AWS Security ChangesHomeSearch

AWS apprunner documentation change

Service: apprunner · 2025-09-19 · Documentation low

File: apprunner/latest/dg/waf.md

Summary

Added JSON example of IAM policy for AWS WAF integration with App Runner

Security assessment

Provides a security-related IAM policy template for WAF integration but doesn't address any specific security vulnerability

Diff

diff --git a/apprunner/latest/dg/waf.md b/apprunner/latest/dg/waf.md
index c0cd43ef2..c2aeed77a 100644
--- a//apprunner/latest/dg/waf.md
+++ b//apprunner/latest/dg/waf.md
@@ -120,0 +121,28 @@ The following is an example of the updated IAM policy for AWS WAF. This IAM poli
+JSON
+    
+
+****
+    
+    
+    
+    {
+       "Version":"2012-10-17",		 	 	 
+       "Statement":[
+          {
+             "Effect":"Allow",
+             "Action":[
+                "wafv2:ListResourcesForWebACL",
+                "wafv2:GetWebACLForResource",
+                "wafv2:AssociateWebACL",
+                "wafv2:DisassociateWebACL",
+                "apprunner:ListAssociatedServicesForWebAcl",
+                "apprunner:DescribeWebAclForService",
+                "apprunner:AssociateWebAcl",
+                "apprunner:DisassociateWebAcl"
+             ],
+             "Resource":"*"
+          }
+       ]
+    }
+    
+