Package: wnpp Severity: wishlist Owner: Danila Vershinin <[email protected]>
* Package name : gixy Version : 0.2.47 Upstream Author : Danila Vershinin <[email protected]> * URL : https://github.com/dvershinin/gixy * License : MPL-2.0 Programming Lang: Python Description : nginx configuration static analyzer Gixy is a static analyzer for nginx configurations. Its main goal is to detect security misconfigurations and to automate the discovery of common flaws such as HTTP response splitting (via tainted variables in proxy/redirect contexts), host spoofing on virtual-host dispatch, alias-traversal "off-by-slash" misconfigurations, missing add_header inheritance, weak SSL/TLS ciphers, and other patterns documented at https://gixy.getpagespeed.com/. The project was originally created at Yandex; this package tracks the maintained PyPI distribution `gixy-ng' (package name `gixy' in distribution archives), which is actively released and ships fixes and additional plugins on top of the upstream Yandex repository. Gixy is implemented in Python and depends on: - ngxparse (a maintained fork of crossplane; the nginx config parser) - Jinja2 - ConfigArgParse ngxparse is not yet packaged in Debian; an ITP for python3-ngxparse will follow this one. The Jinja2 and ConfigArgParse dependencies are already present in main as python3-jinja2 and python3-configargparse. I intend to maintain this package in Debian myself and am seeking a sponsor.
