AWS waf documentation change
Summary
Added announcement about new console experience and updated references to include 'protection pack' terminology alongside web ACL capacity units (WCU). Modified testing guidance to include protection packs.
Security assessment
The changes primarily introduce UI updates and terminology changes ('protection pack' references). While AWS Managed Rules relate to security, there's no evidence these documentation updates address specific vulnerabilities or security incidents. The modifications appear focused on feature announcements and terminology alignment.
Diff
diff --git a/waf/latest/developerguide/aws-managed-rule-groups.md b/waf/latest/developerguide/aws-managed-rule-groups.md index c2f7d89ef..04a195261 100644 --- a//waf/latest/developerguide/aws-managed-rule-groups.md +++ b//waf/latest/developerguide/aws-managed-rule-groups.md @@ -4,0 +5,4 @@ +**Introducing a new console experience for AWS WAF** + +You can now use the updated experience to access AWS WAF functionality anywhere in the console. For more details, see [Working with the updated console experience](./working-with-console.html). + @@ -9 +13 @@ This section explains what AWS Managed Rules for AWS WAF is. -AWS Managed Rules for AWS WAF is a managed service that provides protection against application vulnerabilities or other unwanted traffic. You have the option of selecting one or more rule groups from AWS Managed Rules for each web ACL, up to the maximum web ACL capacity unit (WCU) limit. +AWS Managed Rules for AWS WAF is a managed service that provides protection against application vulnerabilities or other unwanted traffic. You have the option of selecting one or more rule groups from AWS Managed Rules for each web ACL, up to the maximum protection pack or web ACL capacity unit (WCU) limit. @@ -13 +17 @@ AWS Managed Rules for AWS WAF is a managed service that provides protection agai -Before using any managed rule group in production, test it in a non-production environment according to the guidance at [Testing and tuning your AWS WAF protections](./web-acl-testing.html). Follow the testing and tuning guidance when you add a rule group to your web ACL, to test a new version of a rule group, and whenever a rule group isn't handling your web traffic as you need it to. +Before using any managed rule group in production, test it in a non-production environment according to the guidance at [Testing and tuning your AWS WAF protections](./web-acl-testing.html). Follow the testing and tuning guidance when you add a rule group to your protection pack or web ACL, to test a new version of a rule group, and whenever a rule group isn't handling your web traffic as you need it to.