From 93390169104e2b7e37bd64158d81c1ab6a4c7289 Mon Sep 17 00:00:00 2001
From: Xe Iaso <me@xeiaso.net>
Date: Mon, 3 Nov 2025 16:24:33 -0500
Subject: [PATCH] chore(default-config): add chromey version number check

Signed-off-by: Xe Iaso <me@xeiaso.net>
---
 data/botPolicies.yaml         | 10 ++++++++++
 data/meta/default-config.yaml | 10 ++++++++++
 docs/docs/CHANGELOG.md        |  1 +
 3 files changed, 21 insertions(+)

diff --git a/data/botPolicies.yaml b/data/botPolicies.yaml
index 9cdf68fc..3af7b699 100644
--- a/data/botPolicies.yaml
+++ b/data/botPolicies.yaml
@@ -134,6 +134,16 @@ bots:
     weight:
       adjust: -5
 
+  # Chrome should send versions of form 130.0.0.0 in its user agent string.
+  - name: chrome-version-simplified
+    expression:
+      all:
+        - userAgent.contains("Chrome")
+        - userAgent.matches("Chrome/1[3-9][0-9]\\.0\\.0\\.0")
+    action: WEIGH
+    weight:
+      adjust: -5
+
   - name: should-have-accept
     expression: '!("Accept" in headers)'
     action: WEIGH
diff --git a/data/meta/default-config.yaml b/data/meta/default-config.yaml
index 1b1ad1e3..9d9c126a 100644
--- a/data/meta/default-config.yaml
+++ b/data/meta/default-config.yaml
@@ -118,6 +118,16 @@
   weight:
     adjust: -5
 
+# Chrome should send versions of form 130.0.0.0 in its user agent string.
+- name: chrome-version-simplified
+  expression:
+    all:
+      - userAgent.contains("Chrome")
+      - userAgent.matches("Chrome/1[3-9][0-9]\\.0\\.0\\.0")
+  action: WEIGH
+  weight:
+    adjust: -5
+
 - name: should-have-accept
   expression: '!("Accept" in headers)'
   action: WEIGH
diff --git a/docs/docs/CHANGELOG.md b/docs/docs/CHANGELOG.md
index 44ff6280..bae04f73 100644
--- a/docs/docs/CHANGELOG.md
+++ b/docs/docs/CHANGELOG.md
@@ -15,6 +15,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 - Fix `SERVE_ROBOTS_TXT` setting file after the double slash fix broke it.
 - Remove the default configuration rule to block Tencent cloud. If users see abuse from Tencent cloud IP ranges, please contact abuse@tencent.com and mention that you are using Anubis to protect your services. Please include source IP address, source port, timestamp, target IP address, target port, request headers (including the User-Agent header), and target endpoints/patterns.
+- Add a deweighing rule that removes 5 weight points if a client uses Google Chrome and the version number in the user agent is "chromey enough".
 
 ## v1.23.0: Lyse Hext