├── .cursor └── rules │ ├── 00-maintenance.mdc │ ├── 10-testing.mdc │ └── 12-python.mdc ├── .dockerignore ├── .editorconfig ├── .github ├── FUNDING.yml └── workflows │ ├── dockerpublish.yml │ ├── pythonpackage.yml │ └── pythonpublish.yml ├── .gitignore ├── .readthedocs.yml ├── .vscode └── launch.json ├── AUTHORS ├── CHANGELOG.md ├── Dockerfile ├── ISSUE_ENV_ESCAPED_SEMICOLONS.md ├── LICENSE ├── MANIFEST.in ├── Makefile ├── README.RU.md ├── README.md ├── docs ├── en │ ├── configuration.md │ ├── index.md │ ├── plugins │ │ ├── add_header_content_type.md │ │ ├── addheadermultiline.md │ │ ├── addheaderredefinition.md │ │ ├── aliastraversal.md │ │ ├── allow_without_deny.md │ │ ├── default_server_flag.md │ │ ├── error_log_off.md │ │ ├── hash_without_default.md │ │ ├── hostspoofing.md │ │ ├── httpsplitting.md │ │ ├── if_is_evil.md │ │ ├── invalid_regex.md │ │ ├── low_keepalive_requests.md │ │ ├── origins.md │ │ ├── proxy_pass_normalized.md │ │ ├── regex_redos.md │ │ ├── resolver_external.md │ │ ├── return_bypasses_allow_deny.md │ │ ├── ssrf.md │ │ ├── try_files_is_evil_too.md │ │ ├── unanchored_regex.md │ │ ├── validreferers.md │ │ ├── version_disclosure.md │ │ └── worker_rlimit_nofile_vs_connections.md │ └── variables-dropins.md ├── extra │ └── redirect-en.js ├── gixy.png ├── logo.png ├── requirements.txt ├── ru │ ├── configuration.md │ ├── index.md │ ├── plugins │ │ ├── add_header_content_type.md │ │ ├── addheadermultiline.md │ │ ├── addheaderredefinition.md │ │ ├── aliastraversal.md │ │ ├── allow_without_deny.md │ │ ├── default_server_flag.md │ │ ├── error_log_off.md │ │ ├── hash_without_default.md │ │ ├── hostspoofing.md │ │ ├── httpsplitting.md │ │ ├── if_is_evil.md │ │ ├── origins.md │ │ ├── proxy_pass_normalized.md │ │ ├── regex_redos.md │ │ ├── resolver_external.md │ │ ├── return_bypasses_allow_deny.md │ │ ├── ssrf.md │ │ ├── unanchored_regex.md │ │ ├── validreferers.md │ │ ├── version_disclosure.md │ │ └── worker_rlimit_nofile_vs_connections.md │ └── variables-dropins.md └── zh │ ├── configuration.md │ ├── index.md │ ├── plugins │ ├── add_header_content_type.md │ ├── addheadermultiline.md │ ├── addheaderredefinition.md │ ├── aliastraversal.md │ ├── allow_without_deny.md │ ├── default_server_flag.md │ ├── error_log_off.md │ ├── hash_without_default.md │ ├── hostspoofing.md │ ├── httpsplitting.md │ ├── if_is_evil.md │ ├── origins.md │ ├── proxy_pass_normalized.md │ ├── regex_redos.md │ ├── resolver_external.md │ ├── return_bypasses_allow_deny.md │ ├── ssrf.md │ ├── unanchored_regex.md │ ├── validreferers.md │ └── version_disclosure.md │ └── variables-dropins.md ├── docs_includes ├── en │ └── snippets │ │ └── nginx-extras-cta.md ├── ru │ └── snippets │ │ └── nginx-extras-cta.md └── zh │ └── snippets │ └── nginx-extras-cta.md ├── gixy ├── __init__.py ├── __main__.py ├── cli │ ├── __init__.py │ ├── __main__.py │ ├── argparser.py │ └── main.py ├── core │ ├── __init__.py │ ├── builtin_variables.py │ ├── config.py │ ├── context.py │ ├── exceptions.py │ ├── issue.py │ ├── manager.py │ ├── plugins_manager.py │ ├── regexp.py │ ├── severity.py │ ├── sre_parse │ │ ├── __init__.py │ │ ├── sre_constants.py │ │ └── sre_parse.py │ ├── utils.py │ └── variable.py ├── directives │ ├── __init__.py │ ├── block.py │ └── directive.py ├── formatters │ ├── __init__.py │ ├── _jinja.py │ ├── base.py │ ├── console.py │ ├── json.py │ ├── rich_console.py │ ├── templates │ │ ├── console.j2 │ │ └── text.j2 │ └── text.py ├── parser │ ├── __init__.py │ ├── nginx_parser.py │ └── raw_parser.py ├── plugins │ ├── __init__.py │ ├── add_header_content_type.py │ ├── add_header_multiline.py │ ├── add_header_redefinition.py │ ├── alias_traversal.py │ ├── allow_without_deny.py │ ├── default_server_flag.py │ ├── error_log_off.py │ ├── hash_without_default.py │ ├── host_spoofing.py │ ├── http_splitting.py │ ├── if_is_evil.py │ ├── invalid_regex.py │ ├── low_keepalive_requests.py │ ├── origins.py │ ├── plugin.py │ ├── proxy_pass_normalized.py │ ├── regex_redos.py │ ├── resolver_external.py │ ├── return_bypasses_allow_deny.py │ ├── ssrf.py │ ├── try_files_is_evil_too.py │ ├── unanchored_regex.py │ ├── valid_referers.py │ ├── version_disclosure.py │ └── worker_rlimit_nofile_vs_connections.py └── utils │ ├── __init__.py │ └── text.py ├── mkdocs.yml ├── nginx.conf ├── pytest.ini ├── requirements.dev.txt ├── requirements.txt ├── setup.py ├── tests ├── __init__.py ├── cli │ ├── __init__.py │ └── test_cli.py ├── core │ ├── __init__.py │ ├── test_context.py │ ├── test_regexp.py │ └── test_variable.py ├── directives │ ├── __init__.py │ ├── test_block.py │ └── test_directive.py ├── formatters │ ├── __init__.py │ └── test_rich_console.py ├── integration │ ├── __init__.py │ ├── test_real_configs.py │ └── wordpress_production.conf ├── parser │ ├── __init__.py │ ├── test_nginx_parser.py │ ├── test_raw_parser.py │ ├── test_raw_parser_minimal.py │ └── test_sre_parse.py ├── plugins │ ├── __init__.py │ ├── simply │ │ ├── add_header_content_type │ │ │ ├── add_header_content_type.conf │ │ │ ├── add_header_content_type_fp.conf │ │ │ ├── fastcgi_hide_header_fp.conf │ │ │ ├── proxy_hide_header_fp.conf │ │ │ ├── proxy_hide_header_nested_fp.conf │ │ │ └── uwsgi_hide_header_fp.conf │ │ ├── add_header_multiline │ │ │ ├── add_header.conf │ │ │ ├── add_header_fp.conf │ │ │ ├── config.json │ │ │ ├── more_set_headers.conf │ │ │ ├── more_set_headers_fp.conf │ │ │ ├── more_set_headers_multiple.conf │ │ │ ├── more_set_headers_replace.conf │ │ │ ├── more_set_headers_replace_fp.conf │ │ │ ├── more_set_headers_status_fp.conf │ │ │ └── more_set_headers_type_fp.conf │ │ ├── add_header_redefinition │ │ │ ├── config.json │ │ │ ├── duplicate_fp.conf │ │ │ ├── header_inherit_on_fp.conf │ │ │ ├── if_replaces.conf │ │ │ ├── location_replaces.conf │ │ │ ├── nested_block.conf │ │ │ ├── non_block_fp.conf │ │ │ ├── not_secure_dropped.conf │ │ │ ├── not_secure_outer.conf │ │ │ └── step_replaces.conf │ │ ├── alias_traversal │ │ │ ├── config.json │ │ │ ├── nested.conf │ │ │ ├── nested_fp.conf │ │ │ ├── not_slashed_alias.conf │ │ │ ├── not_slashed_alias_fp.conf │ │ │ ├── regex.conf │ │ │ ├── regex_2.conf │ │ │ ├── regex_2_fp.conf │ │ │ ├── regex_3.conf │ │ │ ├── regex_3_fp.conf │ │ │ ├── regex_4.conf │ │ │ ├── regex_4_fp.conf │ │ │ ├── regex_5.conf │ │ │ ├── regex_6.conf │ │ │ ├── regex_fp.conf │ │ │ ├── simple.conf │ │ │ ├── simple_fp.conf │ │ │ ├── slashed_alias.conf │ │ │ └── slashed_alias_fp.conf │ │ ├── allow_without_deny │ │ │ ├── allow_without_deny.conf │ │ │ ├── allow_without_deny_dump.conf │ │ │ ├── allow_without_deny_dump_fp.conf │ │ │ ├── allow_without_deny_fp.conf │ │ │ ├── deny.inc │ │ │ └── include_and_deny_fp.conf │ │ ├── default_server_flag │ │ │ ├── ambiguous_with_default_fp.conf │ │ │ ├── ambiguous_with_upstream_server.conf │ │ │ ├── ambiguous_without_default.conf │ │ │ └── config.json │ │ ├── error_log_off │ │ │ ├── error_log_off.conf │ │ │ └── error_log_off_fp.conf │ │ ├── hash_without_default │ │ │ ├── geo_no_default.conf │ │ │ ├── geo_no_default_fp.conf │ │ │ ├── map_no_default.conf │ │ │ ├── map_no_default_fp.conf │ │ │ └── map_single_entry_no_default_fp.conf │ │ ├── host_spoofing │ │ │ ├── config.json │ │ │ ├── http_fp.conf │ │ │ ├── http_host.conf │ │ │ ├── http_host_diff_case.conf │ │ │ └── some_arg.conf │ │ ├── http_splitting │ │ │ ├── add_header_uri.conf │ │ │ ├── config.json │ │ │ ├── dont_report_not_resolved_var_fp.conf │ │ │ ├── if_block.conf │ │ │ ├── if_block_fp.conf │ │ │ ├── mapped_value.conf │ │ │ ├── mapped_value_2.conf │ │ │ ├── mapped_value_3.conf │ │ │ ├── mapped_value_3_fp.conf │ │ │ ├── mapped_value_4.conf │ │ │ ├── mapped_value_4_fp.conf │ │ │ ├── mapped_value_fp.conf │ │ │ ├── mapped_value_with_set.conf │ │ │ ├── proxy_from_location_var.conf │ │ │ ├── proxy_from_location_var_var.conf │ │ │ ├── proxy_from_location_var_var_fp.conf │ │ │ ├── proxy_from_location_var_var_var.conf │ │ │ ├── proxy_pass_cr_fp.conf │ │ │ ├── proxy_pass_ducument_uri.conf │ │ │ ├── proxy_pass_lf.conf │ │ │ ├── proxy_set_header_ducument_uri.conf │ │ │ ├── return_403_fp.conf │ │ │ ├── return_request_uri_fp.conf │ │ │ ├── rewrite_extract_fp.conf │ │ │ ├── rewrite_uri.conf │ │ │ └── rewrite_uri_after_var.conf │ │ ├── if_is_evil │ │ │ ├── config.json │ │ │ ├── if_is_evil_add_header.conf │ │ │ ├── if_is_evil_break.conf │ │ │ ├── if_is_evil_fp.conf │ │ │ ├── if_is_evil_last_fp.conf │ │ │ ├── if_is_evil_permanent_fp.conf │ │ │ └── if_is_evil_redirect_fp.conf │ │ ├── invalid_regex │ │ │ ├── if_no_groups.conf │ │ │ ├── if_valid_group_fp.conf │ │ │ ├── multiple_groups_fp.conf │ │ │ ├── no_groups.conf │ │ │ ├── no_refs_fp.conf │ │ │ ├── valid_group_fp.conf │ │ │ └── wrong_group.conf │ │ ├── low_keepalive_requests │ │ │ ├── low_keepalive_requests.conf │ │ │ └── low_keepalive_requests_fp.conf │ │ ├── origins │ │ │ ├── config.json │ │ │ ├── map_origin_allowlist.conf │ │ │ ├── map_origin_allowlist_fp.conf │ │ │ ├── metrika.conf │ │ │ ├── more_origins_1.conf │ │ │ ├── more_origins_10.conf │ │ │ ├── more_origins_11_fp.conf │ │ │ ├── more_origins_12.conf │ │ │ ├── more_origins_13.conf │ │ │ ├── more_origins_14.conf │ │ │ ├── more_origins_15.conf │ │ │ ├── more_origins_16.conf │ │ │ ├── more_origins_2.conf │ │ │ ├── more_origins_3.conf │ │ │ ├── more_origins_4.conf │ │ │ ├── more_origins_5.conf │ │ │ ├── more_origins_6.conf │ │ │ ├── more_origins_7.conf │ │ │ ├── more_origins_8.conf │ │ │ ├── more_origins_9.conf │ │ │ ├── origin_fp.conf │ │ │ ├── origin_https.conf │ │ │ ├── origin_https_fp.conf │ │ │ ├── origin_path.conf │ │ │ ├── origin_too_permissive.conf │ │ │ ├── origin_w_slash.conf │ │ │ ├── origin_w_slash_and_hash.conf │ │ │ ├── origin_wo_slash.conf │ │ │ ├── referer.conf │ │ │ ├── referer_fp.conf │ │ │ ├── referer_subdomain.conf │ │ │ ├── referer_subdomain_fp.conf │ │ │ ├── referrer_double_r.conf │ │ │ ├── safe_origin.conf │ │ │ ├── safe_origin_2_fp.conf │ │ │ ├── structure_dot.conf │ │ │ ├── structure_fp.conf │ │ │ ├── structure_prefix.conf │ │ │ ├── structure_suffix.conf │ │ │ ├── unsafe_origin.conf │ │ │ ├── unsafe_origin_1.conf │ │ │ ├── unsafe_origin_2.conf │ │ │ └── webvisor.conf │ │ ├── proxy_pass_normalized │ │ │ ├── exact_location_with_uri_fp.conf │ │ │ ├── missing_variable.conf │ │ │ ├── missing_variable_fp.conf │ │ │ ├── missing_variable_in_if.conf │ │ │ ├── missing_variable_in_if_fp.conf │ │ │ ├── missing_variable_in_limit_except.conf │ │ │ ├── missing_variable_in_limit_except_fp.conf │ │ │ ├── missing_variable_nopath.conf │ │ │ ├── missing_variable_nopath_fp.conf │ │ │ ├── proxy_pass_path.conf │ │ │ ├── proxy_pass_path_fp.conf │ │ │ ├── proxy_pass_socket_fp.conf │ │ │ ├── proxy_pass_socket_with_path.conf │ │ │ ├── proxy_pass_var_fp.conf │ │ │ ├── rewrite_with_return_fp.conf │ │ │ ├── stream_fp.conf │ │ │ ├── variable.conf │ │ │ └── variable_fp.conf │ │ ├── regex_redos │ │ │ ├── adjacent_quantifiers.conf │ │ │ ├── bounded_quantifier_fp.conf │ │ │ ├── dot_overlap.conf │ │ │ ├── exact_location_fp.conf │ │ │ ├── if_nested.conf │ │ │ ├── nested_quantifier_group.conf │ │ │ ├── nested_quantifier_location.conf │ │ │ ├── nested_star_plus.conf │ │ │ ├── non_overlapping_fp.conf │ │ │ ├── overlapping_alternatives.conf │ │ │ ├── prefix_location_fp.conf │ │ │ ├── rewrite_nested.conf │ │ │ ├── simple_charclass_fp.conf │ │ │ └── single_quantifier_fp.conf │ │ ├── resolver_external │ │ │ ├── resolver_external.conf │ │ │ ├── resolver_external_fp.conf │ │ │ ├── resolver_link_local_fp.conf │ │ │ ├── resolver_local_fp.conf │ │ │ ├── resolver_local_internal_fp.conf │ │ │ ├── resolver_local_ipv6_fp.conf │ │ │ ├── resolver_local_ipv6_with_port_fp.conf │ │ │ └── resolver_more_local_ipv6_fp.conf │ │ ├── return_bypasses_allow_deny │ │ │ ├── same_level.conf │ │ │ ├── same_level_fp.conf │ │ │ ├── same_next_level.conf │ │ │ └── same_next_level_fp.conf │ │ ├── rewrite_with_return.conf │ │ ├── ssrf │ │ │ ├── config.json │ │ │ ├── have_internal_fp.conf │ │ │ ├── host_w_const_start.conf │ │ │ ├── host_w_const_start_arg.conf │ │ │ ├── mapped_value.conf │ │ │ ├── not_host_var_fp.conf │ │ │ ├── request_uri_fp.conf │ │ │ ├── request_uri_var_fp.conf │ │ │ ├── scheme_var.conf │ │ │ ├── single_var.conf │ │ │ ├── used_arg.conf │ │ │ ├── vars_from_loc.conf │ │ │ └── with_const_scheme.conf │ │ ├── try_files_is_evil_too │ │ │ ├── config.json │ │ │ ├── try_files_is_evil_too.conf │ │ │ ├── try_files_is_evil_too_cache_none.conf │ │ │ └── try_files_is_evil_too_fp.conf │ │ ├── unanchored_regex │ │ │ ├── unanchored_regex.conf │ │ │ └── unanchored_regex_fp.conf │ │ ├── valid_referers │ │ │ ├── config.json │ │ │ ├── none_first.conf │ │ │ ├── none_last.conf │ │ │ ├── none_middle.conf │ │ │ └── wo_none_fp.conf │ │ ├── version_disclosure │ │ │ ├── server_tokens_off_fp.conf │ │ │ └── server_tokens_on.conf │ │ └── worker_rlimit_nofile_vs_connections │ │ │ ├── worker_rlimit_nofile_vs_connections_fp.conf │ │ │ ├── worker_rlimit_nofile_vs_connections_missing.conf │ │ │ └── worker_rlimit_nofile_vs_connections_too_low.conf │ ├── test_add_header_multiline_none_value.py │ ├── test_redos_analyzer.py │ ├── test_simply.py │ └── test_version_disclosure_full_config.py └── utils.py └── tox.ini /.cursor/rules/00-maintenance.mdc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/.cursor/rules/00-maintenance.mdc -------------------------------------------------------------------------------- /.cursor/rules/10-testing.mdc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/.cursor/rules/10-testing.mdc -------------------------------------------------------------------------------- /.cursor/rules/12-python.mdc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/.cursor/rules/12-python.mdc -------------------------------------------------------------------------------- /.dockerignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/.dockerignore -------------------------------------------------------------------------------- /.editorconfig: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/.editorconfig -------------------------------------------------------------------------------- /.github/FUNDING.