What is the name of the domain?
dom
What is the issue you’re encountering
We need that Cloudflare code not be injected into the html responses of some specific URLs. Our web validates hash of body response in client-side, but content inyected by Cloudflare is breaking integrity We have only been able to globally disable Bots–>JavaScript Detections but not through specific rules in Configuration Rules or WAF CutomRules. We see that it matches our specific exception rule, with all feature skipped, but we still see Cloudflare javascript code added in the html responses. We wouldn’t want to leave this feature disabled for the entire domain when we only require it for a few URLs. Note: We are using Business Plan
What are the steps to reproduce the issue?
Visit index.html and in body response footer we saw javascript inyected by Cloudlfare. This causes the client-side application to re-request the html indefinitely because the integrity hash is always broken
