Update metadata

check-spelling run (pull_request) for main

Signed-off-by: check-spelling-bot <check-spelling-bot@users.noreply.github.com>
on-behalf-of: @check-spelling <check-spelling-bot@check-spelling.dev>

.github/actions/spelling/expect.txt

@@ -1,5 +1,6 @@
 acs
 Aibrew
+alibaba
 alrest
 amazonbot
 anthro
@@ -340,6 +341,7 @@ xff
 XForwarded
 XNG
 XOB
+XOriginal
 XReal
 yae
 YAMLTo

SECURITY.md

@@ -0,0 +1,13 @@
+# Security Policy
+
+Techaro follows the [Semver 2.0 scheme](https://semver.org/).
+
+## Supported Versions
+
+Techaro strives to support the two most recent minor versions of Anubis. Patches to those versions will be published as patch releases.
+
+## Reporting a Vulnerability
+
+Email security@techaro.lol with details on the vulnerability and reproduction steps. You will get a response as soon as possible.
+
+Please take care to send your email as a mixed plaintext and HTML message. Messages with GPG signatures or that are plaintext only may be blocked by the spam filter.

data/bots/_deny-pathological.yaml

@@ -2,4 +2,5 @@
 - import: (data)/bots/headless-browsers.yaml
 - import: (data)/bots/us-ai-scraper.yaml
 - import: (data)/bots/custom-async-http-client.yaml
+- import: (data)/crawlers/alibaba-cloud.yaml
 - import: (data)/crawlers/huawei-cloud.yaml

