Files

GitHub Actions 10582872f9 fix(tests): Enhance CrowdSecConfig with new input fields and improve accessibility

- Added IDs to input fields in CrowdSecConfig for better accessibility.
- Updated labels to use <label> elements for checkboxes and inputs.
- Improved error handling and user feedback in the CrowdSecConfig tests.
- Enhanced test coverage for console enrollment and banned IP functionalities.

fix: Update SecurityHeaders to include aria-label for delete button

- Added aria-label to the delete button for better screen reader support.

test: Add comprehensive tests for proxyHostsHelpers and validation utilities

- Implemented tests for formatting and help text functions in proxyHostsHelpers.
- Added validation tests for email and IP address formats.

chore: Update vitest configuration for dynamic coverage thresholds

- Adjusted coverage thresholds to be dynamic based on environment variables.
- Included additional coverage reporters.

chore: Update frontend-test-coverage script to reflect new coverage threshold

- Increased minimum coverage requirement from 85% to 87.5%.

fix: Ensure tests pass with consistent data in passwd file

- Updated tests/etc/passwd to ensure consistent content.

2026-02-06 17:38:08 +00:00

chore: clean .gitignore cache

2026-01-26 19:22:05 +00:00

history-rewrite

chore: clean .gitignore cache

2026-01-26 19:22:05 +00:00

pre-commit-hooks

chore: add GORM security scanner and pre-commit hook

2026-01-28 10:30:03 +00:00

bump_beta.sh

chore: clean .gitignore cache

2026-01-26 19:22:05 +00:00

cerberus_integration.sh

hotfix: Route-Aware Verification and jq Dependency

2026-01-28 21:46:11 +00:00

check_go_build.sh

chore: clean .gitignore cache

2026-01-26 19:22:05 +00:00

check-version-match-tag.sh

chore: clean .gitignore cache

2026-01-26 19:22:05 +00:00

clear-go-cache.sh

chore: clean .gitignore cache

2026-01-26 19:22:05 +00:00

coraza_integration.sh

chore: clean .gitignore cache

2026-01-26 19:22:05 +00:00

create_bulk_acl_issues.sh

chore: clean .gitignore cache

2026-01-26 19:22:05 +00:00

crowdsec_decision_integration.sh

chore: clean .gitignore cache

2026-01-26 19:22:05 +00:00

crowdsec_integration.sh

chore: clean .gitignore cache

2026-01-26 19:22:05 +00:00

crowdsec_startup_test.sh

fix: repair supply chain workflow triggers and crowdsec test script

2026-02-06 03:49:43 +00:00

db-recovery.sh

chore: clean .gitignore cache

2026-01-26 19:22:05 +00:00

debug_db.py

chore: clean .gitignore cache

2026-01-26 19:22:05 +00:00

debug_rate_limit.sh

chore: clean .gitignore cache

2026-01-26 19:22:05 +00:00

diagnose-crowdsec.sh

fix(security): add CrowdSec diagnostics script and E2E tests for console enrollment and diagnostics

2026-02-03 18:26:32 +00:00

diagnose-test-env.sh

fix(tests): use correct endpoint in break glass recovery test

2026-02-03 14:06:46 +00:00

frontend-test-coverage.sh

fix(tests): Enhance CrowdSecConfig with new input fields and improve accessibility

2026-02-06 17:38:08 +00:00

go-test-coverage.sh

chore: add GORM security scanner and pre-commit hook

2026-01-28 10:30:03 +00:00

gopls_collect.sh

chore: clean .gitignore cache

2026-01-26 19:22:05 +00:00

install-go-1.25.7.sh

fix: enable supply-chain-pr workflow for direct push and pr events

2026-02-06 03:42:26 +00:00

integration-test.sh

chore: clean .gitignore cache

2026-01-26 19:22:05 +00:00

prune-container-images.sh

fix(e2e): prevent redundant image builds in CI shards

2026-01-26 21:51:23 +00:00

qa-test-auth-certificates.sh

chore: clean .gitignore cache

2026-01-26 19:22:05 +00:00

rate_limit_integration.sh

chore: clean .gitignore cache

2026-01-26 19:22:05 +00:00

README.md

chore: clean .gitignore cache

2026-01-26 19:22:05 +00:00

release.sh

chore: simplify GoReleaser to Linux-only builds for Docker deployment

2026-01-30 21:40:49 +00:00

repo_health_check.sh

chore: clean .gitignore cache

2026-01-26 19:22:05 +00:00

run-e2e-ui.sh

chore(e2e): enable Playwright UI on headless Linux

2026-02-06 10:29:11 -05:00

scan-gorm-security.sh

chore: GORM remediation

2026-01-28 18:47:52 +00:00

scan-gorm-security.sh.backup

chore: add GORM security scanner and pre-commit hook

2026-01-28 10:30:03 +00:00

security-scan.sh

fix: Implement dependency digest tracking for nightly builds

2026-01-30 06:39:26 +00:00

setup-e2e-env.sh

chore: clean .gitignore cache

2026-01-26 19:22:05 +00:00

trivy-scan.sh

chore: clean .gitignore cache

2026-01-26 19:22:05 +00:00

validate-e2e-auth.sh

fix: restore PATCH endpoints used by E2E + emergency-token fallback

2026-01-27 22:43:33 +00:00

verify_crowdsec_app_config.sh

chore: clean .gitignore cache

2026-01-26 19:22:05 +00:00

waf_integration.sh

chore: clean .gitignore cache

2026-01-26 19:22:05 +00:00

README.md

Scripts Directory

Running Tests Locally Before Pushing to CI

WAF Integration Test

Always run this locally before pushing WAF-related changes to avoid CI failures:

# From project root
bash ./scripts/coraza_integration.sh

Or use the VS Code task: Ctrl+Shift+P → Tasks: Run Task → Coraza: Run Integration Script

Requirements:

Docker image charon:local must be built first:
```
docker build -t charon:local .
```
The script will:
1. Start a test container with WAF enabled
2. Create a backend container (httpbin)
3. Test WAF in block mode (expect HTTP 403)
4. Test WAF in monitor mode (expect HTTP 200)
5. Clean up all test containers

Expected output:

✓ httpbin backend is ready
✓ Coraza WAF blocked payload as expected (HTTP 403) in BLOCK mode
✓ Coraza WAF in MONITOR mode allowed payload through (HTTP 200) as expected
=== All Coraza integration tests passed ===

Other Test Scripts

Security Scan: bash ./scripts/security-scan.sh
Go Test Coverage: bash ./scripts/go-test-coverage.sh
Frontend Test Coverage: bash ./scripts/frontend-test-coverage.sh

CI/CD Workflows

Changes to these scripts may trigger CI workflows:

coraza_integration.sh → WAF Integration Tests workflow
Files in .github/workflows/ directory control CI behavior

Tip: Run tests locally to save CI minutes and catch issues faster!