akanealw/Charon
1
0
Fork 0
Code Issues Pull Requests Actions 16 Packages Projects Releases Wiki Activity
Files
main
Charon/.github/skills/integration-test-waf.SKILL.md
akanealw eec8c28fb3
Some checks are pending
Go Benchmark / Performance Regression Check (push) Waiting to run
Details
Cerberus Integration / Cerberus Security Stack Integration (push) Waiting to run
Details
Upload Coverage to Codecov / Backend Codecov Upload (push) Waiting to run
Details
Upload Coverage to Codecov / Frontend Codecov Upload (push) Waiting to run
Details
CodeQL - Analyze / CodeQL analysis (go) (push) Waiting to run
Details
CodeQL - Analyze / CodeQL analysis (javascript-typescript) (push) Waiting to run
Details
CrowdSec Integration / CrowdSec Bouncer Integration (push) Waiting to run
Details
Docker Build, Publish & Test / build-and-push (push) Waiting to run
Details
Docker Build, Publish & Test / Security Scan PR Image (push) Blocked by required conditions
Details
Quality Checks / Auth Route Protection Contract (push) Waiting to run
Details
Quality Checks / Codecov Trigger/Comment Parity Guard (push) Waiting to run
Details
Quality Checks / Backend (Go) (push) Waiting to run
Details
Quality Checks / Frontend (React) (push) Waiting to run
Details
Rate Limit integration / Rate Limiting Integration (push) Waiting to run
Details
Security Scan (PR) / Trivy Binary Scan (push) Waiting to run
Details
Supply Chain Verification (PR) / Verify Supply Chain (push) Waiting to run
Details
WAF integration / Coraza WAF Integration (push) Waiting to run
Details
changed perms
2026-04-22 18:19:14 +00:00

2.2 KiB
Executable File
Raw Permalink Blame History

name, version, description, author, license, tags, compatibility, requirements, environment_variables, parameters, outputs, metadata
name version description author license tags compatibility requirements environment_variables parameters outputs metadata
integration-test-waf 1.0.0 Test generic WAF integration behavior Charon Project MIT
integration
waf
security
testing
os shells
linux
darwin
bash
name version optional
docker >=24.0 false
name version optional
curl >=7.0 false
name description default required
WAF_MODE Override WAF mode (monitor or block) false
name type description default required
verbose boolean Enable verbose output false false
name type description
test_results stdout WAF integration test results
category subcategory execution_time risk_level ci_cd_safe requires_network idempotent
integration-test waf medium medium true true true

Integration Test WAF

Overview

Tests the generic WAF integration behavior using the legacy WAF script. This test is kept for local verification and is not the CI WAF entrypoint (Coraza is the CI path).

Prerequisites

  • Docker 24.0 or higher installed and running
  • curl 7.0 or higher for API testing

Usage

Run the WAF integration tests:

.github/skills/scripts/skill-runner.sh integration-test-waf

Parameters

Parameter Type Required Default Description
verbose boolean No false Enable verbose output

Environment Variables

Variable Required Default Description
WAF_MODE No (script default) Override WAF mode

Outputs

Success Exit Code

  • 0: All WAF integration tests passed

Error Exit Codes

  • 1: One or more tests failed
  • 2: Docker environment setup failed
  • 3: Container startup timeout

Test Coverage

This skill validates:

  1. WAF blocking behavior for common payloads
  2. Allowed requests succeed

Last Updated: 2026-02-07 Maintained by: Charon Project Team Source: scripts/waf_integration.sh

Reference in New Issue View Git Blame Copy Permalink