1 repository
Verification of configuration values against defined patterns to ensure security compliance.
Distinct from Domain Pattern Matching: Distinct from route or domain matching, this is for validating configuration values against security specifications.
Explore 1 awesome GitHub repository matching software engineering & architecture · Configuration Pattern Validation. Refine with filters or upvote what's useful.
Gixy is a static configuration analyzer and security auditor for Nginx. It functions as an infrastructure-as-code security scanner and web server configuration linter designed to identify vulnerabilities and misconfigurations in server definitions before deployment. The tool focuses on detecting high-risk security flaws, including host header spoofing, server-side request forgery, and path traversal. It specifically audits Nginx configurations for risks such as HTTP splitting, multiline header issues, and unauthorized third-party access resulting from incorrect Referer or Origin header patter
Uses regular expressions to verify that header values and domain patterns conform to secure specifications.