aws-sdk-wafv2 1.70.0 → 1.72.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 709fa74d545a9bd5a3313ce44f8e5d2598cbcf703eb04f1cc41e28cd60125506
-  data.tar.gz: bb19fdda06d4593e0cb4423c85f934918d6b6176cf789cfb4a5f7180ce91b279
+  metadata.gz: 667eb0c7becd2a1a7a54f79947025353b7e9bce0491d8363a7ececbf87643bda
+  data.tar.gz: 40af3093da425f3127efa326e50994b8bcb6e6b02467a4165bc60252a91eb5a9
 SHA512:
-  metadata.gz: ba7f965bdadb365aabcf1763dd783dedc8c95d0e76d3674962e28452a598dcf2777c24bed0c862e903f649052b60fb61db8b3f71106c81bd28d16da612af5059
-  data.tar.gz: b255ec9c6c0c478e56f92d62708273fc2ff0e5988ebb606d2fc4cbb1246b3c40bcd9a9a0d1b4d5a31901171ecaee1d4be0e31a012ffe95393e1306a77ffe19fa
+  metadata.gz: 1d1639fd9b0f249643a2f484f02eb0f1724c531a25327d1f84c8c5cb527e07017b89aaebf3b72c5de847c55424f1013c0f6870b9c2ed98eec3c97f88f7d00376
+  data.tar.gz: e085a883e262bae5d4e47b9f11b1648cba050194679d68a024d8b4e55e1eac5a46dbeddec169adcc4173177997e77ee1b424250c3bc56c5be6e252a17f3d335e

data/CHANGELOG.md

@@ -1,6 +1,16 @@
 Unreleased Changes
 ------------------
 
+1.72.0 (2023-10-27)
+------------------
+
+* Feature - Updates the descriptions for the calls that manage web ACL associations, to provide information for customer-managed IAM policies.
+
+1.71.0 (2023-09-28)
+------------------
+
+* Feature - Correct and improve the documentation for the FieldToMatch option JA3 fingerprint.
+
 1.70.0 (2023-09-27)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.70.0
+1.72.0

data/lib/aws-sdk-wafv2/client.rb

@@ -410,23 +410,41 @@ module Aws::WAFV2
     # Resource Name (ARN) of the web ACL. For information, see
     # [UpdateDistribution][1] in the *Amazon CloudFront Developer Guide*.
     #
-    # When you make changes to web ACLs or web ACL components, like rules
-    # and rule groups, WAF propagates the changes everywhere that the web
-    # ACL and its components are stored and used. Your changes are applied
-    # within seconds, but there might be a brief period of inconsistency
-    # when the changes have arrived in some places and not in others. So,
-    # for example, if you change a rule action setting, the action might be
-    # the old action in one area and the new action in another area. Or if
-    # you add an IP address to an IP set used in a blocking rule, the new
-    # address might briefly be blocked in one area while still allowed in
-    # another. This temporary inconsistency can occur when you first
-    # associate a web ACL with an Amazon Web Services resource and when you
-    # change a web ACL that is already associated with a resource.
-    # Generally, any inconsistencies of this type last only a few seconds.
+    # **Required permissions for customer-managed IAM policies**
+    #
+    # This call requires permissions that are specific to the protected
+    # resource type. For details, see [Permissions for AssociateWebACL][2]
+    # in the *WAF Developer Guide*.
+    #
+    # **Temporary inconsistencies during updates**
+    #
+    # When you create or change a web ACL or other WAF resources, the
+    # changes take a small amount of time to propagate to all areas where
+    # the resources are stored. The propagation time can be from a few
+    # seconds to a number of minutes.
+    #
+    # The following are examples of the temporary inconsistencies that you
+    # might notice during change propagation:
+    #
+    # * After you create a web ACL, if you try to associate it with a
+    #   resource, you might get an exception indicating that the web ACL is
+    #   unavailable.
+    #
+    # * After you add a rule group to a web ACL, the new rule group rules
+    #   might be in effect in one area where the web ACL is used and not in
+    #   another.
+    #
+    # * After you change a rule action setting, you might see the old action
+    #   in some places and the new action in others.
+    #
+    # * After you add an IP address to an IP set that is in use in a
+    #   blocking rule, the new address might be blocked in one area while
+    #   still allowed in another.
     #
     #
     #
     # [1]: https://docs.aws.amazon.com/cloudfront/latest/APIReference/API_UpdateDistribution.html
+    # [2]: https://docs.aws.amazon.com/waf/latest/developerguide/security_iam_service-with-iam.html#security_iam_action-AssociateWebACL
     #
     # @option params [required, String] :web_acl_arn
     #   The Amazon Resource Name (ARN) of the web ACL that you want to
@@ -4138,9 +4156,16 @@ module Aws::WAFV2
     # `UpdateDistribution`. For information, see [UpdateDistribution][1] in
     # the *Amazon CloudFront API Reference*.
     #
+    # **Required permissions for customer-managed IAM policies**
+    #
+    # This call requires permissions that are specific to the protected
+    # resource type. For details, see [Permissions for
+    # DisassociateWebACL][2] in the *WAF Developer Guide*.
+    #
     #
     #
     # [1]: https://docs.aws.amazon.com/cloudfront/latest/APIReference/API_UpdateDistribution.html
+    # [2]: https://docs.aws.amazon.com/waf/latest/developerguide/security_iam_service-with-iam.html#security_iam_action-DisassociateWebACL
     #
     # @option params [required, String] :resource_arn
     #   The Amazon Resource Name (ARN) of the resource to disassociate from
@@ -5285,6 +5310,27 @@ module Aws::WAFV2
 
