AWS Security ChangesHomeSearch

AWS config documentation change

Service: config · 2026-01-13 · Documentation low

File: config/latest/developerguide/alb-waf-enabled.md

Summary

Updated rule description and region exceptions; removed trailing period from parameter

Security assessment

Clarifies WAF terminology and updates region coverage without security vulnerability context.

Diff

diff --git a/config/latest/developerguide/alb-waf-enabled.md b/config/latest/developerguide/alb-waf-enabled.md
index 682086422..f88e97f16 100644
--- a//config/latest/developerguide/alb-waf-enabled.md
+++ b//config/latest/developerguide/alb-waf-enabled.md
@@ -9 +9 @@ AWS CloudFormation template
-Checks if AWS WAF is enabled on Application Load Balancers (ALBs). The rule is NON_COMPLIANT if key: waf.enabled is set to false. 
+Checks if Web Application Firewall (WAF) is enabled on Application Load Balancers (ALBs). This rule is NON_COMPLIANT if key: waf.enabled is set to false. 
@@ -17 +17 @@ Checks if AWS WAF is enabled on Application Load Balancers (ALBs). The rule is N
-**AWS Region:** All supported AWS regions except AWS Secret - West Region
+**AWS Region:** All supported AWS regions except China (Beijing), Asia Pacific (Thailand), AWS GovCloud (US-East), AWS GovCloud (US-West), Mexico (Central), Asia Pacific (Taipei), China (Ningxia) Region
@@ -25 +25 @@ Type: CSV
-Comma separated list of web ACL ID (for WAF) or web ACL ARN (for WAFV2) checking for ALB association.
+Comma separated list of web ACL ID (for WAF) or web ACL ARN (for WAFV2) checking for ALB association