Releases: AikidoSec/firewall-python
Releases · AikidoSec/firewall-python
v1.2.31
What's Changed
- Adds protection for async usage of psycopg library
- Faster ip matching for non-windows devices
- Marks /app and /code as confidential root directories for path traversal detection
- Fixes bypass using current directory statements in path traversal detection
- Fixes shell injection bypass using \r and \f
- Improved SQL Injection detection: updated zen-internals to v0.1.60
- Minor development workflow & sample app updates
v1.2.30
What's Changed
- Outbound domain blocking: Do not try and enforce bypassed ip list
v1.2.30b0
What's Changed
- Outbound domains: do not take bypassed IPs into account
v1.2.29
What's Changed
- Outbound domain blocking
- README clarifications regarding WSGI/ASGI
v1.2.29 beta 1
What's Changed
- outbound domain blocking: normalize punycode
v1.2.29 beta
What's Changed
- Adds outbound domain blocking
- README clarification
v1.2.28
What's Changed
- attack wave detection
- fix bug that caused false positives for stored imds
- private ip check now uses IPMatcher
- minor improvements in event reporting
- improved docs & dev env
v1.2.28 beta 2
What's Changed (compared to beta 1)
- Fix bug that caused false positives for stored imds
- dev & readme updates
v1.2.28 beta 1
What's Changed (compared to b0)
- pull 2025 ver of mssql database by @bitterpanda63 in #553
- Attack wave detection: fix bugs & report samples by @bitterpanda63 in #552
Contributors
bitterpanda63
Assets 2
v1.2.28-beta
What's Changed
- attack wave detection
- private ip check now uses IPMatcher
- minor improvements in event reporting