data/crawlers/alibaba-cloud.yaml

@@ -0,0 +1,881 @@
+- name: alibaba-cloud
+  action: DENY
+  # Updated 2025-08-20 from IP addresses for AS45102
+  remote_addresses:
+    - 103.81.186.0/23
+    - 110.76.21.0/24
+    - 110.76.23.0/24
+    - 116.251.64.0/18
+    - 139.95.0.0/23
+    - 139.95.10.0/23
+    - 139.95.12.0/23
+    - 139.95.14.0/23
+    - 139.95.16.0/23
+    - 139.95.18.0/23
+    - 139.95.2.0/23
+    - 139.95.4.0/23
+    - 139.95.6.0/23
+    - 139.95.64.0/24
+    - 139.95.8.0/23
+    - 14.1.112.0/22
+    - 14.1.115.0/24
+    - 140.205.1.0/24
+    - 140.205.122.0/24
+    - 147.139.0.0/17
+    - 147.139.0.0/18
+    - 147.139.128.0/17
+    - 147.139.128.0/18
+    - 147.139.155.0/24
+    - 147.139.192.0/18
+    - 147.139.64.0/18
+    - 149.129.0.0/20
+    - 149.129.0.0/21
+    - 149.129.16.0/23
+    - 149.129.192.0/18
+    - 149.129.192.0/19
+    - 149.129.224.0/19
+    - 149.129.32.0/19
+    - 149.129.64.0/18
+    - 149.129.64.0/19
+    - 149.129.8.0/21
+    - 149.129.96.0/19
+    - 156.227.20.0/24
+    - 156.236.12.0/24
+    - 156.236.17.0/24
+    - 156.240.76.0/23
+    - 156.245.1.0/24
+    - 161.117.0.0/16
+    - 161.117.0.0/17
+    - 161.117.126.0/24
+    - 161.117.127.0/24
+    - 161.117.128.0/17
+    - 161.117.128.0/24
+    - 161.117.129.0/24
+    - 161.117.138.0/24
+    - 161.117.143.0/24
+    - 170.33.104.0/24
+    - 170.33.105.0/24
+    - 170.33.106.0/24
+    - 170.33.107.0/24
+    - 170.33.136.0/24
+    - 170.33.137.0/24
+    - 170.33.138.0/24
+    - 170.33.20.0/24
+    - 170.33.21.0/24
+    - 170.33.22.0/24
+    - 170.33.23.0/24
+    - 170.33.24.0/24
+    - 170.33.29.0/24
+    - 170.33.30.0/24
+    - 170.33.31.0/24
+    - 170.33.32.0/24
+    - 170.33.33.0/24
+    - 170.33.34.0/24
+    - 170.33.35.0/24
+    - 170.33.64.0/24
+    - 170.33.65.0/24
+    - 170.33.66.0/24
+    - 170.33.68.0/24
+    - 170.33.69.0/24
+    - 170.33.72.0/24
+    - 170.33.73.0/24
+    - 170.33.76.0/24
+    - 170.33.77.0/24
+    - 170.33.78.0/24
+    - 170.33.79.0/24
+    - 170.33.80.0/24
+    - 170.33.81.0/24
+    - 170.33.82.0/24
+    - 170.33.83.0/24
+    - 170.33.84.0/24
+    - 170.33.85.0/24
+    - 170.33.86.0/24
+    - 170.33.88.0/24
+    - 170.33.90.0/24
+    - 170.33.92.0/24
+    - 170.33.93.0/24
+    - 185.78.106.0/23
+    - 198.11.128.0/18
+    - 198.11.137.0/24
+    - 198.11.184.0/21
+    - 202.144.199.0/24
+    - 203.107.64.0/24
+    - 203.107.65.0/24
+    - 203.107.66.0/24
+    - 203.107.67.0/24
+    - 203.107.68.0/24
+    - 205.204.102.0/23
+    - 205.204.111.0/24
+    - 205.204.117.0/24
+    - 205.204.125.0/24
+    - 205.204.96.0/19
+    - 223.5.5.0/24
+    - 223.6.6.0/24
+    - 2400:3200::/48
+    - 2400:3200:baba::/48
+    - 2400:b200:4100::/48
+    - 2400:b200:4101::/48
+    - 2400:b200:4102::/48
+    - 2400:b200:4103::/48
+    - 2401:8680:4100::/48
+    - 2401:b180:4100::/48
+    - 2404:2280:1000::/36
+    - 2404:2280:1000::/37
+    - 2404:2280:1800::/37
+    - 2404:2280:2000::/36
+    - 2404:2280:2000::/37
+    - 2404:2280:2800::/37
+    - 2404:2280:3000::/36
+    - 2404:2280:3000::/37
+    - 2404:2280:3800::/37
+    - 2404:2280:4000::/36
+    - 2404:2280:4000::/37
+    - 2404:2280:4800::/37
+    - 2408:4000:1000::/48
+    - 2408:4009:500::/48
+    - 240b:4000::/32
+    - 240b:4000::/33
+    - 240b:4000:8000::/33
+    - 240b:4000:fffe::/48
+    - 240b:4001::/32
+    - 240b:4001::/33
+    - 240b:4001:8000::/33
+    - 240b:4002::/32
+    - 240b:4002::/33
+    - 240b:4002:8000::/33
+    - 240b:4004::/32
+    - 240b:4004::/33
+    - 240b:4004:8000::/33
+    - 240b:4005::/32
+    - 240b:4005::/33
+    - 240b:4005:8000::/33
+    - 240b:4006::/48
+    - 240b:4006:1000::/44
+    - 240b:4006:1000::/45
+    - 240b:4006:1000::/47
+    - 240b:4006:1002::/47
+    - 240b:4006:1008::/45
+    - 240b:4006:1010::/44
+    - 240b:4006:1010::/45
+    - 240b:4006:1018::/45
+    - 240b:4006:1020::/44
+    - 240b:4006:1020::/45
