Kubernetes WAF Version 1.11.0
This version includes the following modifications:
Violation Rating Protection:
Following the release of the Violation Rating protection, in this version we added the PatternGroup protection in the Violation Rating:
In the Violation Rating Forensics Security events, we added a new function called “Show Violation” that provide the list of all events that conduct Violation Rating to block the source:
API Security – Strict Path
Strict Path in API Security Module defines how the API Security protection will behave in case an endpoint is NOT defined for enforcement:
If Strict Path is disabled, the security inspection continues according to the configuration of the other Security Module.If Strict Path is enabled, the API Security module blocks the request.
Expression and Signature Engine: Advanced Exclude Rules
The exclude rule available for the Expression engine and the Signature engine can include a path with a filename.
