yeah i've seen that on pages that contain the word 'script' for example
the publish issue does seem to be content-specific
can you get any more information? what unix command does it think is being injected?
I think it’s mad because they have donate buttons in the content area
^ thats most likely it, yeah
yeah those are things that aren't security-friendly
i’m still very new to ModSecurity, so what will follow are probably some fairly stupid questions, but ¯_(ツ)_/¯