+    - 240b:4006:1028::/45
+    - 240b:4007::/32
+    - 240b:4007::/33
+    - 240b:4007:8000::/33
+    - 240b:4009::/32
+    - 240b:4009::/33
+    - 240b:4009:8000::/33
+    - 240b:400b::/32
+    - 240b:400b::/33
+    - 240b:400b:8000::/33
+    - 240b:400c::/32
+    - 240b:400c::/33
+    - 240b:400c::/40
+    - 240b:400c::/41
+    - 240b:400c:100::/40
+    - 240b:400c:100::/41
+    - 240b:400c:180::/41
+    - 240b:400c:80::/41
+    - 240b:400c:8000::/33
+    - 240b:400c:f00::/48
+    - 240b:400c:f01::/48
+    - 240b:400c:ffff::/48
+    - 240b:400d::/32
+    - 240b:400d::/33
+    - 240b:400d:8000::/33
+    - 240b:400e::/32
+    - 240b:400e::/33
+    - 240b:400e:8000::/33
+    - 240b:400f::/32
+    - 240b:400f::/33
+    - 240b:400f:8000::/33
+    - 240b:4011::/32
+    - 240b:4011::/33
+    - 240b:4011:8000::/33
+    - 240b:4012::/48
+    - 240b:4013::/32
+    - 240b:4013::/33
+    - 240b:4013:8000::/33
+    - 240b:4014::/32
+    - 240b:4014::/33
+    - 240b:4014:8000::/33
+    - 43.100.0.0/15
+    - 43.100.0.0/16
+    - 43.101.0.0/16
+    - 43.102.0.0/20
+    - 43.102.112.0/20
+    - 43.102.16.0/20
+    - 43.102.32.0/20
+    - 43.102.48.0/20
+    - 43.102.64.0/20
+    - 43.102.80.0/20
+    - 43.102.96.0/20
+    - 43.103.0.0/17
+    - 43.103.0.0/18
+    - 43.103.64.0/18
+    - 43.104.0.0/15
+    - 43.104.0.0/16
+    - 43.105.0.0/16
+    - 43.108.0.0/17
+    - 43.108.0.0/18
+    - 43.108.64.0/18
+    - 43.91.0.0/16
+    - 43.91.0.0/17
+    - 43.91.128.0/17
+    - 43.96.10.0/24
+    - 43.96.100.0/24
+    - 43.96.101.0/24
+    - 43.96.102.0/24
+    - 43.96.104.0/24
+    - 43.96.11.0/24
+    - 43.96.20.0/24
+    - 43.96.21.0/24
+    - 43.96.23.0/24
+    - 43.96.24.0/24
+    - 43.96.25.0/24
+    - 43.96.3.0/24
+    - 43.96.32.0/24
+    - 43.96.33.0/24
+    - 43.96.34.0/24
+    - 43.96.35.0/24
+    - 43.96.4.0/24
+    - 43.96.40.0/24
+    - 43.96.5.0/24
+    - 43.96.52.0/24
+    - 43.96.6.0/24
+    - 43.96.66.0/24
+    - 43.96.67.0/24
+    - 43.96.68.0/24
+    - 43.96.69.0/24
+    - 43.96.7.0/24
+    - 43.96.70.0/24
+    - 43.96.71.0/24
+    - 43.96.72.0/24
+    - 43.96.73.0/24
+    - 43.96.74.0/24
+    - 43.96.75.0/24
+    - 43.96.8.0/24
+    - 43.96.80.0/24
+    - 43.96.81.0/24
+    - 43.96.84.0/24
+    - 43.96.85.0/24
+    - 43.96.86.0/24
+    - 43.96.88.0/24
+    - 43.96.9.0/24
+    - 43.96.96.0/24
+    - 43.98.0.0/16
+    - 43.98.0.0/17
+    - 43.98.128.0/17
+    - 43.99.0.0/16
+    - 43.99.0.0/17
+    - 43.99.128.0/17
+    - 45.199.179.0/24
+    - 47.235.0.0/22
+    - 47.235.0.0/23
+    - 47.235.1.0/24
+    - 47.235.10.0/23
+    - 47.235.10.0/24
+    - 47.235.11.0/24
+    - 47.235.12.0/23
+    - 47.235.12.0/24
+    - 47.235.13.0/24
+    - 47.235.16.0/23
+    - 47.235.16.0/24
+    - 47.235.18.0/23
+    - 47.235.18.0/24
+    - 47.235.19.0/24
+    - 47.235.2.0/23
+    - 47.235.20.0/24
+    - 47.235.21.0/24
+    - 47.235.22.0/24
+    - 47.235.23.0/24
+    - 47.235.24.0/22
+    - 47.235.24.0/23
+    - 47.235.26.0/23
+    - 47.235.28.0/23
+    - 47.235.28.0/24
+    - 47.235.29.0/24
+    - 47.235.30.0/24
+    - 47.235.31.0/24
+    - 47.235.4.0/24
+    - 47.235.5.0/24
+    - 47.235.6.0/23
+    - 47.235.6.0/24
+    - 47.235.7.0/24
+    - 47.235.8.0/24
+    - 47.235.9.0/24
+    - 47.236.0.0/15
+    - 47.236.0.0/16
+    - 47.237.0.0/16
+    - 47.237.32.0/20
+    - 47.237.34.0/24
+    - 47.238.0.0/15
+    - 47.238.0.0/16
+    - 47.239.0.0/16
+    - 47.240.0.0/16
+    - 47.240.0.0/17
+    - 47.240.128.0/17
+    - 47.241.0.0/16
+    - 47.241.0.0/17
+    - 47.241.128.0/17
+    - 47.242.0.0/15
+    - 47.242.0.0/16
+    - 47.243.0.0/16
+    - 47.244.0.0/16
+    - 47.244.0.0/17
+    - 47.244.128.0/17
+    - 47.244.73.0/24
+    - 47.245.0.0/18
+    - 47.245.0.0/19
+    - 47.245.128.0/17
+    - 47.245.128.0/18
+    - 47.245.192.0/18
+    - 47.245.32.0/19
+    - 47.245.64.0/18
+    - 47.245.64.0/19
+    - 47.245.96.0/19
+    - 47.246.100.0/22
