AWS waf documentation change
Summary
Added caveat about peer security group references in audit policies
Security assessment
Documents policy limitations rather than addressing security vulnerabilities
Diff
diff --git a/waf/latest/developerguide/security-group-policies-audit.md b/waf/latest/developerguide/security-group-policies-audit.md index 90d25a941..4468c8c54 100644 --- a//waf/latest/developerguide/security-group-policies-audit.md +++ b//waf/latest/developerguide/security-group-policies-audit.md @@ -4,0 +5,2 @@ +Caveats and limitations + @@ -71,0 +74,6 @@ Replica security groups are not customer-created and so aren't eligible to be di +## Caveats and limitations for content audit security group policies + +You cannot reference peer security groups in a content audit security group policy. + +For information on other considerations across all Firewall Manager security groups, see [Security group policy caveats and limitations](./security-group-policies.html#security-groups-limitations). +