AWS Security ChangesHomeSearch

AWS waf medium security documentation change

Service: waf · 2026-06-04 · Security-related medium

File: waf/latest/developerguide/doc-history.md

Summary

Added changelog entries for Windows OS rule group update and HTTP/2 body inspection feature

Security assessment

Documents security feature updates: 1) Windows OS rule group improvements targeting command injection, 2) New HTTP/2 body inspection controls affecting request validation capabilities.

Diff

diff --git a/waf/latest/developerguide/doc-history.md b/waf/latest/developerguide/doc-history.md
index e553a383d..d9c186b51 100644
--- a//waf/latest/developerguide/doc-history.md
+++ b//waf/latest/developerguide/doc-history.md
@@ -18,0 +19,2 @@ Change| Description| Date
+[Updated AWS Managed Rules for AWS WAF](./aws-managed-rule-groups-changelog.html)| Released static version 2.5 of the Windows operating system managed rule group.| June 1, 2026  
+[HTTP/2 body inspection control for Application Load Balancer](./web-acl-setting-body-inspection-limit.html)| You can now configure how AWS WAF inspects HTTP/2 request bodies on your Application Load Balancer when routing to HTTP/2 targets.| June 1, 2026