Stay organized with collections
Save and categorize content based on your preferences.
Change log for CLOUDFLARE_WAF
Date
Changes
2025-01-31
Enhancement:
- Mapped "SecurityRuleID" to "security_result.threat_id".
- Mapped "SecurityRuleDescription" to "security_result.threat_name".
- Mapped "SecurityRuleDescription" to "security_result.action_details".
2024-08-08
Enhancement:
- Extracted data from "ClientRequestHost" and "ClientRequestURI", merged it and mapped the result to "target.url".
2023-08-30
- Initialized field "ClientRequestPath".
2023-02-02
- Validated the 'security_result' value before its getting merged to event.
2022-09-16
- Mapped the field 'Action' to 'security_result.action_details'.
- Mapped 'security_result.action' to 'ALLOW_WITH_MODIFICATION' when action contains "challengeSolved", "jschallengeSolved", "managedchallengenoninteractivesolved", "managedchallengeinteractivesolved".
- Mapped 'security_result.action' to 'BLOCK' when action contains "drop", "block", "connectionclose".
- Mapped 'security_result.action' to 'FAIL' when action contains "challengefailed", "jschallengefailed".
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-06 UTC."],[[["The CLOUDFLARE_WAF changelog documents updates to field mappings and data handling logic within the system."],["Enhancements include mapping fields like \"SecurityRuleID\" and \"SecurityRuleDescription\" to \"security_result\" attributes, improving data organization."],["\"ClientRequestHost\" and \"ClientRequestURI\" data were merged and mapped to \"target.url\", enhancing URL representation."],["The 'security_result.action' field is now dynamically mapped to specific values (ALLOW_WITH_MODIFICATION, BLOCK, FAIL) based on the content of the original action."],["A validation process was added for the 'security_result' value before it is merged into an event, which allows for improved data integrity."]]],[]]