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/.github/FUNDING.yml -------------------------------------------------------------------------------- /.github/workflows/dockerpublish.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/.github/workflows/dockerpublish.yml -------------------------------------------------------------------------------- /.github/workflows/pythonpackage.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/.github/workflows/pythonpackage.yml -------------------------------------------------------------------------------- /.github/workflows/pythonpublish.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/.github/workflows/pythonpublish.yml -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/.gitignore -------------------------------------------------------------------------------- /.readthedocs.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/.readthedocs.yml -------------------------------------------------------------------------------- /.vscode/launch.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/.vscode/launch.json -------------------------------------------------------------------------------- /AUTHORS: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/AUTHORS -------------------------------------------------------------------------------- /CHANGELOG.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/CHANGELOG.md -------------------------------------------------------------------------------- /Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/Dockerfile -------------------------------------------------------------------------------- /ISSUE_ENV_ESCAPED_SEMICOLONS.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/ISSUE_ENV_ESCAPED_SEMICOLONS.md -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/LICENSE -------------------------------------------------------------------------------- /MANIFEST.in: -------------------------------------------------------------------------------- 1 | include gixy/formatters/templates/* 2 | graft tests 3 | -------------------------------------------------------------------------------- /Makefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/Makefile -------------------------------------------------------------------------------- /README.RU.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/README.RU.md -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/README.md -------------------------------------------------------------------------------- /docs/en/configuration.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/en/configuration.md -------------------------------------------------------------------------------- /docs/en/index.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/en/index.md -------------------------------------------------------------------------------- /docs/en/plugins/add_header_content_type.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/en/plugins/add_header_content_type.md -------------------------------------------------------------------------------- /docs/en/plugins/addheadermultiline.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/en/plugins/addheadermultiline.md -------------------------------------------------------------------------------- /docs/en/plugins/addheaderredefinition.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/en/plugins/addheaderredefinition.md -------------------------------------------------------------------------------- /docs/en/plugins/aliastraversal.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/en/plugins/aliastraversal.md -------------------------------------------------------------------------------- /docs/en/plugins/allow_without_deny.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/en/plugins/allow_without_deny.md -------------------------------------------------------------------------------- /docs/en/plugins/default_server_flag.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/en/plugins/default_server_flag.md -------------------------------------------------------------------------------- /docs/en/plugins/error_log_off.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/en/plugins/error_log_off.md -------------------------------------------------------------------------------- /docs/en/plugins/hash_without_default.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/en/plugins/hash_without_default.md -------------------------------------------------------------------------------- /docs/en/plugins/hostspoofing.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/en/plugins/hostspoofing.md -------------------------------------------------------------------------------- /docs/en/plugins/httpsplitting.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/en/plugins/httpsplitting.md -------------------------------------------------------------------------------- /docs/en/plugins/if_is_evil.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/en/plugins/if_is_evil.md -------------------------------------------------------------------------------- /docs/en/plugins/invalid_regex.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/en/plugins/invalid_regex.md -------------------------------------------------------------------------------- /docs/en/plugins/low_keepalive_requests.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/en/plugins/low_keepalive_requests.md -------------------------------------------------------------------------------- /docs/en/plugins/origins.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/en/plugins/origins.md -------------------------------------------------------------------------------- /docs/en/plugins/proxy_pass_normalized.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/en/plugins/proxy_pass_normalized.md -------------------------------------------------------------------------------- /docs/en/plugins/regex_redos.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/en/plugins/regex_redos.md -------------------------------------------------------------------------------- /docs/en/plugins/resolver_external.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/en/plugins/resolver_external.md -------------------------------------------------------------------------------- /docs/en/plugins/return_bypasses_allow_deny.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/en/plugins/return_bypasses_allow_deny.md -------------------------------------------------------------------------------- /docs/en/plugins/ssrf.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/en/plugins/ssrf.md -------------------------------------------------------------------------------- /docs/en/plugins/try_files_is_evil_too.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/en/plugins/try_files_is_evil_too.md -------------------------------------------------------------------------------- /docs/en/plugins/unanchored_regex.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/en/plugins/unanchored_regex.md -------------------------------------------------------------------------------- /docs/en/plugins/validreferers.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/en/plugins/validreferers.md -------------------------------------------------------------------------------- /docs/en/plugins/version_disclosure.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/en/plugins/version_disclosure.md -------------------------------------------------------------------------------- /docs/en/plugins/worker_rlimit_nofile_vs_connections.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/en/plugins/worker_rlimit_nofile_vs_connections.md -------------------------------------------------------------------------------- /docs/en/variables-dropins.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/en/variables-dropins.md -------------------------------------------------------------------------------- /docs/extra/redirect-en.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/extra/redirect-en.js -------------------------------------------------------------------------------- /docs/gixy.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/gixy.png -------------------------------------------------------------------------------- /docs/logo.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/logo.png -------------------------------------------------------------------------------- /docs/requirements.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/requirements.txt -------------------------------------------------------------------------------- /docs/ru/configuration.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/ru/configuration.md -------------------------------------------------------------------------------- /docs/ru/index.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/ru/index.md -------------------------------------------------------------------------------- /docs/ru/plugins/add_header_content_type.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/ru/plugins/add_header_content_type.md -------------------------------------------------------------------------------- /docs/ru/plugins/addheadermultiline.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/ru/plugins/addheadermultiline.md -------------------------------------------------------------------------------- /docs/ru/plugins/addheaderredefinition.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/ru/plugins/addheaderredefinition.md -------------------------------------------------------------------------------- /docs/ru/plugins/aliastraversal.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/ru/plugins/aliastraversal.md -------------------------------------------------------------------------------- /docs/ru/plugins/allow_without_deny.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/ru/plugins/allow_without_deny.md -------------------------------------------------------------------------------- /docs/ru/plugins/default_server_flag.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/ru/plugins/default_server_flag.md -------------------------------------------------------------------------------- /docs/ru/plugins/error_log_off.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/ru/plugins/error_log_off.md -------------------------------------------------------------------------------- /docs/ru/plugins/hash_without_default.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/ru/plugins/hash_without_default.md -------------------------------------------------------------------------------- /docs/ru/plugins/hostspoofing.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/ru/plugins/hostspoofing.md -------------------------------------------------------------------------------- /docs/ru/plugins/httpsplitting.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/ru/plugins/httpsplitting.md -------------------------------------------------------------------------------- /docs/ru/plugins/if_is_evil.