Product guides

What's New

Suggest Edits

Version 1.2.0

Released 2024-10-10

  • Added GraphQL query keyword extraction via string/regex (px_graphql_keywords) and custom function (px_extract_graphql_keywords)
  • Added support for cookie secret rotation
  • Modified telemetry activity to include all types of config and include redacted sensitive configuration fields
  • Changed default value for px_bypass_monitor_header changed from empty string to "x-px-block"
  • Changed configuration px_sensitive_graphql_operation_names expanded to include regular expressions and applies to extracted GraphQL keywords as well
  • Fixed issue where unvalidated _pxvid value was added to the captcha page
  • Fixed issue where regular expressions occasionally failed on calls to test() due to global flag
  • Fixed BodyLoginSuccessfulParser bug by implementing text() method in OutgoingResponse
  • Replaced \\/ with / in the telemetry regex fields value
  • Fixed GraphQL operation name extraction issue

Version 1.1.0

Released 2024-03-06

  • Added support for URL decode reserved characters feature
  • Added risk_start_time and enforcer_start_time fields to enforcer activities
  • Added base64-encoded URL and HTTP method to captcha script query parameters on block pages
  • Added configuration for adding the Secure flag to PXHD cookie
  • Added custom function configurations for filtered, enforced, monitored, and sensitive requests
  • Changed Bot Defender captcha page to include client-side first party timeout
  • Fixed JSON parsing issue with generated package.json for CommonJS library build
  • Fixed inaccurate types for px_filter_by_route, px_monitored_routes, px_enforced_routes, px_sensitive_routes, px_graphql_routes configs to be Array<string | RegExp>

Version 1.0.0

Released 2023-10-24

  • Added support for Credential Intelligence
  • Added support for Account Defender (user identifiers)
  • Added support for CORS
  • Added support for custom first party endpoints
  • Added support for header-based logger
  • Updated HUMAN JavaScript Core to v0.9.0
  • Updated Fastly JS Compute SDK to v3.4.0

Version 0.2.0

Released 2023-03-20

  • Updated HUMAN JavaScript Core to v0.3.0
  • Updated additional dependencies
  • Added support for GraphQL including:
    • Customized GraphQL routes
    • Multiple GraphQL operations
    • Sensitive GraphQL operations by name or type
  • Fixed minor fixes to align activities to spec (px_orig_cookie, async activity headers)
  • Fixed bug that disregarded block action returned from risk v2 response
  • Custom cookie header is processed in addition to (not instead of) default cookie header
  • Custom cookie header default value has been set to x-px-cookies

Version 0.1.0

Released 2023-02-10

  • Support for a variety of basic and advanced features including:
    • Additional activity handler
    • Advanced blocking response
    • Block activity
    • Block page captcha
    • Block page rate limit
    • Bypass monitor header
    • Client IP extraction
    • Cookie v2
    • Custom cookie header
    • CSS ref
    • Custom logo
    • Custom parameters
    • Filter by extension
    • Filter by IP
    • Filter by HTTP method
    • Filter by route
    • Filter by user agent
    • First party
    • JS ref
    • Logger
    • Mobile support
    • Module enable
    • Module mode
    • Monitored routes
    • Page requested activity
    • HUMANDE
    • HUMANHD
    • Risk API
    • Sensitive headers
    • Sensitive routes
    • Telemetry command
    • VID extraction

Updated 12 days ago