Skip to content

Tighten request filtering and fix compose config#4

Merged
H4mid2019 merged 1 commit into
mainfrom
fix/detection-and-deploy
Jun 24, 2026
Merged

Tighten request filtering and fix compose config#4
H4mid2019 merged 1 commit into
mainfrom
fix/detection-and-deploy

Conversation

@H4mid2019

Copy link
Copy Markdown
Owner

Reduce false positives in the request filter and fix docker-compose.

  • Replace bare-substring keyword matching (SELECT, cat, echo, etc.) with context-aware regexes so legitimate values like ?category= or /echolocation are no longer blocked.
  • Drop redundant path prefix/exact lists now covered by the contains/suffix checks.
  • Apply a single command-injection regex to both path and decoded query.
  • Add regression tests for legitimate traffic.
  • docker-compose: real redis healthcheck and PORT aligned with nginx.conf/README.

@H4mid2019 H4mid2019 merged commit e3e14f7 into main Jun 24, 2026
6 checks passed
@H4mid2019 H4mid2019 deleted the fix/detection-and-deploy branch June 24, 2026 16:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant