Our release notes provide information on changes and enhancements in each release.

Note: Unless otherwise specified, the changes described here are rolled out throughout the week and may not be immediately available in all accounts.

In this release:

Fixed: BGP Monitoring status added to Audit Trail

The issue applies to customers subscribed to the DDoS Protection for Networks service.

Problem: The BGP Monitoring status was not previously included in the Connection added or Connection changed audit events.

Resolution: The issue is fixed. BGP Peer Monitoring status is now included in the relevant audit events.

Heads up: Deprecation of WAF settings API

As of August 1, 2022, following the migration of WAF settings for all customer accounts to the new WAF Rules policy, the old WAF setting APIs will be deprecated.

The WAF Rules policy type enables you to easily manage your mitigation settings for website WAF rules in a central policy, while still benefiting from the default out-of-the-box policies. You can define a policy once, and apply it to multiple websites in your account.

What changed: Once your account is migrated, you can no longer use the following APIs to configure WAF settings and exceptions:

  • /api/prov/v1/sites/configure/allowlists

  • /api/prov/v1/sites/configure/whitelists

  • /api/v1/sites/{SiteId}/settings/rules/SQL_INJECTION/exception

  • /api/v1/sites/{SiteId}/settings/rules/CROSS_SITE_SCRIPTING/exception

  • /api/v1/sites/{SiteId}/settings/rules/ILLEGAL_RESOURCE_ACCESS/exception

  • /api/v1/sites/{SiteId}/Settings/rules/REMOTE_FILE_INCLUSION/exception

In addition, details of the WAF settings and exceptions will be removed from the following Site Management APIs:

  • Get site status

  • All other Site Management APIs that return details of the site’s WAF settings configuration

Instead, use the Policies API to configure WAF Rules. For details, see Policy Management API Definition.

For more details on the migration of WAF settings to the WAF Rules policy see the February 20, 2022 release notes.

 

 

 

Tip: Open the latest release notes directly from the Cloud Security Console's Help menu.

 

To subscribe to updates about weekly releases, add the following link to your RSS feed reader: https://docs.imperva.com/bundle/cloud-application-security/page/release-notes.rss