AWS waf documentation change
Summary
Added a changelog entry for the Core Rule Set (CRS) managed rule group, noting the release of static version 1.21 with improved detection signatures for rules related to restricted extensions.
Security assessment
This is a routine update log for a security service (AWS WAF). It documents an improvement to detection capabilities for rules that block requests with dangerous file extensions, which is a security feature. The update improves protection against common web attacks, but the changelog entry itself is informational and not evidence of a specific, addressed security incident.
Diff
diff --git a/waf/latest/developerguide/aws-managed-rule-groups-changelog.md b/waf/latest/developerguide/aws-managed-rule-groups-changelog.md index 18e7764bd..33fb28195 100644 --- a//waf/latest/developerguide/aws-managed-rule-groups-changelog.md +++ b//waf/latest/developerguide/aws-managed-rule-groups-changelog.md @@ -22,0 +23,6 @@ Rule group and rules | Description | Date +[Core rule set (CRS) managed rule group](./aws-managed-rule-groups-baseline.html#aws-managed-rule-groups-baseline-crs) + + * `RestrictedExtensions_QUERYARGUMENTS` + * `RestrictedExtensions_URIPATH` + +| Released static version 1.21 of this rule group. Improved detection signatures for these rules. | 2026-04-06