AWS waf documentation change
Summary
Added Amazon Bedrock AgentCore Gateway to the list of services with 16KB default body inspection limit and configurable up to 64KB
Security assessment
The change expands service coverage in body inspection documentation but doesn't address vulnerabilities or introduce new security features. It maintains existing security controls for additional service integration.
Diff
diff --git a/waf/latest/developerguide/waf-rule-statement-fields-list.md b/waf/latest/developerguide/waf-rule-statement-fields-list.md index e8c6c5b81..43df4fae9 100644 --- a//waf/latest/developerguide/waf-rule-statement-fields-list.md +++ b//waf/latest/developerguide/waf-rule-statement-fields-list.md @@ -237 +237 @@ The request body is the part of the request that immediately follows the request -For Application Load Balancer and AWS AppSync, AWS WAF can inspect the first 8 KB of the body of a request. For CloudFront, API Gateway, Amazon Cognito, App Runner, and Verified Access, by default, AWS WAF can inspect the first 16 KB, and you can increase the limit up to 64 KB in your protection pack (web ACL) configuration. For more information, see [Considerations for managing body inspection in AWS WAF](./web-acl-setting-body-inspection-limit.html). +For Application Load Balancer and AWS AppSync, AWS WAF can inspect the first 8 KB of the body of a request. For CloudFront, API Gateway, Amazon Cognito, App Runner, Verified Access, and Amazon Bedrock AgentCore Gateway, by default, AWS WAF can inspect the first 16 KB, and you can increase the limit up to 64 KB in your protection pack (web ACL) configuration. For more information, see [Considerations for managing body inspection in AWS WAF](./web-acl-setting-body-inspection-limit.html). @@ -256 +256 @@ The request body is the part of the request that immediately follows the request -For Application Load Balancer and AWS AppSync, AWS WAF can inspect the first 8 KB of the body of a request. For CloudFront, API Gateway, Amazon Cognito, App Runner, and Verified Access, by default, AWS WAF can inspect the first 16 KB, and you can increase the limit up to 64 KB in your protection pack (web ACL) configuration. For more information, see [Considerations for managing body inspection in AWS WAF](./web-acl-setting-body-inspection-limit.html). +For Application Load Balancer and AWS AppSync, AWS WAF can inspect the first 8 KB of the body of a request. For CloudFront, API Gateway, Amazon Cognito, App Runner, Verified Access, and Amazon Bedrock AgentCore Gateway, by default, AWS WAF can inspect the first 16 KB, and you can increase the limit up to 64 KB in your protection pack (web ACL) configuration. For more information, see [Considerations for managing body inspection in AWS WAF](./web-acl-setting-body-inspection-limit.html).