We are getting a lot of attempts for pages on our site with /%20 repeated varying number of times at the end of the URL path. For example:
I can catch and discard them upstream with this location regex:
I have this at the moment as a cloudflare firewall rule to catch the traffic earlier - but it seems a bit loose to me:
(http.request.uri.path contains "/ ")
Is there a Cloudflare managed rule that covers this?