microsoft / ModSecurity
ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx that is developed by Trustwave's SpiderLabs. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis. With over 10,000 deployments world-wide, ModSecurity is the most widely deployed WAF in existence.
Summary
    |
|||
| Main Code: 64,044 LOC (121 files) = C (60%) + H (20%) + IN (10%) + CPP (5%) + VCXPROJ (1%) + FILTERS (<1%) + PL (<1%) + CC (<1%) + TXT (<1%) + PS1 (<1%) Secondary code: Test: 36,344 LOC (97); Generated: 0 LOC (0); Build & Deploy: 436 LOC (11); Other: 395 LOC (6); |
|||
| Duplication: 22% | |||
| File Size: 65% long (>1000 LOC), 6% short (<= 200 LOC) | |||
| Unit Size: 37% long (>100 LOC), 16% short (<= 10 LOC) | |||
| Conditional Complexity: 32% complex (McCabe index > 50), 28% simple (McCabe index <= 5) | |||
|
|
Logical Component Decomposition: primary (12 components) | ||
|
|
14 years, 12 months old
|
||
|
|
39% of code updated more than 50 times Also see temporal dependencies for files frequently changed in same commits. |
||
| Goals: Keep the system simple and easy to change (4) | |||
|
Features of interest:
TODOs
17 files |
|||
Latest commit date: 2022-01-26
|
4
commits
(30 days)
3
contributors
(30 days) |
|