawaf/coraza-caddy
1
open
Reviewed 35 pull requests in 7 repositories
corazawaf/coraza
25 pull requests
- Use bitset for inferred phases
- chore: avoids initializing the audit log on every directive.
- chore: Adds checks for SecDefaultActions and related tests
- Cleanup and optimize rulegroup
- Propagate parsed line for raw rule storage
- fix: skip action within the phase, adds tests
- feat(collections): implement dynamic collections (TIME, DURATION, XML, etc)
- Only log requested parts in audit log
- Don't remove GET keys in json processor
- Replace remaining usage of generic config map with internal struct
- Reduce stuttering in auditlog package
- feat(transformation): add trim transformation
- fix: allow:phase and allow:request actions, extends related tests
- Add typesafe auditlog config
- Some cleanups to debuglog API
- Rework actions parsing
- Only log requested parts in native formatter
- Replace action/operator tokenization from regex to code
- Small cleanups to actions parsing
- Small cleanups to parser
- fix: default Event in log levels, adds test
- chore(deps): bump golang.org/x/net from 0.7.0 to 0.8.0
- Use coraza-coreruleset for FTW test
- Fix(980170): Correlation rules, SecAction messages, flow actions with DetectionOnly
- chore(readme): remove roadmap from readme
- Some pull request reviews not shown.
corazawaf/coraza-proxy-wasm
3 pull requests
jcchavezs/coraza-httpbin
1 pull request
cncf/tag-security
1 pull request
corazawaf/coraza-playground
1 pull request
corazawaf/coraza-coreruleset
1 pull request
manojgop/coraza
1 pull request
Created an issue in corazawaf/coraza-proxy-wasm that received 9 comments
Connect the dots with observability
Right now there is no trivial way of connecting audit logs or debug logs (properly coraza logs) with the underlying requests or their consequent pr…
9
comments
Opened 7 other issues in 4 repositories
corazawaf/coraza
2
open
1
closed
coreruleset/go-ftw
2
open
jcchavezs/coraza-httpbin
1
open
cncf/tag-security
1
open
1
contribution
in private repositories
Mar 13