6 commits

Author	SHA1	Message	Date
mmetc	ce085dc4cd	logs and user messages: use "parse" and "serialize" instead of marshal/unmarshal (#3240)	2024-09-17 13:19:14 +02:00
mmetc	89aec7cf6b	pkg/cwhub: simpler accessor methods (#3165) ... * pkg/cwhub: simpler accessor methods - prefer higher level GetItemsByType, GetInstalledByType over GetItemMap - always send both appsec-rules and scenarios to api - explicit parameter for (case insensitive) sorted list of items - shorter code - assume itemType parameter makes sense, don't error * lint (gofumpt)	2024-08-22 12:12:40 +02:00
mmetc	206211ce53	lint: import statement order (#3085) ... * lint: import statement order * lint	2024-06-26 12:16:17 +02:00
mmetc	ae58b158a5	enable linter: revive (var-declaration) (#3069)	2024-06-11 09:26:50 +02:00
Thibault "bui" Koechlin	685cda545b	fix the reload process for appsec (#2750)	2024-01-17 11:54:44 +01:00
Thibault "bui" Koechlin	8cca4346a5	Application Security Engine Support (#2273) ... Add a new datasource that: - Receives HTTP requests from remediation components - Apply rules on them to determine whether they are malicious or not - Rules can be evaluated in-band (the remediation component will block the request directly) or out-band (the RC will let the request through, but crowdsec can still process the rule matches with scenarios) The PR also adds support for 2 new hub items: - appsec-configs: Configure the Application Security Engine (which rules to load, in which phase) - appsec-rules: a rule that is added in the Application Security Engine (can use either our own format, or seclang) --------- Co-authored-by: alteredCoder <kevin@crowdsec.net> Co-authored-by: Sebastien Blot <sebastien@crowdsec.net> Co-authored-by: mmetc <92726601+mmetc@users.noreply.github.com> Co-authored-by: Marco Mariani <marco@crowdsec.net>	2023-12-07 12:21:04 +01:00