AWS Security ChangesHomeSearch

AWS waf documentation change

Service: waf · 2025-04-28 · Documentation low

File: waf/latest/developerguide/security-group-policies-audit.md

Summary

Added caveat about peer security group references in audit policies

Security assessment

Documents policy limitations rather than addressing security vulnerabilities

Diff

diff --git a/waf/latest/developerguide/security-group-policies-audit.md b/waf/latest/developerguide/security-group-policies-audit.md
index 90d25a941..4468c8c54 100644
--- a//waf/latest/developerguide/security-group-policies-audit.md
+++ b//waf/latest/developerguide/security-group-policies-audit.md
@@ -4,0 +5,2 @@
+Caveats and limitations
+
@@ -71,0 +74,6 @@ Replica security groups are not customer-created and so aren't eligible to be di
+## Caveats and limitations for content audit security group policies
+
+You cannot reference peer security groups in a content audit security group policy.
+
+For information on other considerations across all Firewall Manager security groups, see [Security group policy caveats and limitations](./security-group-policies.html#security-groups-limitations).
+