fix(default-config): sometimes browsers don't send Upgrade-Insecure-Requests (#1189)

Signed-off-by: Xe Iaso <me@xeiaso.net>

data/botPolicies.yaml

@@ -107,7 +107,6 @@ bots:
         - '"Sec-Fetch-Dest" in headers'
         - '"Sec-Fetch-Mode" in headers'
         - '"Sec-Fetch-Site" in headers'
-        - '"Upgrade-Insecure-Requests" in headers'
         - '"Accept-Encoding" in headers'
         - '( headers["Accept-Encoding"].contains("zstd") || headers["Accept-Encoding"].contains("br") )'
         - '"Accept-Language" in headers'
@@ -115,6 +114,13 @@ bots:
     weight:
       adjust: -10
 
+  # The Upgrade-Insecure-Requests header is typically sent by browsers, but not always
+  - name: upgrade-insecure-requests
+    expression: '"Upgrade-Insecure-Requests" in headers'
+    action: WEIGH
+    weight:
+      adjust: -2
+
   # Chrome should behave like Chrome
   - name: chrome-is-proper
     expression:

data/meta/default-config.yaml

@@ -91,7 +91,6 @@
       - '"Sec-Fetch-Dest" in headers'
       - '"Sec-Fetch-Mode" in headers'
       - '"Sec-Fetch-Site" in headers'
-      - '"Upgrade-Insecure-Requests" in headers'
       - '"Accept-Encoding" in headers'
       - '( headers["Accept-Encoding"].contains("zstd") || headers["Accept-Encoding"].contains("br") )'
       - '"Accept-Language" in headers'
@@ -99,6 +98,13 @@
   weight:
     adjust: -10
 
+# The Upgrade-Insecure-Requests header is typically sent by browsers, but not always
+- name: upgrade-insecure-requests
+  expression: '"Upgrade-Insecure-Requests" in headers'
+  action: WEIGH
+  weight:
+    adjust: -2
+
 # Chrome should behave like Chrome
 - name: chrome-is-proper
   expression: