[Mod-security-developers] Finding triggered RuleIds

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

We are integrating ModSecurity into our product as a library, and using it
to evaluate owasp crs rules.

For anyone else doing this, can you explain how your calling code is
determining which ruleId(s) were triggered as a result of
calling processRequestHeaders(), processRequestBody(),
processResponseHeaders(), processResponseBody()?

Curious how this is being done in ModSec 3.0.2 and if it is done
differently with version 3.0.3.