2020/04/29 - 1 new api methods
Changes This release add migration API for AWS WAF Classic ("waf" and "waf-regional"). The migration API will parse through your web ACL and generate a CloudFormation template into your S3 bucket. Deploying this template will create equivalent web ACL under new AWS WAF ("wafv2").
2019/07/09 - 3 new 4 updated api methods
Changes Updated SDK APIs to add tags to WAF Resources: WebACL, Rule, Rulegroup and RateBasedRule. Tags can also be added during creation of these resources.
2018/12/19 - 5 updated api methods
Changes This release adds rule-level control for rule group. If a rule group contains a rule that blocks legitimate traffic, previously you had to override the entire rule group to COUNT in order to allow the traffic. You can now use the UpdateWebACL API to exclude specific rules within a rule group. Excluding rules changes the action for the individual rules to COUNT. Excluded rules will be recorded in the new "excludedRules" attribute of the WAF logs.
2018/11/06 - 3 updated api methods
Changes You can now use AWS WAF to configure protections for your Amazon API Gateway APIs. This will enable you to block (or count) undesired traffic to your APIs based on the different AWS WAF rules and conditions you create. For more information about AWS WAF, see the AWS WAF Developer Guide.
2018/08/31 - 4 new 15 updated api methods
Changes This change includes support for the WAF FullLogging feature through which Customers will have access to all the logs of requests that are inspected by a WAF WebACL. The new APIs allow Customers to manage association of a WebACL with one or more supported "LogDestination" and redact any request fields from the logs.
2018/02/20 - 3 new api methods
Changes The new PermissionPolicy APIs in AWS WAF Regional allow customers to attach resource-based policies to their entities.
2017/11/30 - 7 new 4 updated api methods
Changes This release adds support for rule group and managed rule group. Rule group is a container of rules that customers can create, put rules in it and associate the rule group to a WebACL. All rules in a rule group will function identically as they would if each rule was individually associated to the WebACL. Managed rule group is a pre-configured rule group composed by our security partners and made available via the AWS Marketplace. Customers can subscribe to these managed rule groups, associate the managed rule group to their WebACL and start using them immediately to protect their resources.
2017/10/16 - 15 new 6 updated api methods
Changes This release adds support for regular expressions as match conditions in rules, and support for geographical location by country of request IP address as a match condition in rules.
2017/06/21 - 6 new 3 updated api methods
Changes You can now create, edit, update, and delete a new type of WAF rule with a rate tracking component.
2016/12/08 - 42 new api methods
Changes With this new feature, customers can use AWS WAF directly on Application Load Balancers in a VPC within available regions to protect their websites and web services from malicious attacks such as SQL injection, Cross Site Scripting, bad bots, etc.