AWS Security ChangesHomeSearch

AWS AWSCloudFormation documentation change

Service: AWSCloudFormation · 2025-03-30 · Documentation low

File: AWSCloudFormation/latest/UserGuide/aws-resource-wafv2-webacl.md

Summary

Added AWS Amplify application to list of protectable resources and CLOUDFRONT usage note

Security assessment

Expands documentation for WAF Web ACL associations to include AWS Amplify, enhancing security feature documentation

Diff

diff --git a/AWSCloudFormation/latest/UserGuide/aws-resource-wafv2-webacl.md b/AWSCloudFormation/latest/UserGuide/aws-resource-wafv2-webacl.md
index 8e97e0259..0bab71642 100644
--- a/AWSCloudFormation/latest/UserGuide/aws-resource-wafv2-webacl.md
+++ b/AWSCloudFormation/latest/UserGuide/aws-resource-wafv2-webacl.md
@@ -15 +15 @@ The rules in a web ACL can be a combination of explicitly defined rules and rule
-You can associate a web ACL with one or more AWS resources to protect. The resources can be an Amazon CloudFront distribution, an Amazon API Gateway REST API, an Application Load Balancer, an AWS AppSync GraphQL API , an Amazon Cognito user pool, an AWS App Runner service, or an AWS Verified Access instance. 
+You can associate a web ACL with one or more AWS resources to protect. The resources can be an Amazon CloudFront distribution, an Amazon API Gateway REST API, an Application Load Balancer, an AWS AppSync GraphQL API , an Amazon Cognito user pool, an AWS App Runner service, an AWS Amplify application, or an AWS Verified Access instance. 
@@ -208 +208 @@ _Required_ : No
-Specifies whether this is for an Amazon CloudFront distribution or for a regional application. A regional application can be an Application Load Balancer (ALB), an Amazon API Gateway REST API, an AWS AppSync GraphQL API, an Amazon Cognito user pool, an AWS App Runner service, or an AWS Verified Access instance. Valid Values are `CLOUDFRONT` and `REGIONAL`.
+Specifies whether this is for an Amazon CloudFront distribution or for a regional application. For an AWS Amplify application, use `CLOUDFRONT`. A regional application can be an Application Load Balancer (ALB), an Amazon API Gateway REST API, an AWS AppSync GraphQL API, an Amazon Cognito user pool, an AWS App Runner service, or an AWS Verified Access instance. Valid Values are `CLOUDFRONT` and `REGIONAL`.