     # Retrieves the WebACL for the specified resource.
     #
+    # This call uses `GetWebACL`, to verify that your account has permission
+    # to access the retrieved web ACL. If you get an error that indicates
+    # that your account isn't authorized to perform `wafv2:GetWebACL` on
+    # the resource, that error won't be included in your CloudTrail event
+    # history.
+    #
+    # For Amazon CloudFront, don't use this call. Instead, call the
+    # CloudFront action `GetDistributionConfig`. For information, see
+    # [GetDistributionConfig][1] in the *Amazon CloudFront API Reference*.
+    #
+    # **Required permissions for customer-managed IAM policies**
+    #
+    # This call requires permissions that are specific to the protected
+    # resource type. For details, see [Permissions for
+    # GetWebACLForResource][2] in the *WAF Developer Guide*.
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/cloudfront/latest/APIReference/API_GetDistributionConfig.html
+    # [2]: https://docs.aws.amazon.com/waf/latest/developerguide/security_iam_service-with-iam.html#security_iam_action-GetWebACLForResource
+    #
     # @option params [required, String] :resource_arn
     #   The Amazon Resource Name (ARN) of the resource whose web ACL you want
     #   to retrieve.
@@ -5894,9 +5940,23 @@ module Aws::WAFV2
     end
 
     # Retrieves an array of the Amazon Resource Names (ARNs) for the
-    # regional resources that are associated with the specified web ACL. If
-    # you want the list of Amazon CloudFront resources, use the CloudFront
-    # call `ListDistributionsByWebACLId`.
+    # regional resources that are associated with the specified web ACL.
+    #
+    # For Amazon CloudFront, don't use this call. Instead, use the
+    # CloudFront call `ListDistributionsByWebACLId`. For information, see
+    # [ListDistributionsByWebACLId][1] in the *Amazon CloudFront API
+    # Reference*.
+    #
+    # **Required permissions for customer-managed IAM policies**
+    #
+    # This call requires permissions that are specific to the protected
+    # resource type. For details, see [Permissions for
+    # ListResourcesForWebACL][2] in the *WAF Developer Guide*.
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/cloudfront/latest/APIReference/API_ListDistributionsByWebACLId.html
+    # [2]: https://docs.aws.amazon.com/waf/latest/developerguide/security_iam_service-with-iam.html#security_iam_action-ListResourcesForWebACL
     #
     # @option params [required, String] :web_acl_arn
     #   The Amazon Resource Name (ARN) of the web ACL.
@@ -6570,19 +6630,30 @@ module Aws::WAFV2
     #
     #  </note>
     #
-    # When you make changes to web ACLs or web ACL components, like rules
-    # and rule groups, WAF propagates the changes everywhere that the web
-    # ACL and its components are stored and used. Your changes are applied
-    # within seconds, but there might be a brief period of inconsistency
-    # when the changes have arrived in some places and not in others. So,
-    # for example, if you change a rule action setting, the action might be
-    # the old action in one area and the new action in another area. Or if
-    # you add an IP address to an IP set used in a blocking rule, the new
-    # address might briefly be blocked in one area while still allowed in
-    # another. This temporary inconsistency can occur when you first
-    # associate a web ACL with an Amazon Web Services resource and when you
-    # change a web ACL that is already associated with a resource.
-    # Generally, any inconsistencies of this type last only a few seconds.
+    # **Temporary inconsistencies during updates**
+    #
+    # When you create or change a web ACL or other WAF resources, the
+    # changes take a small amount of time to propagate to all areas where