+    - 47.246.104.0/21
+    - 47.246.104.0/22
+    - 47.246.108.0/22
+    - 47.246.120.0/24
+    - 47.246.122.0/24
+    - 47.246.123.0/24
+    - 47.246.124.0/24
+    - 47.246.125.0/24
+    - 47.246.128.0/22
+    - 47.246.128.0/23
+    - 47.246.130.0/23
+    - 47.246.132.0/22
+    - 47.246.132.0/23
+    - 47.246.134.0/23
+    - 47.246.136.0/21
+    - 47.246.136.0/22
+    - 47.246.140.0/22
+    - 47.246.144.0/23
+    - 47.246.144.0/24
+    - 47.246.145.0/24
+    - 47.246.146.0/23
+    - 47.246.146.0/24
+    - 47.246.147.0/24
+    - 47.246.150.0/23
+    - 47.246.150.0/24
+    - 47.246.151.0/24
+    - 47.246.152.0/23
+    - 47.246.152.0/24
+    - 47.246.153.0/24
+    - 47.246.154.0/24
+    - 47.246.155.0/24
+    - 47.246.156.0/22
+    - 47.246.156.0/23
+    - 47.246.158.0/23
+    - 47.246.160.0/20
+    - 47.246.160.0/21
+    - 47.246.168.0/21
+    - 47.246.176.0/20
+    - 47.246.176.0/21
+    - 47.246.184.0/21
+    - 47.246.192.0/22
+    - 47.246.192.0/23
+    - 47.246.194.0/23
+    - 47.246.196.0/22
+    - 47.246.196.0/23
+    - 47.246.198.0/23
+    - 47.246.32.0/22
+    - 47.246.66.0/24
+    - 47.246.67.0/24
+    - 47.246.68.0/23
+    - 47.246.68.0/24
+    - 47.246.69.0/24
+    - 47.246.72.0/21
+    - 47.246.72.0/22
+    - 47.246.76.0/22
+    - 47.246.80.0/24
+    - 47.246.82.0/23
+    - 47.246.82.0/24
+    - 47.246.83.0/24
+    - 47.246.84.0/22
+    - 47.246.84.0/23
+    - 47.246.86.0/23
+    - 47.246.88.0/22
+    - 47.246.88.0/23
+    - 47.246.90.0/23
+    - 47.246.92.0/23
+    - 47.246.92.0/24
+    - 47.246.93.0/24
+    - 47.246.96.0/21
+    - 47.246.96.0/22
+    - 47.250.0.0/17
+    - 47.250.0.0/18
+    - 47.250.128.0/17
+    - 47.250.128.0/18
+    - 47.250.192.0/18
+    - 47.250.64.0/18
+    - 47.250.99.0/24
+    - 47.251.0.0/16
+    - 47.251.0.0/17
+    - 47.251.128.0/17
+    - 47.251.224.0/22
+    - 47.252.0.0/17
+    - 47.252.0.0/18
+    - 47.252.128.0/17
+    - 47.252.128.0/18
+    - 47.252.192.0/18
+    - 47.252.64.0/18
+    - 47.252.67.0/24
+    - 47.253.0.0/16
+    - 47.253.0.0/17
+    - 47.253.128.0/17
+    - 47.254.0.0/17
+    - 47.254.0.0/18
+    - 47.254.113.0/24
+    - 47.254.128.0/18
+    - 47.254.128.0/19
+    - 47.254.160.0/19
+    - 47.254.192.0/18
+    - 47.254.192.0/19
+    - 47.254.224.0/19
+    - 47.254.64.0/18
+    - 47.52.0.0/16
+    - 47.52.0.0/17
+    - 47.52.128.0/17
+    - 47.56.0.0/15
+    - 47.56.0.0/16
+    - 47.57.0.0/16
+    - 47.74.0.0/18
+    - 47.74.0.0/19
+    - 47.74.0.0/21
+    - 47.74.128.0/17
+    - 47.74.128.0/18
+    - 47.74.192.0/18
+    - 47.74.32.0/19
+    - 47.74.64.0/18
+    - 47.74.64.0/19
+    - 47.74.96.0/19
+    - 47.75.0.0/16
+    - 47.75.0.0/17
+    - 47.75.128.0/17
+    - 47.76.0.0/16
+    - 47.76.0.0/17
+    - 47.76.128.0/17
+    - 47.77.0.0/22
+    - 47.77.0.0/23
+    - 47.77.104.0/21
+    - 47.77.12.0/22
+    - 47.77.128.0/17
+    - 47.77.128.0/18
+    - 47.77.128.0/21
+    - 47.77.136.0/21
+    - 47.77.144.0/21
+    - 47.77.152.0/21
+    - 47.77.16.0/21
+    - 47.77.16.0/22
+    - 47.77.192.0/18
+    - 47.77.2.0/23
+    - 47.77.20.0/22
+    - 47.77.24.0/22
+    - 47.77.24.0/23
+    - 47.77.26.0/23
+    - 47.77.32.0/19
+    - 47.77.32.0/20
+    - 47.77.4.0/22
+    - 47.77.4.0/23
+    - 47.77.48.0/20
+    - 47.77.6.0/23
+    - 47.77.64.0/19
+    - 47.77.64.0/20
+    - 47.77.8.0/21
+    - 47.77.8.0/22
+    - 47.77.80.0/20
+    - 47.77.96.0/20
+    - 47.77.96.0/21
+    - 47.78.0.0/17
+    - 47.78.128.0/17
+    - 47.79.0.0/20
+    - 47.79.0.0/21
+    - 47.79.104.0/21
+    - 47.79.112.0/20
+    - 47.79.128.0/19
+    - 47.79.128.0/20
+    - 47.79.144.0/20
+    - 47.79.16.0/20
+    - 47.79.16.0/21
+    - 47.79.192.0/18
+    - 47.79.192.0/19
+    - 47.79.224.0/19
+    - 47.79.24.0/21
+    - 47.79.32.0/20
+    - 47.79.32.0/21
+    - 47.79.40.0/21
+    - 47.79.48.0/20
+    - 47.79.48.0/21
+    - 47.79.52.0/23
+    - 47.79.54.0/23
+    - 47.79.56.0/21
+    - 47.79.56.0/23
