please bump https://github.com/SpiderLabs/ModSecurity/releases/ Reproducible: Always
This is not simple to bump as the architecture was completely changed with the rewrite/release of modsecurity 3.x. Package is now split in: * libmodsecurity (https://github.com/SpiderLabs/ModSecurity), web server agnostic and better performing * ModSecurity-Apache connector to interface between Apache and libmodsecurity (https://github.com/SpiderLabs/ModSecurity-apache) Latest version of 2.x is v2.9.3 which is available in the Gentoo tree. There are a few upstream changes pending for v2.x: https://github.com/SpiderLabs/ModSecurity/blob/v2/master/CHANGES
According to https://coreruleset.org/installation/ version 2.9.x is still recommended for Apache.
The bug has been closed via the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=10414bf03e312ad3f46e5639c270aaadf3eb181c commit 10414bf03e312ad3f46e5639c270aaadf3eb181c Author: Tomáš Mózes <hydrapolic@gmail.com> AuthorDate: 2022-07-14 12:38:43 +0000 Commit: Conrad Kostecki <conikost@gentoo.org> CommitDate: 2022-07-19 17:20:42 +0000 dev-libs/modsecurity: new package Modsecurity is a library that can be used by Nginx: https://github.com/SpiderLabs/ModSecurity-nginx For Apache, Modsecurity 2.x is still recommended. Bug: https://bugs.gentoo.org/726614 Closes: https://bugs.gentoo.org/718358 Signed-off-by: Tomáš Mózes <hydrapolic@gmail.com> Signed-off-by: Conrad Kostecki <conikost@gentoo.org> dev-libs/modsecurity/Manifest | 1 + dev-libs/modsecurity/metadata.xml | 35 ++++++++++++ dev-libs/modsecurity/modsecurity-3.0.7.ebuild | 80 +++++++++++++++++++++++++++ 3 files changed, 116 insertions(+)