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/ru/plugins/if_is_evil.md -------------------------------------------------------------------------------- /docs/ru/plugins/origins.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/ru/plugins/origins.md -------------------------------------------------------------------------------- /docs/ru/plugins/proxy_pass_normalized.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/ru/plugins/proxy_pass_normalized.md -------------------------------------------------------------------------------- /docs/ru/plugins/regex_redos.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/ru/plugins/regex_redos.md -------------------------------------------------------------------------------- /docs/ru/plugins/resolver_external.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/ru/plugins/resolver_external.md -------------------------------------------------------------------------------- /docs/ru/plugins/return_bypasses_allow_deny.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/ru/plugins/return_bypasses_allow_deny.md -------------------------------------------------------------------------------- /docs/ru/plugins/ssrf.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/ru/plugins/ssrf.md -------------------------------------------------------------------------------- /docs/ru/plugins/unanchored_regex.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/ru/plugins/unanchored_regex.md -------------------------------------------------------------------------------- /docs/ru/plugins/validreferers.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/ru/plugins/validreferers.md -------------------------------------------------------------------------------- /docs/ru/plugins/version_disclosure.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/ru/plugins/version_disclosure.md -------------------------------------------------------------------------------- /docs/ru/plugins/worker_rlimit_nofile_vs_connections.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/ru/plugins/worker_rlimit_nofile_vs_connections.md -------------------------------------------------------------------------------- /docs/ru/variables-dropins.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/ru/variables-dropins.md -------------------------------------------------------------------------------- /docs/zh/configuration.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/zh/configuration.md -------------------------------------------------------------------------------- /docs/zh/index.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/zh/index.md -------------------------------------------------------------------------------- /docs/zh/plugins/add_header_content_type.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/zh/plugins/add_header_content_type.md -------------------------------------------------------------------------------- /docs/zh/plugins/addheadermultiline.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/zh/plugins/addheadermultiline.md -------------------------------------------------------------------------------- /docs/zh/plugins/addheaderredefinition.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/zh/plugins/addheaderredefinition.md -------------------------------------------------------------------------------- /docs/zh/plugins/aliastraversal.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/zh/plugins/aliastraversal.md -------------------------------------------------------------------------------- /docs/zh/plugins/allow_without_deny.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/zh/plugins/allow_without_deny.md -------------------------------------------------------------------------------- /docs/zh/plugins/default_server_flag.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/zh/plugins/default_server_flag.md -------------------------------------------------------------------------------- /docs/zh/plugins/error_log_off.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/zh/plugins/error_log_off.md -------------------------------------------------------------------------------- /docs/zh/plugins/hash_without_default.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/zh/plugins/hash_without_default.md -------------------------------------------------------------------------------- /docs/zh/plugins/hostspoofing.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/zh/plugins/hostspoofing.md -------------------------------------------------------------------------------- /docs/zh/plugins/httpsplitting.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/zh/plugins/httpsplitting.md -------------------------------------------------------------------------------- /docs/zh/plugins/if_is_evil.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/zh/plugins/if_is_evil.md -------------------------------------------------------------------------------- /docs/zh/plugins/origins.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/zh/plugins/origins.md -------------------------------------------------------------------------------- /docs/zh/plugins/proxy_pass_normalized.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/zh/plugins/proxy_pass_normalized.md -------------------------------------------------------------------------------- /docs/zh/plugins/regex_redos.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/zh/plugins/regex_redos.md -------------------------------------------------------------------------------- /docs/zh/plugins/resolver_external.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/zh/plugins/resolver_external.md -------------------------------------------------------------------------------- /docs/zh/plugins/return_bypasses_allow_deny.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/zh/plugins/return_bypasses_allow_deny.md -------------------------------------------------------------------------------- /docs/zh/plugins/ssrf.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/zh/plugins/ssrf.md -------------------------------------------------------------------------------- /docs/zh/plugins/unanchored_regex.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/zh/plugins/unanchored_regex.md -------------------------------------------------------------------------------- /docs/zh/plugins/validreferers.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/zh/plugins/validreferers.md -------------------------------------------------------------------------------- /docs/zh/plugins/version_disclosure.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/zh/plugins/version_disclosure.md -------------------------------------------------------------------------------- /docs/zh/variables-dropins.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs/zh/variables-dropins.md -------------------------------------------------------------------------------- /docs_includes/en/snippets/nginx-extras-cta.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs_includes/en/snippets/nginx-extras-cta.md -------------------------------------------------------------------------------- /docs_includes/ru/snippets/nginx-extras-cta.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs_includes/ru/snippets/nginx-extras-cta.md -------------------------------------------------------------------------------- /docs_includes/zh/snippets/nginx-extras-cta.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/docs_includes/zh/snippets/nginx-extras-cta.md -------------------------------------------------------------------------------- /gixy/__init__.py: -------------------------------------------------------------------------------- 1 | # flake8: noqa 2 | 3 | from gixy.core import severity 4 | 5 | version = "0.2.14" 6 | -------------------------------------------------------------------------------- /gixy/__main__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/__main__.py -------------------------------------------------------------------------------- /gixy/cli/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /gixy/cli/__main__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/cli/__main__.py -------------------------------------------------------------------------------- /gixy/cli/argparser.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/cli/argparser.py -------------------------------------------------------------------------------- /gixy/cli/main.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/cli/main.py -------------------------------------------------------------------------------- /gixy/core/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /gixy/core/builtin_variables.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/core/builtin_variables.py -------------------------------------------------------------------------------- /gixy/core/config.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/core/config.py -------------------------------------------------------------------------------- /gixy/core/context.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/core/context.py -------------------------------------------------------------------------------- /gixy/core/exceptions.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/core/exceptions.py -------------------------------------------------------------------------------- /gixy/core/issue.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/core/issue.py -------------------------------------------------------------------------------- /gixy/core/manager.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/core/manager.py -------------------------------------------------------------------------------- /gixy/core/plugins_manager.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/core/plugins_manager.py -------------------------------------------------------------------------------- /gixy/core/regexp.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/core/regexp.py -------------------------------------------------------------------------------- /gixy/core/severity.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/core/severity.py -------------------------------------------------------------------------------- /gixy/core/sre_parse/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /gixy/core/sre_parse/sre_constants.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/core/sre_parse/sre_constants.py -------------------------------------------------------------------------------- /gixy/core/sre_parse/sre_parse.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/core/sre_parse/sre_parse.py -------------------------------------------------------------------------------- /gixy/core/utils.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/core/utils.py -------------------------------------------------------------------------------- /gixy/core/variable.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/core/variable.py -------------------------------------------------------------------------------- /gixy/directives/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/directives/__init__.py -------------------------------------------------------------------------------- /gixy/directives/block.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/directives/block.py -------------------------------------------------------------------------------- /gixy/directives/directive.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/directives/directive.py -------------------------------------------------------------------------------- /gixy/formatters/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/formatters/__init__.py -------------------------------------------------------------------------------- /gixy/formatters/_jinja.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/formatters/_jinja.py -------------------------------------------------------------------------------- /gixy/formatters/base.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/formatters/base.py -------------------------------------------------------------------------------- /gixy/formatters/console.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/formatters/console.py -------------------------------------------------------------------------------- /gixy/formatters/json.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/formatters/json.py -------------------------------------------------------------------------------- /gixy/formatters/rich_console.