Enumeration: StageDepotAwsManagedWafRule
Defined in: packages/depot-cdk/src/stage-depot-environment.ts:168
Depot AWS Managed WAF rule selection.
Enumeration Members
AWSManagedRulesAdminProtectionRuleSet
AWSManagedRulesAdminProtectionRuleSet:
"AWSManagedRulesAdminProtectionRuleSet"
Defined in: packages/depot-cdk/src/stage-depot-environment.ts:184
The Admin protection rule group contains rules that allow you to block external access to exposed administrative pages. This might be useful if you run third-party software or want to reduce the risk of a malicious actor gaining administrative access to your application. WCU = 100
AWSManagedRulesAmazonIpReputationList
AWSManagedRulesAmazonIpReputationList:
"AWSManagedRulesAmazonIpReputationList"
Defined in: packages/depot-cdk/src/stage-depot-environment.ts:201
The Amazon IP reputation list rule group contains rules that are based on Amazon internal threat intelligence. This is useful if you would like to block IP addresses typically associated with bots or other threats. Blocking these IP addresses can help mitigate bots and reduce the risk of a malicious actor discovering a vulnerable application. WCU = 25
AWSManagedRulesCommonRuleSet
AWSManagedRulesCommonRuleSet:
"AWSManagedRulesCommonRuleSet"
Defined in: packages/depot-cdk/src/stage-depot-environment.ts:176
The Core rule set (CRS) rule group contains rules that are generally applicable to web applications. This provides protection against exploitation of a wide range of vulnerabilities, including high risk and commonly occurring vulnerabilities described in OWASP publications. Consider using this rule group for any AWS WAF use case. WCU = 700
AWSManagedRulesKnownBadInputsRuleSet
AWSManagedRulesKnownBadInputsRuleSet:
"AWSManagedRulesKnownBadInputsRuleSet"
Defined in: packages/depot-cdk/src/stage-depot-environment.ts:192
The Known bad inputs rule group contains rules to block request patterns that are known to be invalid and are associated with exploitation or discovery of vulnerabilities. This can help reduce the risk of a malicious actor discovering a vulnerable application. WCU = 200