AWS Security ChangesHomeSearch

AWS waf documentation change

Service: waf · 2026-04-19 · Documentation low

File: waf/latest/developerguide/aws-managed-rule-groups-changelog.md

Summary

Added a changelog entry for the Core Rule Set (CRS) managed rule group, noting the release of static version 1.21 with improved detection signatures for rules related to restricted extensions.

Security assessment

This is a routine update log for a security service (AWS WAF). It documents an improvement to detection capabilities for rules that block requests with dangerous file extensions, which is a security feature. The update improves protection against common web attacks, but the changelog entry itself is informational and not evidence of a specific, addressed security incident.

Diff

diff --git a/waf/latest/developerguide/aws-managed-rule-groups-changelog.md b/waf/latest/developerguide/aws-managed-rule-groups-changelog.md
index 18e7764bd..33fb28195 100644
--- a//waf/latest/developerguide/aws-managed-rule-groups-changelog.md
+++ b//waf/latest/developerguide/aws-managed-rule-groups-changelog.md
@@ -22,0 +23,6 @@ Rule group and rules | Description | Date
+[Core rule set (CRS) managed rule group](./aws-managed-rule-groups-baseline.html#aws-managed-rule-groups-baseline-crs)
+
+  * `RestrictedExtensions_QUERYARGUMENTS`
+  * `RestrictedExtensions_URIPATH`
+
+|  Released static version 1.21 of this rule group.  Improved detection signatures for these rules. | 2026-04-06