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/formatters/rich_console.py -------------------------------------------------------------------------------- /gixy/formatters/templates/console.j2: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/formatters/templates/console.j2 -------------------------------------------------------------------------------- /gixy/formatters/templates/text.j2: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/formatters/templates/text.j2 -------------------------------------------------------------------------------- /gixy/formatters/text.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/formatters/text.py -------------------------------------------------------------------------------- /gixy/parser/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /gixy/parser/nginx_parser.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/parser/nginx_parser.py -------------------------------------------------------------------------------- /gixy/parser/raw_parser.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/parser/raw_parser.py -------------------------------------------------------------------------------- /gixy/plugins/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /gixy/plugins/add_header_content_type.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/plugins/add_header_content_type.py -------------------------------------------------------------------------------- /gixy/plugins/add_header_multiline.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/plugins/add_header_multiline.py -------------------------------------------------------------------------------- /gixy/plugins/add_header_redefinition.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/plugins/add_header_redefinition.py -------------------------------------------------------------------------------- /gixy/plugins/alias_traversal.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/plugins/alias_traversal.py -------------------------------------------------------------------------------- /gixy/plugins/allow_without_deny.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/plugins/allow_without_deny.py -------------------------------------------------------------------------------- /gixy/plugins/default_server_flag.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/plugins/default_server_flag.py -------------------------------------------------------------------------------- /gixy/plugins/error_log_off.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/plugins/error_log_off.py -------------------------------------------------------------------------------- /gixy/plugins/hash_without_default.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/plugins/hash_without_default.py -------------------------------------------------------------------------------- /gixy/plugins/host_spoofing.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/plugins/host_spoofing.py -------------------------------------------------------------------------------- /gixy/plugins/http_splitting.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/plugins/http_splitting.py -------------------------------------------------------------------------------- /gixy/plugins/if_is_evil.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/plugins/if_is_evil.py -------------------------------------------------------------------------------- /gixy/plugins/invalid_regex.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/plugins/invalid_regex.py -------------------------------------------------------------------------------- /gixy/plugins/low_keepalive_requests.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/plugins/low_keepalive_requests.py -------------------------------------------------------------------------------- /gixy/plugins/origins.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/plugins/origins.py -------------------------------------------------------------------------------- /gixy/plugins/plugin.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/plugins/plugin.py -------------------------------------------------------------------------------- /gixy/plugins/proxy_pass_normalized.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/plugins/proxy_pass_normalized.py -------------------------------------------------------------------------------- /gixy/plugins/regex_redos.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/plugins/regex_redos.py -------------------------------------------------------------------------------- /gixy/plugins/resolver_external.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/plugins/resolver_external.py -------------------------------------------------------------------------------- /gixy/plugins/return_bypasses_allow_deny.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/plugins/return_bypasses_allow_deny.py -------------------------------------------------------------------------------- /gixy/plugins/ssrf.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/plugins/ssrf.py -------------------------------------------------------------------------------- /gixy/plugins/try_files_is_evil_too.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/plugins/try_files_is_evil_too.py -------------------------------------------------------------------------------- /gixy/plugins/unanchored_regex.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/plugins/unanchored_regex.py -------------------------------------------------------------------------------- /gixy/plugins/valid_referers.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/plugins/valid_referers.py -------------------------------------------------------------------------------- /gixy/plugins/version_disclosure.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/plugins/version_disclosure.py -------------------------------------------------------------------------------- /gixy/plugins/worker_rlimit_nofile_vs_connections.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/plugins/worker_rlimit_nofile_vs_connections.py -------------------------------------------------------------------------------- /gixy/utils/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /gixy/utils/text.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/gixy/utils/text.py -------------------------------------------------------------------------------- /mkdocs.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/mkdocs.yml -------------------------------------------------------------------------------- /nginx.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/nginx.conf -------------------------------------------------------------------------------- /pytest.ini: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/pytest.ini -------------------------------------------------------------------------------- /requirements.dev.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/requirements.dev.txt -------------------------------------------------------------------------------- /requirements.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/requirements.txt -------------------------------------------------------------------------------- /setup.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/setup.py -------------------------------------------------------------------------------- /tests/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /tests/cli/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /tests/cli/test_cli.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/cli/test_cli.py -------------------------------------------------------------------------------- /tests/core/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /tests/core/test_context.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/core/test_context.py -------------------------------------------------------------------------------- /tests/core/test_regexp.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/core/test_regexp.py -------------------------------------------------------------------------------- /tests/core/test_variable.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/core/test_variable.py -------------------------------------------------------------------------------- /tests/directives/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /tests/directives/test_block.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/directives/test_block.py -------------------------------------------------------------------------------- /tests/directives/test_directive.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/directives/test_directive.py -------------------------------------------------------------------------------- /tests/formatters/__init__.py: -------------------------------------------------------------------------------- 1 | # Formatter tests 2 | 3 | -------------------------------------------------------------------------------- /tests/formatters/test_rich_console.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/formatters/test_rich_console.py -------------------------------------------------------------------------------- /tests/integration/__init__.py: -------------------------------------------------------------------------------- 1 | # Integration tests package 2 | 3 | -------------------------------------------------------------------------------- /tests/integration/test_real_configs.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/integration/test_real_configs.py -------------------------------------------------------------------------------- /tests/integration/wordpress_production.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/integration/wordpress_production.conf -------------------------------------------------------------------------------- /tests/parser/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /tests/parser/test_nginx_parser.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/parser/test_nginx_parser.py -------------------------------------------------------------------------------- /tests/parser/test_raw_parser.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/parser/test_raw_parser.py -------------------------------------------------------------------------------- /tests/parser/test_raw_parser_minimal.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/parser/test_raw_parser_minimal.py -------------------------------------------------------------------------------- /tests/parser/test_sre_parse.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/parser/test_sre_parse.py -------------------------------------------------------------------------------- /tests/plugins/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /tests/plugins/simply/add_header_content_type/add_header_content_type.conf: -------------------------------------------------------------------------------- 1 | add_header Content-Type text/plain; 2 | -------------------------------------------------------------------------------- /tests/plugins/simply/add_header_content_type/add_header_content_type_fp.conf: -------------------------------------------------------------------------------- 1 | add_header Something-Else text/plain; 2 | -------------------------------------------------------------------------------- /tests/plugins/simply/add_header_content_type/fastcgi_hide_header_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/add_header_content_type/fastcgi_hide_header_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/add_header_content_type/proxy_hide_header_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/add_header_content_type/proxy_hide_header_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/add_header_content_type/proxy_hide_header_nested_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/add_header_content_type/proxy_hide_header_nested_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/add_header_content_type/uwsgi_hide_header_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/add_header_content_type/uwsgi_hide_header_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/add_header_multiline/add_header.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/add_header_multiline/add_header.conf -------------------------------------------------------------------------------- /tests/plugins/simply/add_header_multiline/add_header_fp.conf: -------------------------------------------------------------------------------- 1 | add_header X-Foo foo; -------------------------------------------------------------------------------- /tests/plugins/simply/add_header_multiline/config.json: -------------------------------------------------------------------------------- 1 | { 2 | "severity": "LOW" 3 | } -------------------------------------------------------------------------------- /tests/plugins/simply/add_header_multiline/more_set_headers.