WAF rule automated updates
Problem to solve
WAF default rule sets provide effective defenses against a common set of vulnerabilities but can become outdated as new attacks are discovered. This requires the WAF admin to constantly be researching & updating rules to ensure they are protected against the latest threats.
Intended users
Further details
Proposal
GitLab should offer the ability to proactively update WAF rules so that the latest attacks are mitigated.
Consider using open-source CVE feeds or identifying other feeds to get the latest attacks to update against.
-
Detail this more
For customers who have opted-in to auto-updating their WAF rules, apply new updates to their WAF as they are discovered.
-
Can this be done with AutoDevOps?
Permissions and Security
Documentation
Testing
What does success look like, and how can we measure that?
What is the type of buyer?
Links / references
Edited by Thiago Figueiró