+    - 47.79.58.0/23
+    - 47.79.60.0/23
+    - 47.79.62.0/23
+    - 47.79.64.0/20
+    - 47.79.64.0/21
+    - 47.79.72.0/21
+    - 47.79.8.0/21
+    - 47.79.80.0/20
+    - 47.79.80.0/21
+    - 47.79.83.0/24
+    - 47.79.88.0/21
+    - 47.79.96.0/19
+    - 47.79.96.0/20
+    - 47.80.0.0/18
+    - 47.80.0.0/19
+    - 47.80.128.0/17
+    - 47.80.128.0/18
+    - 47.80.192.0/18
+    - 47.80.32.0/19
+    - 47.80.64.0/18
+    - 47.80.64.0/19
+    - 47.80.96.0/19
+    - 47.81.0.0/18
+    - 47.81.0.0/19
+    - 47.81.128.0/17
+    - 47.81.128.0/18
+    - 47.81.192.0/18
+    - 47.81.32.0/19
+    - 47.81.64.0/18
+    - 47.81.64.0/19
+    - 47.81.96.0/19
+    - 47.82.0.0/18
+    - 47.82.0.0/19
+    - 47.82.10.0/23
+    - 47.82.12.0/23
+    - 47.82.128.0/17
+    - 47.82.128.0/18
+    - 47.82.14.0/23
+    - 47.82.192.0/18
+    - 47.82.32.0/19
+    - 47.82.32.0/21
+    - 47.82.40.0/21
+    - 47.82.48.0/21
+    - 47.82.56.0/21
+    - 47.82.64.0/18
+    - 47.82.64.0/19
+    - 47.82.8.0/23
+    - 47.82.96.0/19
+    - 47.83.0.0/16
+    - 47.83.0.0/17
+    - 47.83.128.0/17
+    - 47.83.32.0/21
+    - 47.83.40.0/21
+    - 47.83.48.0/21
+    - 47.83.56.0/21
+    - 47.84.0.0/16
+    - 47.84.0.0/17
+    - 47.84.128.0/17
+    - 47.84.144.0/21
+    - 47.84.152.0/21
+    - 47.84.160.0/21
+    - 47.84.168.0/21
+    - 47.85.0.0/16
+    - 47.85.0.0/17
+    - 47.85.112.0/22
+    - 47.85.112.0/23
+    - 47.85.114.0/23
+    - 47.85.128.0/17
+    - 47.86.0.0/16
+    - 47.86.0.0/17
+    - 47.86.128.0/17
+    - 47.87.0.0/18
+    - 47.87.0.0/19
+    - 47.87.128.0/18
+    - 47.87.128.0/19
+    - 47.87.160.0/19
+    - 47.87.192.0/22
+    - 47.87.192.0/23
+    - 47.87.194.0/23
+    - 47.87.196.0/22
+    - 47.87.196.0/23
+    - 47.87.198.0/23
+    - 47.87.200.0/22
+    - 47.87.200.0/23
+    - 47.87.202.0/23
+    - 47.87.204.0/22
+    - 47.87.204.0/23
+    - 47.87.206.0/23
+    - 47.87.208.0/22
+    - 47.87.208.0/23
+    - 47.87.210.0/23
+    - 47.87.212.0/22
+    - 47.87.212.0/23
+    - 47.87.214.0/23
+    - 47.87.216.0/22
+    - 47.87.216.0/23
+    - 47.87.218.0/23
+    - 47.87.220.0/22
+    - 47.87.220.0/23
+    - 47.87.222.0/23
+    - 47.87.224.0/22
+    - 47.87.224.0/23
+    - 47.87.226.0/23
+    - 47.87.228.0/22
+    - 47.87.228.0/23
+    - 47.87.230.0/23
+    - 47.87.232.0/22
+    - 47.87.232.0/23
+    - 47.87.234.0/23
+    - 47.87.236.0/22
+    - 47.87.236.0/23
+    - 47.87.238.0/23
+    - 47.87.240.0/22
+    - 47.87.240.0/23
+    - 47.87.242.0/23
+    - 47.87.32.0/19
+    - 47.87.64.0/18
+    - 47.87.64.0/19
+    - 47.87.96.0/19
+    - 47.88.0.0/17
+    - 47.88.0.0/18
+    - 47.88.109.0/24
+    - 47.88.128.0/17
+    - 47.88.128.0/18
+    - 47.88.135.0/24
+    - 47.88.192.0/18
+    - 47.88.41.0/24
+    - 47.88.42.0/24
+    - 47.88.43.0/24
+    - 47.88.64.0/18
+    - 47.89.0.0/18
+    - 47.89.0.0/19
+    - 47.89.100.0/24
+    - 47.89.101.0/24
+    - 47.89.102.0/24
+    - 47.89.103.0/24
+    - 47.89.104.0/21
+    - 47.89.104.0/22
+    - 47.89.108.0/22
+    - 47.89.122.0/24
+    - 47.89.123.0/24
+    - 47.89.124.0/23
+    - 47.89.124.0/24
+    - 47.89.125.0/24
+    - 47.89.128.0/18
+    - 47.89.128.0/19
+    - 47.89.160.0/19
+    - 47.89.192.0/18
+    - 47.89.192.0/19
+    - 47.89.221.0/24
+    - 47.89.224.0/19
+    - 47.89.32.0/19
+    - 47.89.72.0/22
+    - 47.89.72.0/23
+    - 47.89.74.0/23
+    - 47.89.76.0/22
+    - 47.89.76.0/23
+    - 47.89.78.0/23
+    - 47.89.80.0/23
+    - 47.89.82.0/23
+    - 47.89.84.0/24
+    - 47.89.88.0/22
+    - 47.89.88.0/23
+    - 47.89.90.0/23
+    - 47.89.92.0/22
+    - 47.89.92.0/23
+    - 47.89.94.0/23
+    - 47.89.96.0/24
+    - 47.89.97.0/24
+    - 47.89.98.0/23
+    - 47.89.99.0/24
+    - 47.90.0.0/17
+    - 47.90.0.0/18
+    - 47.90.128.0/17
+    - 47.90.128.0/18
+    - 47.90.172.0/24
+    - 47.90.173.0/24
+    - 47.90.174.0/24
+    - 47.90.175.0/24
+    - 47.90.192.0/18
+    - 47.90.64.0/18