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/add_header_multiline/more_set_headers.conf -------------------------------------------------------------------------------- /tests/plugins/simply/add_header_multiline/more_set_headers_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/add_header_multiline/more_set_headers_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/add_header_multiline/more_set_headers_multiple.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/add_header_multiline/more_set_headers_multiple.conf -------------------------------------------------------------------------------- /tests/plugins/simply/add_header_multiline/more_set_headers_replace.conf: -------------------------------------------------------------------------------- 1 | more_set_headers -r 'Foo: 2 | multiline'; -------------------------------------------------------------------------------- /tests/plugins/simply/add_header_multiline/more_set_headers_replace_fp.conf: -------------------------------------------------------------------------------- 1 | more_set_headers -r 'Foo: multiline'; -------------------------------------------------------------------------------- /tests/plugins/simply/add_header_multiline/more_set_headers_status_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/add_header_multiline/more_set_headers_status_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/add_header_multiline/more_set_headers_type_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/add_header_multiline/more_set_headers_type_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/add_header_redefinition/config.json: -------------------------------------------------------------------------------- 1 | { 2 | "severity": ["LOW", "MEDIUM"] 3 | } 4 | -------------------------------------------------------------------------------- /tests/plugins/simply/add_header_redefinition/duplicate_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/add_header_redefinition/duplicate_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/add_header_redefinition/header_inherit_on_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/add_header_redefinition/header_inherit_on_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/add_header_redefinition/if_replaces.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/add_header_redefinition/if_replaces.conf -------------------------------------------------------------------------------- /tests/plugins/simply/add_header_redefinition/location_replaces.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/add_header_redefinition/location_replaces.conf -------------------------------------------------------------------------------- /tests/plugins/simply/add_header_redefinition/nested_block.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/add_header_redefinition/nested_block.conf -------------------------------------------------------------------------------- /tests/plugins/simply/add_header_redefinition/non_block_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/add_header_redefinition/non_block_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/add_header_redefinition/not_secure_dropped.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/add_header_redefinition/not_secure_dropped.conf -------------------------------------------------------------------------------- /tests/plugins/simply/add_header_redefinition/not_secure_outer.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/add_header_redefinition/not_secure_outer.conf -------------------------------------------------------------------------------- /tests/plugins/simply/add_header_redefinition/step_replaces.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/add_header_redefinition/step_replaces.conf -------------------------------------------------------------------------------- /tests/plugins/simply/alias_traversal/config.json: -------------------------------------------------------------------------------- 1 | { 2 | "severity": ["MEDIUM", "HIGH"] 3 | } 4 | -------------------------------------------------------------------------------- /tests/plugins/simply/alias_traversal/nested.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/alias_traversal/nested.conf -------------------------------------------------------------------------------- /tests/plugins/simply/alias_traversal/nested_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/alias_traversal/nested_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/alias_traversal/not_slashed_alias.conf: -------------------------------------------------------------------------------- 1 | location /files { 2 | alias /home; 3 | } 4 | -------------------------------------------------------------------------------- /tests/plugins/simply/alias_traversal/not_slashed_alias_fp.conf: -------------------------------------------------------------------------------- 1 | location /files/ { 2 | alias /home; 3 | } 4 | -------------------------------------------------------------------------------- /tests/plugins/simply/alias_traversal/regex.conf: -------------------------------------------------------------------------------- 1 | location ~ /images(.*) { 2 | alias /app/static/$1; 3 | } 4 | -------------------------------------------------------------------------------- /tests/plugins/simply/alias_traversal/regex_2.conf: -------------------------------------------------------------------------------- 1 | location ~ /images(.*) { 2 | alias /app/static$1; 3 | } 4 | -------------------------------------------------------------------------------- /tests/plugins/simply/alias_traversal/regex_2_fp.conf: -------------------------------------------------------------------------------- 1 | location ~ /images/(.*)$ { 2 | alias /app/static/$1; 3 | } 4 | -------------------------------------------------------------------------------- /tests/plugins/simply/alias_traversal/regex_3.conf: -------------------------------------------------------------------------------- 1 | location ~ /images(.*)/lol { 2 | alias /app/static/$1; 3 | } 4 | -------------------------------------------------------------------------------- /tests/plugins/simply/alias_traversal/regex_3_fp.conf: -------------------------------------------------------------------------------- 1 | location ~ /images(/.*) { 2 | alias /app/static$1; 3 | } 4 | -------------------------------------------------------------------------------- /tests/plugins/simply/alias_traversal/regex_4.conf: -------------------------------------------------------------------------------- 1 | location ~ /site/(.*) { 2 | alias /lol$1; 3 | } 4 | -------------------------------------------------------------------------------- /tests/plugins/simply/alias_traversal/regex_4_fp.conf: -------------------------------------------------------------------------------- 1 | location ~ /images([^\.]*) { 2 | alias /app/static/$1; 3 | } 4 | -------------------------------------------------------------------------------- /tests/plugins/simply/alias_traversal/regex_5.conf: -------------------------------------------------------------------------------- 1 | location ~ /site(.*) { 2 | alias /lol$1; 3 | } 4 | -------------------------------------------------------------------------------- /tests/plugins/simply/alias_traversal/regex_6.conf: -------------------------------------------------------------------------------- 1 | location ~ /site(2)(.*) { 2 | alias /lol/$2; 3 | } 4 | -------------------------------------------------------------------------------- /tests/plugins/simply/alias_traversal/regex_fp.conf: -------------------------------------------------------------------------------- 1 | location ~* ^/files-(en|fr|es) { 2 | alias /home/; 3 | } 4 | -------------------------------------------------------------------------------- /tests/plugins/simply/alias_traversal/simple.conf: -------------------------------------------------------------------------------- 1 | location /files { 2 | alias /home/; 3 | } 4 | -------------------------------------------------------------------------------- /tests/plugins/simply/alias_traversal/simple_fp.conf: -------------------------------------------------------------------------------- 1 | location /files/ { 2 | alias /home/; 3 | } 4 | -------------------------------------------------------------------------------- /tests/plugins/simply/alias_traversal/slashed_alias.conf: -------------------------------------------------------------------------------- 1 | location /files { 2 | alias /home/; 3 | } 4 | -------------------------------------------------------------------------------- /tests/plugins/simply/alias_traversal/slashed_alias_fp.conf: -------------------------------------------------------------------------------- 1 | location /files/ { 2 | alias /home/; 3 | } 4 | -------------------------------------------------------------------------------- /tests/plugins/simply/allow_without_deny/allow_without_deny.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/allow_without_deny/allow_without_deny.conf -------------------------------------------------------------------------------- /tests/plugins/simply/allow_without_deny/allow_without_deny_dump.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/allow_without_deny/allow_without_deny_dump.conf -------------------------------------------------------------------------------- /tests/plugins/simply/allow_without_deny/allow_without_deny_dump_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/allow_without_deny/allow_without_deny_dump_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/allow_without_deny/allow_without_deny_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/allow_without_deny/allow_without_deny_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/allow_without_deny/deny.inc: -------------------------------------------------------------------------------- 1 | allow 127.0.0.1; 2 | 3 | -------------------------------------------------------------------------------- /tests/plugins/simply/allow_without_deny/include_and_deny_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/allow_without_deny/include_and_deny_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/default_server_flag/ambiguous_with_default_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/default_server_flag/ambiguous_with_default_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/default_server_flag/ambiguous_with_upstream_server.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/default_server_flag/ambiguous_with_upstream_server.conf -------------------------------------------------------------------------------- /tests/plugins/simply/default_server_flag/ambiguous_without_default.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/default_server_flag/ambiguous_without_default.conf -------------------------------------------------------------------------------- /tests/plugins/simply/default_server_flag/config.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/default_server_flag/config.json -------------------------------------------------------------------------------- /tests/plugins/simply/error_log_off/error_log_off.conf: -------------------------------------------------------------------------------- 1 | error_log off; 2 | -------------------------------------------------------------------------------- /tests/plugins/simply/error_log_off/error_log_off_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/error_log_off/error_log_off_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/hash_without_default/geo_no_default.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/hash_without_default/geo_no_default.conf -------------------------------------------------------------------------------- /tests/plugins/simply/hash_without_default/geo_no_default_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/hash_without_default/geo_no_default_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/hash_without_default/map_no_default.