diff options
| author | Marc Cornellà <marc@mcornella.com> | 2024-10-18 14:27:54 +0200 |
|---|---|---|
| committer | Marc Cornellà <marc@mcornella.com> | 2024-10-18 14:27:54 +0200 |
| commit | 4ada1541900539ce585a26642eecc7e8e56d16f6 (patch) | |
| tree | 5693c6eb24fcae3566f8fe345bbac21468f22138 /.github | |
| parent | 067558da9274986d326533daca047bbcb01f2451 (diff) | |
| download | zsh-4ada1541900539ce585a26642eecc7e8e56d16f6.tar.gz zsh-4ada1541900539ce585a26642eecc7e8e56d16f6.tar.bz2 zsh-4ada1541900539ce585a26642eecc7e8e56d16f6.zip | |
chore(installer): only serve installer in / and /install.sh
This avoids false positive detections on other bruteforced paths,
such as .zsh_history or others, which eventually result in
automated false vulnerability submissions.
Diffstat (limited to '.github')
| -rw-r--r-- | .github/workflows/installer/vercel.json | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/.github/workflows/installer/vercel.json b/.github/workflows/installer/vercel.json index 524dc3c0f..88ec18725 100644 --- a/.github/workflows/installer/vercel.json +++ b/.github/workflows/installer/vercel.json @@ -1,7 +1,7 @@ { "headers": [ { - "source": "/((?!favicon.ico).*)", + "source": "/(|install.sh)", "headers": [ { "key": "Content-Type", @@ -16,7 +16,7 @@ ], "rewrites": [ { - "source": "/((?!favicon.ico|install.sh).*)", + "source": "/", "destination": "/install.sh" } ] |