A new software update is available: OWASP CRS 4.9.0 released
OWASP CRS 4.9.0 released
OWASP CRS 4.9.0 comprises a set of attack detection rules intended for compatibility with ModSecurity or alternative web application firewalls. Several important changes have been made to the update, such as adding a variable to get around response rules, adding fish shell files to restricted-files.data, and adding quantitative testing to the Git workflow.