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/hash_without_default/map_no_default.conf -------------------------------------------------------------------------------- /tests/plugins/simply/hash_without_default/map_no_default_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/hash_without_default/map_no_default_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/hash_without_default/map_single_entry_no_default_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/hash_without_default/map_single_entry_no_default_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/host_spoofing/config.json: -------------------------------------------------------------------------------- 1 | { 2 | "severity": "MEDIUM" 3 | } -------------------------------------------------------------------------------- /tests/plugins/simply/host_spoofing/http_fp.conf: -------------------------------------------------------------------------------- 1 | proxy_set_header Host $host; -------------------------------------------------------------------------------- /tests/plugins/simply/host_spoofing/http_host.conf: -------------------------------------------------------------------------------- 1 | proxy_set_header Host $http_host; -------------------------------------------------------------------------------- /tests/plugins/simply/host_spoofing/http_host_diff_case.conf: -------------------------------------------------------------------------------- 1 | proxy_set_header HoSt $http_host; -------------------------------------------------------------------------------- /tests/plugins/simply/host_spoofing/some_arg.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/host_spoofing/some_arg.conf -------------------------------------------------------------------------------- /tests/plugins/simply/http_splitting/add_header_uri.conf: -------------------------------------------------------------------------------- 1 | add_header X-Uri $uri; -------------------------------------------------------------------------------- /tests/plugins/simply/http_splitting/config.json: -------------------------------------------------------------------------------- 1 | { 2 | "severity": "HIGH" 3 | } -------------------------------------------------------------------------------- /tests/plugins/simply/http_splitting/dont_report_not_resolved_var_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/http_splitting/dont_report_not_resolved_var_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/http_splitting/if_block.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/http_splitting/if_block.conf -------------------------------------------------------------------------------- /tests/plugins/simply/http_splitting/if_block_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/http_splitting/if_block_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/http_splitting/mapped_value.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/http_splitting/mapped_value.conf -------------------------------------------------------------------------------- /tests/plugins/simply/http_splitting/mapped_value_2.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/http_splitting/mapped_value_2.conf -------------------------------------------------------------------------------- /tests/plugins/simply/http_splitting/mapped_value_3.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/http_splitting/mapped_value_3.conf -------------------------------------------------------------------------------- /tests/plugins/simply/http_splitting/mapped_value_3_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/http_splitting/mapped_value_3_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/http_splitting/mapped_value_4.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/http_splitting/mapped_value_4.conf -------------------------------------------------------------------------------- /tests/plugins/simply/http_splitting/mapped_value_4_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/http_splitting/mapped_value_4_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/http_splitting/mapped_value_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/http_splitting/mapped_value_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/http_splitting/mapped_value_with_set.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/http_splitting/mapped_value_with_set.conf -------------------------------------------------------------------------------- /tests/plugins/simply/http_splitting/proxy_from_location_var.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/http_splitting/proxy_from_location_var.conf -------------------------------------------------------------------------------- /tests/plugins/simply/http_splitting/proxy_from_location_var_var.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/http_splitting/proxy_from_location_var_var.conf -------------------------------------------------------------------------------- /tests/plugins/simply/http_splitting/proxy_from_location_var_var_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/http_splitting/proxy_from_location_var_var_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/http_splitting/proxy_from_location_var_var_var.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/http_splitting/proxy_from_location_var_var_var.conf -------------------------------------------------------------------------------- /tests/plugins/simply/http_splitting/proxy_pass_cr_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/http_splitting/proxy_pass_cr_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/http_splitting/proxy_pass_ducument_uri.conf: -------------------------------------------------------------------------------- 1 | proxy_pass http://upstream$document_uri; -------------------------------------------------------------------------------- /tests/plugins/simply/http_splitting/proxy_pass_lf.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/http_splitting/proxy_pass_lf.conf -------------------------------------------------------------------------------- /tests/plugins/simply/http_splitting/proxy_set_header_ducument_uri.conf: -------------------------------------------------------------------------------- 1 | proxy_set_header "X-Original-Uri" $document_uri; -------------------------------------------------------------------------------- /tests/plugins/simply/http_splitting/return_403_fp.conf: -------------------------------------------------------------------------------- 1 | return 403; -------------------------------------------------------------------------------- /tests/plugins/simply/http_splitting/return_request_uri_fp.conf: -------------------------------------------------------------------------------- 1 | return 301 https://some$request_uri; -------------------------------------------------------------------------------- /tests/plugins/simply/http_splitting/rewrite_extract_fp.conf: -------------------------------------------------------------------------------- 1 | rewrite ^/proxy/(a|b)/(?\W*)$ http://storage/$path redirect; -------------------------------------------------------------------------------- /tests/plugins/simply/http_splitting/rewrite_uri.conf: -------------------------------------------------------------------------------- 1 | rewrite ^ http://some$uri; -------------------------------------------------------------------------------- /tests/plugins/simply/http_splitting/rewrite_uri_after_var.conf: -------------------------------------------------------------------------------- 1 | return 301 https://$host$uri; -------------------------------------------------------------------------------- /tests/plugins/simply/if_is_evil/config.json: -------------------------------------------------------------------------------- 1 | { 2 | "severity": "HIGH" 3 | } -------------------------------------------------------------------------------- /tests/plugins/simply/if_is_evil/if_is_evil_add_header.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/if_is_evil/if_is_evil_add_header.conf -------------------------------------------------------------------------------- /tests/plugins/simply/if_is_evil/if_is_evil_break.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/if_is_evil/if_is_evil_break.conf -------------------------------------------------------------------------------- /tests/plugins/simply/if_is_evil/if_is_evil_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/if_is_evil/if_is_evil_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/if_is_evil/if_is_evil_last_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/if_is_evil/if_is_evil_last_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/if_is_evil/if_is_evil_permanent_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/if_is_evil/if_is_evil_permanent_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/if_is_evil/if_is_evil_redirect_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/if_is_evil/if_is_evil_redirect_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/invalid_regex/if_no_groups.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/invalid_regex/if_no_groups.conf -------------------------------------------------------------------------------- /tests/plugins/simply/invalid_regex/if_valid_group_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/invalid_regex/if_valid_group_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/invalid_regex/multiple_groups_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/invalid_regex/multiple_groups_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/invalid_regex/no_groups.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/invalid_regex/no_groups.conf -------------------------------------------------------------------------------- /tests/plugins/simply/invalid_regex/no_refs_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/invalid_regex/no_refs_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/invalid_regex/valid_group_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/invalid_regex/valid_group_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/invalid_regex/wrong_group.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/invalid_regex/wrong_group.conf -------------------------------------------------------------------------------- /tests/plugins/simply/low_keepalive_requests/low_keepalive_requests.conf: -------------------------------------------------------------------------------- 1 | keepalive_requests 100; 2 | 3 | -------------------------------------------------------------------------------- /tests/plugins/simply/low_keepalive_requests/low_keepalive_requests_fp.conf: -------------------------------------------------------------------------------- 1 | keepalive_requests 1000; 2 | 3 | -------------------------------------------------------------------------------- /tests/plugins/simply/origins/config.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/config.json -------------------------------------------------------------------------------- /tests/plugins/simply/origins/map_origin_allowlist.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/map_origin_allowlist.conf -------------------------------------------------------------------------------- /tests/plugins/simply/origins/map_origin_allowlist_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/map_origin_allowlist_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/origins/metrika.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/metrika.conf -------------------------------------------------------------------------------- /tests/plugins/simply/origins/more_origins_1.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/more_origins_1.conf -------------------------------------------------------------------------------- /tests/plugins/simply/origins/more_origins_10.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/more_origins_10.conf -------------------------------------------------------------------------------- /tests/plugins/simply/origins/more_origins_11_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/more_origins_11_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/origins/more_origins_12.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/more_origins_12.conf -------------------------------------------------------------------------------- /tests/plugins/simply/origins/more_origins_13.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/more_origins_13.conf -------------------------------------------------------------------------------- /tests/plugins/simply/origins/more_origins_14.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/more_origins_14.conf -------------------------------------------------------------------------------- /tests/plugins/simply/origins/more_origins_15.