+    - 47.91.0.0/19
+    - 47.91.0.0/20
+    - 47.91.112.0/20
+    - 47.91.128.0/17
+    - 47.91.128.0/18
+    - 47.91.16.0/20
+    - 47.91.192.0/18
+    - 47.91.32.0/19
+    - 47.91.32.0/20
+    - 47.91.48.0/20
+    - 47.91.64.0/19
+    - 47.91.64.0/20
+    - 47.91.80.0/20
+    - 47.91.96.0/19
+    - 47.91.96.0/20
+    - 5.181.224.0/23
+    - 59.82.136.0/23
+    - 8.208.0.0/16
+    - 8.208.0.0/17
+    - 8.208.0.0/18
+    - 8.208.0.0/19
+    - 8.208.128.0/17
+    - 8.208.141.0/24
+    - 8.208.32.0/19
+    - 8.209.0.0/19
+    - 8.209.0.0/20
+    - 8.209.128.0/18
+    - 8.209.128.0/19
+    - 8.209.16.0/20
+    - 8.209.160.0/19
+    - 8.209.192.0/18
+    - 8.209.192.0/19
+    - 8.209.224.0/19
+    - 8.209.36.0/23
+    - 8.209.36.0/24
+    - 8.209.37.0/24
+    - 8.209.38.0/23
+    - 8.209.38.0/24
+    - 8.209.39.0/24
+    - 8.209.40.0/22
+    - 8.209.40.0/23
+    - 8.209.42.0/23
+    - 8.209.44.0/22
+    - 8.209.44.0/23
+    - 8.209.46.0/23
+    - 8.209.48.0/20
+    - 8.209.48.0/21
+    - 8.209.56.0/21
+    - 8.209.64.0/18
+    - 8.209.64.0/19
+    - 8.209.96.0/19
+    - 8.210.0.0/16
+    - 8.210.0.0/17
+    - 8.210.128.0/17
+    - 8.210.240.0/24
+    - 8.211.0.0/17
+    - 8.211.0.0/18
+    - 8.211.104.0/21
+    - 8.211.128.0/18
+    - 8.211.128.0/19
+    - 8.211.160.0/19
+    - 8.211.192.0/18
+    - 8.211.192.0/19
+    - 8.211.224.0/19
+    - 8.211.226.0/24
+    - 8.211.64.0/18
+    - 8.211.80.0/21
+    - 8.211.88.0/21
+    - 8.211.96.0/21
+    - 8.212.0.0/17
+    - 8.212.0.0/18
+    - 8.212.128.0/18
+    - 8.212.128.0/19
+    - 8.212.160.0/19
+    - 8.212.192.0/18
+    - 8.212.192.0/19
+    - 8.212.224.0/19
+    - 8.212.64.0/18
+    - 8.213.0.0/17
+    - 8.213.0.0/18
+    - 8.213.128.0/19
+    - 8.213.128.0/20
+    - 8.213.144.0/20
+    - 8.213.160.0/21
+    - 8.213.160.0/22
+    - 8.213.164.0/22
+    - 8.213.176.0/20
+    - 8.213.176.0/21
+    - 8.213.184.0/21
+    - 8.213.192.0/18
+    - 8.213.192.0/19
+    - 8.213.224.0/19
+    - 8.213.251.0/24
+    - 8.213.252.0/24
+    - 8.213.253.0/24
+    - 8.213.64.0/18
+    - 8.214.0.0/16
+    - 8.214.0.0/17
+    - 8.214.128.0/17
+    - 8.215.0.0/16
+    - 8.215.0.0/17
+    - 8.215.128.0/17
+    - 8.215.160.0/24
+    - 8.215.162.0/23
+    - 8.215.168.0/24
+    - 8.215.169.0/24
+    - 8.216.0.0/17
+    - 8.216.0.0/18
+    - 8.216.128.0/17
+    - 8.216.128.0/18
+    - 8.216.148.0/24
+    - 8.216.192.0/18
+    - 8.216.64.0/18
+    - 8.216.69.0/24
+    - 8.216.74.0/24
+    - 8.217.0.0/16
+    - 8.217.0.0/17
+    - 8.217.128.0/17
+    - 8.218.0.0/16
+    - 8.218.0.0/17
+    - 8.218.128.0/17
+    - 8.219.0.0/16
+    - 8.219.0.0/17
+    - 8.219.128.0/17
+    - 8.219.40.0/21
+    - 8.220.116.0/24
+    - 8.220.128.0/18
+    - 8.220.128.0/19
+    - 8.220.147.0/24
+    - 8.220.160.0/19
+    - 8.220.192.0/18
+    - 8.220.192.0/19
+    - 8.220.224.0/19
+    - 8.220.229.0/24
+    - 8.220.64.0/18
+    - 8.220.64.0/19
+    - 8.220.96.0/19
+    - 8.221.0.0/17
+    - 8.221.0.0/18
+    - 8.221.0.0/21
+    - 8.221.128.0/17
+    - 8.221.128.0/18
+    - 8.221.184.0/22
+    - 8.221.188.0/22
+    - 8.221.192.0/18
+    - 8.221.192.0/21
+    - 8.221.200.0/21
+    - 8.221.208.0/21
+    - 8.221.216.0/21
+    - 8.221.48.0/21
+    - 8.221.56.0/21
+    - 8.221.64.0/18
+    - 8.221.8.0/21
+    - 8.222.0.0/20
+    - 8.222.0.0/21
+    - 8.222.112.0/20
+    - 8.222.128.0/17
+    - 8.222.128.0/18
+    - 8.222.16.0/20
+    - 8.222.16.0/21
+    - 8.222.192.0/18
+    - 8.222.24.0/21
+    - 8.222.32.0/20
+    - 8.222.32.0/21
+    - 8.222.40.0/21
+    - 8.222.48.0/20
+    - 8.222.48.0/21
+    - 8.222.56.0/21
+    - 8.222.64.0/20
+    - 8.222.64.0/21
+    - 8.222.72.0/21
+    - 8.222.8.0/21
+    - 8.222.80.0/20
+    - 8.222.80.0/21
+    - 8.222.88.0/21
+    - 8.222.96.0/19
+    - 8.222.96.0/20
+    - 8.223.0.0/17
+    - 8.223.0.0/18
+    - 8.223.128.0/17
+    - 8.223.128.0/18
+    - 8.223.192.0/18
+    - 8.223.64.0/18

