AWS waf documentation change
Summary
Added clarification about AWS WAF size limits applying only when inspecting all headers, not single headers
Security assessment
This change clarifies WAF inspection behavior documentation. It helps users understand security feature limitations but doesn't indicate a security vulnerability was discovered or fixed. It's a documentation improvement about existing security controls.
Diff
diff --git a/waf/latest/developerguide/waf-oversize-request-components.md b/waf/latest/developerguide/waf-oversize-request-components.md index 5e9bc2ae6..8230d3c5a 100644 --- a//waf/latest/developerguide/waf-oversize-request-components.md +++ b//waf/latest/developerguide/waf-oversize-request-components.md @@ -26,0 +27,2 @@ The component inspection size limits are as follows: +These limits apply when you inspect all headers in a request. When you inspect a single header, AWS WAF can inspect the full contents of that header without these size or count restrictions. +