AWS Security ChangesHomeSearch

AWS waf documentation change

Service: waf · 2026-07-01 · Documentation low

File: waf/latest/developerguide/web-acl.md

Summary

Added 'Amazon Bedrock AgentCore Gateway' to the list of protectable resources

Security assessment

This change only expands the list of supported services without modifying security controls or addressing vulnerabilities

Diff

diff --git a/waf/latest/developerguide/web-acl.md b/waf/latest/developerguide/web-acl.md
index 501015b19..0dcd6f4bc 100644
--- a//waf/latest/developerguide/web-acl.md
+++ b//waf/latest/developerguide/web-acl.md
@@ -15 +15 @@ This page explains what protection packs (web ACLs) are and how they work.
-A protection pack (web ACL) gives you fine-grained control over all of the HTTP(S) web requests that your protected resource responds to. You can protect Amazon CloudFront, Amazon API Gateway, Application Load Balancer, AWS AppSync, Amazon Cognito, AWS App Runner, AWS Amplify, Amazon CloudWatch, and AWS Verified Access resources.
+A protection pack (web ACL) gives you fine-grained control over all of the HTTP(S) web requests that your protected resource responds to. You can protect Amazon CloudFront, Amazon API Gateway, Application Load Balancer, AWS AppSync, Amazon Cognito, AWS App Runner, AWS Amplify, Amazon CloudWatch, Amazon Bedrock AgentCore Gateway, and AWS Verified Access resources.