docs/docs/CHANGELOG.md

@@ -12,7 +12,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 ## [Unreleased]
 
 <!-- This changes the project to: -->
-
+- Added a missing link to the Caddy installation environment in the installation documentation.
 - Downstream consumers can change the default [log/slog#Logger](https://pkg.go.dev/log/slog#Logger) instance that Anubis uses by setting `opts.Logger` to your slog instance of choice ([#864](https://github.com/TecharoHQ/anubis/issues/864)).
 - The [Thoth client](https://anubis.techaro.lol/docs/admin/thoth) is now public in the repo instead of being an internal package.
 - [Custom-AsyncHttpClient](https://github.com/AsyncHttpClient/async-http-client)'s default User-Agent has an increased weight by default ([#852](https://github.com/TecharoHQ/anubis/issues/852)).
@@ -39,12 +39,14 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 - The word "hack" has been removed from the translation strings for Anubis due to incidents involving people misunderstanding that word and sending particularly horrible things to the project lead over email.
 - Bump AI-robots.txt to version 1.39
 - Add a default block rule for Huawei Cloud.
+- Add a default block rule for Alibaba Cloud.
+- Add X-Request-URI support so that Subrequest Authentication has path support.
 
 ### Security-relevant changes
 
 #### Fix potential double-spend for challenges
 
-Anubis operates by issuing a challenge and having the client present a solution for that challenge. Challenges are identified by a unique UUID, which is tored in the database.
+Anubis operates by issuing a challenge and having the client present a solution for that challenge. Challenges are identified by a unique UUID, which is stored in the database.
 
 The problem is that a challenge could potentially be used twice by a dedicated attacker making a targeted attack against Anubis. Challenge records did not have a "spent" or "used" field. In total, a dedicated attacker could solve a challenge once and reuse that solution across multiple sessions in order to mint additional tokens.
 

docs/docs/admin/frameworks/wordpress.mdx

@@ -1,6 +1,6 @@
-# Wordpress
+# WordPress
 
-Wordpress is the most popular blog engine on the planet.
+WordPress is the most popular blog engine on the planet.
 
 ## Using a multi-site setup with Anubis
 
@@ -27,7 +27,7 @@ flowchart LR
     US --> |whatever you're doing| B
 ```
 
-Wordpress may not realize that the underlying connection is being done over HTTPS. This could lead to a redirect loop in the `/wp-admin/` routes. In order to fix this, add the following to your `wp-config.php` file:
+WordPress may not realize that the underlying connection is being done over HTTPS. This could lead to a redirect loop in the `/wp-admin/` routes. In order to fix this, add the following to your `wp-config.php` file:
 
