npm - @abtnode/router-provider - Versions diffs - 1.16.38-beta-20250121-093201-3cdcfa78 → 1.16.38-beta-20250125-130409-89d4849d - Mend

@abtnode/router-provider 1.16.38-beta-20250121-093201-3cdcfa78 → 1.16.38-beta-20250125-130409-89d4849d

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/lib/nginx/includes/security/crs4/rules/REQUEST-900-EXCLUSION-RULES-BEFORE-CRS.conf CHANGED Viewed

@@ -207,9 +207,8 @@ SecRule REQUEST_FILENAME "@endsWith /api/gql" \
    nolog,\
    chain"
    SecRule REQUEST_METHOD "@pm POST" \
-       "ctl:ruleRemoveByTag=attack-sqli,\
-        ctl:ruleRemoveByTag=attack-rce,\
-        ctl:ruleRemoveByTag=attack-xss"
+       "ctl:ruleRemoveByTag=attack-rce,\
+        ctl:ruleRemoveById=921110"
 # Disable some rules for websocket endpoint for blocklet server and service
 SecRule REQUEST_FILENAME "@endsWith /websocket" \
@@ -237,3 +236,22 @@ SecRule REQUEST_HEADERS:tus-resumable "@rx ^1\.0\.0$" \
         SecRule REQUEST_HEADERS:Content-Type "@rx ^application/offset\+octet-stream$" \
             "t:none,\
             ctl:ruleRemoveById=920420"
+SecRule REQUEST_FILENAME "@endsWith /connect-to-did-space" \
+   "id:1009,\
+   phase:1,\
+   pass,\
+   nolog,\
+   chain"
+   SecRule REQUEST_METHOD "@pm GET" \
+       "ctl:ruleRemoveById=934110"
+SecRule REQUEST_FILENAME "@endsWith /app-records.txt" \
+   "id:1010,\
+   phase:1,\
+   pass,\
+   nolog,\
+   chain"
+   SecRule REQUEST_METHOD "@pm PUT" \
+       "ctl:ruleRemoveById=942550,\
+        ctl:ruleRemoveById=934110"

package/lib/nginx/includes/security/crs4/rules/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf CHANGED Viewed

@@ -18,6 +18,7 @@
 # use of this file.
 #
 SecRuleRemoveById 920350
+SecRuleRemoveById 920170
 SecRuleRemoveByTag "platform-windows"
 #

package/lib/nginx/index.js CHANGED Viewed

@@ -889,8 +889,8 @@ class NginxProvider extends BaseProvider {
       ...pick(wafPolicy, ['mode', 'inboundAnomalyScoreThreshold', 'outboundAnomalyScoreThreshold', 'logLevel']),
       tmpDir: this.tmpDir,
       logDir: this.logDir,
-      maxUploadSize: +CLIENT_MAX_BODY_SIZE * 1024 * 1024,
-      maxBodySize: (+CLIENT_MAX_BODY_SIZE * 1024 * 1024) / 100,
+      maxUploadSize: Math.floor(+CLIENT_MAX_BODY_SIZE * 1024 * 1024),
+      maxBodySize: Math.floor((+CLIENT_MAX_BODY_SIZE * 1024 * 1024) / 100),
     };
     logger.info('modsecurity variables', variables);

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@abtnode/router-provider",
-  "version": "1.16.38-beta-20250121-093201-3cdcfa78",
+  "version": "1.16.38-beta-20250125-130409-89d4849d",
   "description": "Routing engine implementations for abt node",
   "author": "polunzh <polunzh@gmail.com>",
   "homepage": "https://github.com/ArcBlock/blocklet-server#readme",
@@ -32,10 +32,10 @@
     "url": "https://github.com/ArcBlock/blocklet-server/issues"
   },
   "dependencies": {
-    "@abtnode/constant": "1.16.38-beta-20250121-093201-3cdcfa78",
-    "@abtnode/logger": "1.16.38-beta-20250121-093201-3cdcfa78",
-    "@abtnode/router-templates": "1.16.38-beta-20250121-093201-3cdcfa78",
-    "@abtnode/util": "1.16.38-beta-20250121-093201-3cdcfa78",
+    "@abtnode/constant": "1.16.38-beta-20250125-130409-89d4849d",
+    "@abtnode/logger": "1.16.38-beta-20250125-130409-89d4849d",
+    "@abtnode/router-templates": "1.16.38-beta-20250125-130409-89d4849d",
+    "@abtnode/util": "1.16.38-beta-20250125-130409-89d4849d",
     "@arcblock/http-proxy": "^1.19.1",
     "@arcblock/is-valid-domain": "^1.0.5",
     "axios": "^1.7.9",
@@ -60,5 +60,5 @@
     "bluebird": "^3.7.2",
     "fs-extra": "^11.2.0"
   },
-  "gitHead": "d6b5059b13b31a2d619fd23dc9d993dca927d21f"
+  "gitHead": "670d44366731900eec59f5e63a7c384eba6f22ae"
 }