# Nginx WAF rules for INITIALIZATION
# Automatically generated from OWASP rules.
# Include this file in your server or location block.

map $request_uri $waf_block_initialization {
    default 0;
    "~*^.*$" 1;
    "~*@eq 1" 1;
    "~*!@rx (?:URLENCODED|MULTIPART|XML|JSON)" 1;
    "~*^[a-f]*([0-9])[a-f]*([0-9])" 1;
    "~*@eq 0" 1;
    "~*@eq 100" 1;
}

if ($waf_block_initialization) {
    return 403;
    # Log the blocked request (optional)
    # access_log /var/log/nginx/waf_blocked.log;
}