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/more_origins_15.conf -------------------------------------------------------------------------------- /tests/plugins/simply/origins/more_origins_16.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/more_origins_16.conf -------------------------------------------------------------------------------- /tests/plugins/simply/origins/more_origins_2.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/more_origins_2.conf -------------------------------------------------------------------------------- /tests/plugins/simply/origins/more_origins_3.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/more_origins_3.conf -------------------------------------------------------------------------------- /tests/plugins/simply/origins/more_origins_4.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/more_origins_4.conf -------------------------------------------------------------------------------- /tests/plugins/simply/origins/more_origins_5.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/more_origins_5.conf -------------------------------------------------------------------------------- /tests/plugins/simply/origins/more_origins_6.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/more_origins_6.conf -------------------------------------------------------------------------------- /tests/plugins/simply/origins/more_origins_7.conf: -------------------------------------------------------------------------------- 1 | if ($http_referer !~ '^([^:/]+)?https?:\/\/yandex\.ru\/') { 2 | 3 | } 4 | -------------------------------------------------------------------------------- /tests/plugins/simply/origins/more_origins_8.conf: -------------------------------------------------------------------------------- 1 | if ($http_origin !~ 'yandex.ru') { 2 | 3 | } 4 | -------------------------------------------------------------------------------- /tests/plugins/simply/origins/more_origins_9.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/more_origins_9.conf -------------------------------------------------------------------------------- /tests/plugins/simply/origins/origin_fp.conf: -------------------------------------------------------------------------------- 1 | if ($http_origin !~ '^https?:\/\/l.o\.yandex\.ru$') { 2 | 3 | } 4 | -------------------------------------------------------------------------------- /tests/plugins/simply/origins/origin_https.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/origin_https.conf -------------------------------------------------------------------------------- /tests/plugins/simply/origins/origin_https_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/origin_https_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/origins/origin_path.conf: -------------------------------------------------------------------------------- 1 | if ($http_origin !~ '^https?:\/\/yandex.ru/$') { 2 | 3 | } 4 | -------------------------------------------------------------------------------- /tests/plugins/simply/origins/origin_too_permissive.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/origin_too_permissive.conf -------------------------------------------------------------------------------- /tests/plugins/simply/origins/origin_w_slash.conf: -------------------------------------------------------------------------------- 1 | if ($http_origin !~ '^https?:\/\/yandex\.ru/') { 2 | 3 | } -------------------------------------------------------------------------------- /tests/plugins/simply/origins/origin_w_slash_and_hash.conf: -------------------------------------------------------------------------------- 1 | if ($http_referer !~ '^https?:\/\/yandex\.ru/?cmd=huh#smth$') { 2 | 3 | } 4 | -------------------------------------------------------------------------------- /tests/plugins/simply/origins/origin_wo_slash.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/origin_wo_slash.conf -------------------------------------------------------------------------------- /tests/plugins/simply/origins/referer.conf: -------------------------------------------------------------------------------- 1 | if ($http_referer !~ '^https?:\/\/yandex.ru\/') { 2 | 3 | } -------------------------------------------------------------------------------- /tests/plugins/simply/origins/referer_fp.conf: -------------------------------------------------------------------------------- 1 | if ($http_referer !~ '^https?:\/\/yandex\.ru\/') { 2 | 3 | } -------------------------------------------------------------------------------- /tests/plugins/simply/origins/referer_subdomain.conf: -------------------------------------------------------------------------------- 1 | if ($http_referer !~ '^https?:\/\/some.yandex\.ru\/') { 2 | 3 | } -------------------------------------------------------------------------------- /tests/plugins/simply/origins/referer_subdomain_fp.conf: -------------------------------------------------------------------------------- 1 | if ($http_referer !~ '^https?:\/\/some\.yandex\.ru\/') { 2 | 3 | } -------------------------------------------------------------------------------- /tests/plugins/simply/origins/referrer_double_r.conf: -------------------------------------------------------------------------------- 1 | if ($http_referrer !~ '^https?:\/\/yandex\.ru/') { 2 | 3 | } 4 | -------------------------------------------------------------------------------- /tests/plugins/simply/origins/safe_origin.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/safe_origin.conf -------------------------------------------------------------------------------- /tests/plugins/simply/origins/safe_origin_2_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/safe_origin_2_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/origins/structure_dot.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/structure_dot.conf -------------------------------------------------------------------------------- /tests/plugins/simply/origins/structure_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/structure_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/origins/structure_prefix.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/structure_prefix.conf -------------------------------------------------------------------------------- /tests/plugins/simply/origins/structure_suffix.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/structure_suffix.conf -------------------------------------------------------------------------------- /tests/plugins/simply/origins/unsafe_origin.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/unsafe_origin.conf -------------------------------------------------------------------------------- /tests/plugins/simply/origins/unsafe_origin_1.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/unsafe_origin_1.conf -------------------------------------------------------------------------------- /tests/plugins/simply/origins/unsafe_origin_2.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/unsafe_origin_2.conf -------------------------------------------------------------------------------- /tests/plugins/simply/origins/webvisor.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/origins/webvisor.conf -------------------------------------------------------------------------------- /tests/plugins/simply/proxy_pass_normalized/exact_location_with_uri_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/proxy_pass_normalized/exact_location_with_uri_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/proxy_pass_normalized/missing_variable.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/proxy_pass_normalized/missing_variable.conf -------------------------------------------------------------------------------- /tests/plugins/simply/proxy_pass_normalized/missing_variable_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/proxy_pass_normalized/missing_variable_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/proxy_pass_normalized/missing_variable_in_if.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/proxy_pass_normalized/missing_variable_in_if.conf -------------------------------------------------------------------------------- /tests/plugins/simply/proxy_pass_normalized/missing_variable_in_if_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/proxy_pass_normalized/missing_variable_in_if_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/proxy_pass_normalized/missing_variable_in_limit_except.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/proxy_pass_normalized/missing_variable_in_limit_except.conf -------------------------------------------------------------------------------- /tests/plugins/simply/proxy_pass_normalized/missing_variable_in_limit_except_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/proxy_pass_normalized/missing_variable_in_limit_except_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/proxy_pass_normalized/missing_variable_nopath.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/proxy_pass_normalized/missing_variable_nopath.conf -------------------------------------------------------------------------------- /tests/plugins/simply/proxy_pass_normalized/missing_variable_nopath_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/proxy_pass_normalized/missing_variable_nopath_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/proxy_pass_normalized/proxy_pass_path.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/proxy_pass_normalized/proxy_pass_path.conf -------------------------------------------------------------------------------- /tests/plugins/simply/proxy_pass_normalized/proxy_pass_path_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/proxy_pass_normalized/proxy_pass_path_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/proxy_pass_normalized/proxy_pass_socket_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/proxy_pass_normalized/proxy_pass_socket_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/proxy_pass_normalized/proxy_pass_socket_with_path.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/proxy_pass_normalized/proxy_pass_socket_with_path.conf -------------------------------------------------------------------------------- /tests/plugins/simply/proxy_pass_normalized/proxy_pass_var_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/proxy_pass_normalized/proxy_pass_var_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/proxy_pass_normalized/rewrite_with_return_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/proxy_pass_normalized/rewrite_with_return_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/proxy_pass_normalized/stream_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/proxy_pass_normalized/stream_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/proxy_pass_normalized/variable.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/proxy_pass_normalized/variable.conf -------------------------------------------------------------------------------- /tests/plugins/simply/proxy_pass_normalized/variable_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/proxy_pass_normalized/variable_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/regex_redos/adjacent_quantifiers.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/regex_redos/adjacent_quantifiers.conf -------------------------------------------------------------------------------- /tests/plugins/simply/regex_redos/bounded_quantifier_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/regex_redos/bounded_quantifier_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/regex_redos/dot_overlap.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/regex_redos/dot_overlap.conf -------------------------------------------------------------------------------- /tests/plugins/simply/regex_redos/exact_location_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/regex_redos/exact_location_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/regex_redos/if_nested.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/regex_redos/if_nested.conf -------------------------------------------------------------------------------- /tests/plugins/simply/regex_redos/nested_quantifier_group.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/regex_redos/nested_quantifier_group.conf -------------------------------------------------------------------------------- /tests/plugins/simply/regex_redos/nested_quantifier_location.