feat: 补 Joomla / Varnish 响应头识别

Joomla:补响应头识别,覆盖 x-content-encoded-by(真实 Joomla 旧版表头)、x-powered-cms(部分伪造样本会用)、x-generator 三条路径,放进 websitePrograms 后落在「网站程序」类目,遇到 spoof 场景(身份字段 ≥4)会被 markSpoofedHeaderDetections 一起降级到「低」并附伪造警示。
Varnish:扩展 via/x-cache 之外的命中点,新增 x-varnish:\s*\d 模式——真实 Varnish 的 XID 一定是十进制数,要求数字开头能挡住 x-varnish: gs60 这种非数字伪造值。

将版本号提升到 1.3.46。

Author: setube

package.json

@@ -1,7 +1,7 @@
 {
   "name": "stackprism",
   "private": true,
-  "version": "1.3.45",
+  "version": "1.3.46",
   "type": "module",
   "description": "StackPrism 用于检测网页前端、后端、CDN、SaaS、广告营销、统计、登录、支付、网站程序和主题模板线索。",
   "scripts": {

public/rules/headers/header-patterns.json

@@ -229,8 +229,8 @@
           {
             "name": "Varnish",
             "confidence": "中",
-            "patterns": ["via:.*varnish", "x-cache:.*varnish"],
-            "evidence": "via/x-cache 包含 Varnish"
+            "patterns": ["via:.*varnish", "x-cache:.*varnish", "(?:^|\\n)x-varnish:\\s*\\d"],
+            "evidence": "响应头包含 Varnish 线索"
           },
           {
             "defaults": {

public/rules/headers/website-programs.json

@@ -11,6 +11,11 @@
         "kind": "CMS",
         "patterns": ["x-drupal-cache", "x-generator:.*drupal"]
       },
+      {
+        "name": "Joomla",
+        "kind": "CMS",
+        "patterns": ["(?:^|\\n)x-content-encoded-by:[^\\n]*joomla", "(?:^|\\n)x-powered-cms:[^\\n]*joomla", "x-generator:.*joomla"]
+      },
       {
         "name": "Shopify",
         "kind": "SaaS 电商",