AWS config documentation change
Summary
Updated rule description and region exceptions; removed trailing period from parameter
Security assessment
Clarifies WAF terminology and updates region coverage without security vulnerability context.
Diff
diff --git a/config/latest/developerguide/alb-waf-enabled.md b/config/latest/developerguide/alb-waf-enabled.md index 682086422..f88e97f16 100644 --- a//config/latest/developerguide/alb-waf-enabled.md +++ b//config/latest/developerguide/alb-waf-enabled.md @@ -9 +9 @@ AWS CloudFormation template -Checks if AWS WAF is enabled on Application Load Balancers (ALBs). The rule is NON_COMPLIANT if key: waf.enabled is set to false. +Checks if Web Application Firewall (WAF) is enabled on Application Load Balancers (ALBs). This rule is NON_COMPLIANT if key: waf.enabled is set to false. @@ -17 +17 @@ Checks if AWS WAF is enabled on Application Load Balancers (ALBs). The rule is N -**AWS Region:** All supported AWS regions except AWS Secret - West Region +**AWS Region:** All supported AWS regions except China (Beijing), Asia Pacific (Thailand), AWS GovCloud (US-East), AWS GovCloud (US-West), Mexico (Central), Asia Pacific (Taipei), China (Ningxia) Region @@ -25 +25 @@ Type: CSV -Comma separated list of web ACL ID (for WAF) or web ACL ARN (for WAFV2) checking for ALB association. +Comma separated list of web ACL ID (for WAF) or web ACL ARN (for WAFV2) checking for ALB association