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/regex_redos/nested_quantifier_location.conf -------------------------------------------------------------------------------- /tests/plugins/simply/regex_redos/nested_star_plus.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/regex_redos/nested_star_plus.conf -------------------------------------------------------------------------------- /tests/plugins/simply/regex_redos/non_overlapping_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/regex_redos/non_overlapping_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/regex_redos/overlapping_alternatives.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/regex_redos/overlapping_alternatives.conf -------------------------------------------------------------------------------- /tests/plugins/simply/regex_redos/prefix_location_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/regex_redos/prefix_location_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/regex_redos/rewrite_nested.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/regex_redos/rewrite_nested.conf -------------------------------------------------------------------------------- /tests/plugins/simply/regex_redos/simple_charclass_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/regex_redos/simple_charclass_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/regex_redos/single_quantifier_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/regex_redos/single_quantifier_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/resolver_external/resolver_external.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/resolver_external/resolver_external.conf -------------------------------------------------------------------------------- /tests/plugins/simply/resolver_external/resolver_external_fp.conf: -------------------------------------------------------------------------------- 1 | resolver 127.0.0.1; 2 | -------------------------------------------------------------------------------- /tests/plugins/simply/resolver_external/resolver_link_local_fp.conf: -------------------------------------------------------------------------------- 1 | resolver 169.254.0.1; 2 | -------------------------------------------------------------------------------- /tests/plugins/simply/resolver_external/resolver_local_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/resolver_external/resolver_local_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/resolver_external/resolver_local_internal_fp.conf: -------------------------------------------------------------------------------- 1 | resolver test.internal; 2 | -------------------------------------------------------------------------------- /tests/plugins/simply/resolver_external/resolver_local_ipv6_fp.conf: -------------------------------------------------------------------------------- 1 | resolver 127.0.0.1 ::1; 2 | -------------------------------------------------------------------------------- /tests/plugins/simply/resolver_external/resolver_local_ipv6_with_port_fp.conf: -------------------------------------------------------------------------------- 1 | resolver [::1]:53; 2 | -------------------------------------------------------------------------------- /tests/plugins/simply/resolver_external/resolver_more_local_ipv6_fp.conf: -------------------------------------------------------------------------------- 1 | resolver fea0:abcd:1234::1; 2 | -------------------------------------------------------------------------------- /tests/plugins/simply/return_bypasses_allow_deny/same_level.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/return_bypasses_allow_deny/same_level.conf -------------------------------------------------------------------------------- /tests/plugins/simply/return_bypasses_allow_deny/same_level_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/return_bypasses_allow_deny/same_level_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/return_bypasses_allow_deny/same_next_level.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/return_bypasses_allow_deny/same_next_level.conf -------------------------------------------------------------------------------- /tests/plugins/simply/return_bypasses_allow_deny/same_next_level_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/return_bypasses_allow_deny/same_next_level_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/rewrite_with_return.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/rewrite_with_return.conf -------------------------------------------------------------------------------- /tests/plugins/simply/ssrf/config.json: -------------------------------------------------------------------------------- 1 | { 2 | "severity": "HIGH" 3 | } -------------------------------------------------------------------------------- /tests/plugins/simply/ssrf/have_internal_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/ssrf/have_internal_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/ssrf/host_w_const_start.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/ssrf/host_w_const_start.conf -------------------------------------------------------------------------------- /tests/plugins/simply/ssrf/host_w_const_start_arg.conf: -------------------------------------------------------------------------------- 1 | location /backend/ { 2 | proxy_pass http://some${arg_la}.shit; 3 | } -------------------------------------------------------------------------------- /tests/plugins/simply/ssrf/mapped_value.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/ssrf/mapped_value.conf -------------------------------------------------------------------------------- /tests/plugins/simply/ssrf/not_host_var_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/ssrf/not_host_var_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/ssrf/request_uri_fp.conf: -------------------------------------------------------------------------------- 1 | location /backend/ { 2 | proxy_pass http://some$request_uri; 3 | } -------------------------------------------------------------------------------- /tests/plugins/simply/ssrf/request_uri_var_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/ssrf/request_uri_var_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/ssrf/scheme_var.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/ssrf/scheme_var.conf -------------------------------------------------------------------------------- /tests/plugins/simply/ssrf/single_var.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/ssrf/single_var.conf -------------------------------------------------------------------------------- /tests/plugins/simply/ssrf/used_arg.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/ssrf/used_arg.conf -------------------------------------------------------------------------------- /tests/plugins/simply/ssrf/vars_from_loc.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/ssrf/vars_from_loc.conf -------------------------------------------------------------------------------- /tests/plugins/simply/ssrf/with_const_scheme.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/ssrf/with_const_scheme.conf -------------------------------------------------------------------------------- /tests/plugins/simply/try_files_is_evil_too/config.json: -------------------------------------------------------------------------------- 1 | { 2 | "severity": "MEDIUM" 3 | } 4 | -------------------------------------------------------------------------------- /tests/plugins/simply/try_files_is_evil_too/try_files_is_evil_too.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/try_files_is_evil_too/try_files_is_evil_too.conf -------------------------------------------------------------------------------- /tests/plugins/simply/try_files_is_evil_too/try_files_is_evil_too_cache_none.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/try_files_is_evil_too/try_files_is_evil_too_cache_none.conf -------------------------------------------------------------------------------- /tests/plugins/simply/try_files_is_evil_too/try_files_is_evil_too_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/try_files_is_evil_too/try_files_is_evil_too_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/unanchored_regex/unanchored_regex.conf: -------------------------------------------------------------------------------- 1 | location ~ \.php { 2 | fastcgi_pass /path/to/some.sock; 3 | } 4 | -------------------------------------------------------------------------------- /tests/plugins/simply/unanchored_regex/unanchored_regex_fp.conf: -------------------------------------------------------------------------------- 1 | location ~ \.php$ { 2 | fastcgi_pass /path/to/some.sock; 3 | } 4 | -------------------------------------------------------------------------------- /tests/plugins/simply/valid_referers/config.json: -------------------------------------------------------------------------------- 1 | { 2 | "severity": "HIGH" 3 | } -------------------------------------------------------------------------------- /tests/plugins/simply/valid_referers/none_first.conf: -------------------------------------------------------------------------------- 1 | valid_referers none server_names *.webvisor.com; -------------------------------------------------------------------------------- /tests/plugins/simply/valid_referers/none_last.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/valid_referers/none_last.conf -------------------------------------------------------------------------------- /tests/plugins/simply/valid_referers/none_middle.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/valid_referers/none_middle.conf -------------------------------------------------------------------------------- /tests/plugins/simply/valid_referers/wo_none_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/valid_referers/wo_none_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/version_disclosure/server_tokens_off_fp.conf: -------------------------------------------------------------------------------- 1 | server_tokens off; 2 | -------------------------------------------------------------------------------- /tests/plugins/simply/version_disclosure/server_tokens_on.conf: -------------------------------------------------------------------------------- 1 | server_tokens on; 2 | -------------------------------------------------------------------------------- /tests/plugins/simply/worker_rlimit_nofile_vs_connections/worker_rlimit_nofile_vs_connections_fp.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/worker_rlimit_nofile_vs_connections/worker_rlimit_nofile_vs_connections_fp.conf -------------------------------------------------------------------------------- /tests/plugins/simply/worker_rlimit_nofile_vs_connections/worker_rlimit_nofile_vs_connections_missing.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/worker_rlimit_nofile_vs_connections/worker_rlimit_nofile_vs_connections_missing.conf -------------------------------------------------------------------------------- /tests/plugins/simply/worker_rlimit_nofile_vs_connections/worker_rlimit_nofile_vs_connections_too_low.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/simply/worker_rlimit_nofile_vs_connections/worker_rlimit_nofile_vs_connections_too_low.conf -------------------------------------------------------------------------------- /tests/plugins/test_add_header_multiline_none_value.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/test_add_header_multiline_none_value.py -------------------------------------------------------------------------------- /tests/plugins/test_redos_analyzer.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/test_redos_analyzer.py -------------------------------------------------------------------------------- /tests/plugins/test_simply.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/test_simply.py -------------------------------------------------------------------------------- /tests/plugins/test_version_disclosure_full_config.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/plugins/test_version_disclosure_full_config.py -------------------------------------------------------------------------------- /tests/utils.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tests/utils.py -------------------------------------------------------------------------------- /tox.ini: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/dvershinin/gixy/HEAD/tox.ini --------------------------------------------------------------------------------