Enforcer frameworksFastly VCLChangelogSubscribe via RSSApril 27Version 12.4.2Send original vid from cookie on all activities under orig_cookie_vidFebruary 11Version 12.4.1Adjusted Telemetry by risk - adjusted telemetry requested flag on risk_api responseDecember 10Version 12.4.0Added Header Based Logger support Added Telemetry by Risk support Correct enforcer_start_time and risk_start_time on all enforcer activitiesNovember 18Version 12.3.0Added response custom parameters feature (px_custom_add_response_custom_parameters custom subroutine)September 16Version 12.2.1Added px_cookie field on block activityAugust 19Version 12.2.0Updated MAIN.vcl boilerplate Support for adding a data enrichment header (new px_data_enrichment_header_name configuration) Added Documentation enforcement workflow - verify that the documentation is…June 15Version 12.1.5Send default config values on Telemetry activity even if not set in enforcer config config explicitlyJune 5Version 12.1.4Added Cross Tab Session cookie support on activities Fixed the commented out example for the px_custom_block_page_content subroutine in the VCL templateMay 4Version 12.1.3Added JA4 fingerprint data on risk_api and async activitiesApril 7Version 12.1.2Fixed an issue where remote configuration list comparisons returned true for all requests when configured via remote config: sensitive, monitored, and enforced routes filtered routes, methods, ips,…March 4Version 12.1.1Aligned remote config ID field on all activities (px_remote_config_id -> remote_config_id) Added remote config version field on all activitiesFebruary 18Version 12.1.0Added npm tool for building the VCLs and manifests Added the px_remote_config_id field for all activities Fixed an issue in the px_private dictionary output manifest file where the write_only…December 16December 16, 2024Version 12.0.1 Fixed Fixed a bug where sensitive routes ignores the risk response when receiving requests with a low-score cookieNovember 24November 24, 2024Version 12.0.0 Added Added default values for px_sensitive_headers and removed px_sensitive_headers_enabled header. Changed We have considerably reduced workspace usage in this version following…October 14Version 11.1.5Fixed inaccurate simulated_block field when enforced routes are configured Changed async activity and telemetry HTTPS logging endpoints to use collector-<app_id>.perimeterx.net instead of…September 25Version 11.1.4Removed b param from block page to prevent header / workspace overflow caused by excessively long URLsSeptember 8Version 11.1.3Reduced HUMAN workspace footprint (in terms of headers count and workspace free bytes) Set complex headers once, instead of multiple times during the enforcer flow Remove potential large size headers…August 20Version 11.1.2Reduced workspace footprint by moving request cookie names from px-ctx header to separate px-req-cookie-names headerAugust 13Version 11.1.1Added legacy and next-gen WAF bypass for first party requests Support cookie secret rotation Fix block-result-header not reaching to the origin bugJuly 1July 1, 2024Version 11.1.0 Changed Moved px_fastly_api_token from px_configs table to new private dictionary px_private
