How to upgrade ModSecurity rules to the latest version of OWASP CRS v4.14.0

Currently, the version of OpenLiteSpeed in use is v1.8.3, which is the latest version, and version v1.8.2 already includes libmodsecurity v3.0.13, fully supporting OWASP CRS rules for version V4. However, the rules built into the CyberPanel are outdated, using version V3.

The OWASP CRS documentation recommends using the latest version of the OWASP CRS rules in production environments. Version V4 is frequently updated, while it’s clear that version V3 is already outdated.

I have tried replacing it with the newer version, but it didn’t work. Could the panel administrators provide some assistance? It would be great if you could create a document that allows users to update the OWASP CRS version on their own. After all, OWASP CRS is free, and this should not be too difficult, but most users are beginners. Thank you very much!

The V4 version has removed or consolidated some rules from the V3 version. Directly replacing the rule files will cause some rules to be unable to be applied. The modSec.py file hardcodes the rule configuration.