 ```php
 if (isset($_SERVER['HTTP_X_FORWARDED_PROTO']) && $_SERVER['HTTP_X_FORWARDED_PROTO'] === 'https') {
@@ -36,4 +36,4 @@ if (isset($_SERVER['HTTP_X_FORWARDED_PROTO']) && $_SERVER['HTTP_X_FORWARDED_PROT
 }
 ```
 
-This will make Wordpress think that your connection is over HTTPS instead of plain HTTP.
+This will make WordPress think that your connection is over HTTPS instead of plain HTTP.

docs/docs/admin/installation.mdx

@@ -178,6 +178,7 @@ Alternatively here is a key generated by your browser:
 To get Anubis filtering your traffic, you need to make sure it's added to your HTTP load balancer or platform configuration. See the [environments category](/docs/category/environments) for detailed information on individual environments.
 
 - [Apache](./environments/apache.mdx)
+- [Caddy](./environments/caddy.mdx)
 - [Docker compose](./environments/docker-compose.mdx)
 - [Kubernetes](./environments/kubernetes.mdx)
 - [Nginx](./environments/nginx.mdx)

lib/policy/checker.go

@@ -102,6 +102,13 @@ func NewPathChecker(rexStr string) (checker.Impl, error) {
 }
 
 func (pc *PathChecker) Check(r *http.Request) (bool, error) {
+	originalUrl := r.Header.Get("X-Original-URI")
+	if originalUrl != "" {
+		if pc.regexp.MatchString(originalUrl) {
+			return true, nil
+		}
+	}
+
 	if pc.regexp.MatchString(r.URL.Path) {
 		return true, nil
 	}

lib/policy/checker_test.go

@@ -198,3 +198,96 @@ func TestHeaderExistsChecker(t *testing.T) {
 		})
 	}
 }
+
+func TestPathChecker_XOriginalURI(t *testing.T) {
+	tests := []struct {
+		name          string
+		regex         string
+		xOriginalURI  string
+		urlPath       string
+		headerKey     string
+		expectedMatch bool
+		expectError   bool
+	}{
+		{
+			name:          "X-Original-URI matches regex (with trailing space - current typo)",
+			regex:         "^/api/.*",
+			xOriginalURI:  "/api/users",
+			urlPath:       "/different/path",
+			headerKey:     "X-Original-URI",
+			expectedMatch: true,
+			expectError:   false,
+		},
+		{
+			name:          "X-Original-URI doesn't match, falls back to URL.Path",
+			regex:         "^/admin/.*",
+			xOriginalURI:  "/api/users",
+			urlPath:       "/admin/dashboard",
+			headerKey:     "X-Original-URI",
+			expectedMatch: true,
+			expectError:   false,
+		},
+		{
+			name:          "Neither X-Original-URI nor URL.Path match",
+			regex:         "^/admin/.*",
+			xOriginalURI:  "/api/users",
+			urlPath:       "/public/info",
+			headerKey:     "X-Original-URI ",
+			expectedMatch: false,
+			expectError:   false,
+		},
+		{
+			name:          "Empty X-Original-URI, URL.Path matches",
+			regex:         "^/static/.*",
+			xOriginalURI:  "",
+			urlPath:       "/static/css/style.css",
+			headerKey:     "X-Original-URI",
+			expectedMatch: true,
+			expectError:   false,
+		},
+		{
+			name:          "Complex regex matching X-Original-URI",
+			regex:         `^/api/v[0-9]+/(users|posts)/[0-9]+$`,
+			xOriginalURI:  "/api/v1/users/123",
+			urlPath:       "/different",
+			headerKey:     "X-Original-URI",
+			expectedMatch: true,
+			expectError:   false,
+		},
+	}
+
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			// Create the PathChecker
+			pc, err := NewPathChecker(tt.regex)
+			if err != nil {
+				if !tt.expectError {
+					t.Fatalf("NewPathChecker() unexpected error: %v", err)
+				}
+				return
+			}
+
+			if tt.expectError {
+				t.Fatal("NewPathChecker() expected error but got none")
+			}
+
+			req, err := http.NewRequest("GET", "http://example.com"+tt.urlPath, nil)
+			if err != nil {
+				t.Fatalf("Failed to create request: %v", err)
+			}
+
+			if tt.xOriginalURI != "" {
+				req.Header.Set(tt.headerKey, tt.xOriginalURI)
+			}
+
+			match, err := pc.Check(req)
+			if err != nil {
+				t.Fatalf("Check() unexpected error: %v", err)
+			}
+
+			if match != tt.expectedMatch {
+				t.Errorf("Check() = %v, want %v", match, tt.expectedMatch)
+			}
+		})
+	}
+}

package-lock.json

@@ -1,12 +1,12 @@
 {
   "name": "@techaro/anubis",
-  "version": "1.21.3",
+  "version": "1.22.0-pre1",
   "lockfileVersion": 3,
   "requires": true,
   "packages": {
     "": {
       "name": "@techaro/anubis",
-      "version": "1.21.3",
+      "version": "1.22.0-pre1",
       "license": "ISC",
       "dependencies": {
         "@aws-crypto/sha256-js": "^5.2.0"

package.json

@@ -1,6 +1,6 @@
 {
   "name": "@techaro/anubis",
-  "version": "1.21.3",
+  "version": "1.22.0-pre1",
   "description": "",
   "main": "index.js",
   "scripts": {
@@ -30,4 +30,4 @@
   "dependencies": {
     "@aws-crypto/sha256-js": "^5.2.0"
   }
-}
+}