+    # the resources are stored. The propagation time can be from a few
+    # seconds to a number of minutes.
+    #
+    # The following are examples of the temporary inconsistencies that you
+    # might notice during change propagation:
+    #
+    # * After you create a web ACL, if you try to associate it with a
+    #   resource, you might get an exception indicating that the web ACL is
+    #   unavailable.
+    #
+    # * After you add a rule group to a web ACL, the new rule group rules
+    #   might be in effect in one area where the web ACL is used and not in
+    #   another.
+    #
+    # * After you change a rule action setting, you might see the old action
+    #   in some places and the new action in others.
+    #
+    # * After you add an IP address to an IP set that is in use in a
+    #   blocking rule, the new address might be blocked in one area while
+    #   still allowed in another.
     #
     # @option params [required, String] :name
     #   The name of the IP set. You cannot change the name of an `IPSet` after
@@ -6803,19 +6874,30 @@ module Aws::WAFV2
     #
     #  </note>
     #
-    # When you make changes to web ACLs or web ACL components, like rules
-    # and rule groups, WAF propagates the changes everywhere that the web
-    # ACL and its components are stored and used. Your changes are applied
-    # within seconds, but there might be a brief period of inconsistency
-    # when the changes have arrived in some places and not in others. So,
-    # for example, if you change a rule action setting, the action might be
-    # the old action in one area and the new action in another area. Or if
-    # you add an IP address to an IP set used in a blocking rule, the new
-    # address might briefly be blocked in one area while still allowed in
-    # another. This temporary inconsistency can occur when you first
-    # associate a web ACL with an Amazon Web Services resource and when you
-    # change a web ACL that is already associated with a resource.
-    # Generally, any inconsistencies of this type last only a few seconds.
+    # **Temporary inconsistencies during updates**
+    #
+    # When you create or change a web ACL or other WAF resources, the
+    # changes take a small amount of time to propagate to all areas where
+    # the resources are stored. The propagation time can be from a few
+    # seconds to a number of minutes.
+    #
+    # The following are examples of the temporary inconsistencies that you
+    # might notice during change propagation:
+    #
+    # * After you create a web ACL, if you try to associate it with a
+    #   resource, you might get an exception indicating that the web ACL is
+    #   unavailable.
+    #
+    # * After you add a rule group to a web ACL, the new rule group rules
+    #   might be in effect in one area where the web ACL is used and not in
+    #   another.
+    #
+    # * After you change a rule action setting, you might see the old action
+    #   in some places and the new action in others.
+    #
+    # * After you add an IP address to an IP set that is in use in a
+    #   blocking rule, the new address might be blocked in one area while
+    #   still allowed in another.
     #
     # @option params [required, String] :name
     #   The name of the set. You cannot change the name after you create the
@@ -6904,26 +6986,37 @@ module Aws::WAFV2
     #
     #  </note>
     #
-    # When you make changes to web ACLs or web ACL components, like rules
-    # and rule groups, WAF propagates the changes everywhere that the web
-    # ACL and its components are stored and used. Your changes are applied
-    # within seconds, but there might be a brief period of inconsistency
-    # when the changes have arrived in some places and not in others. So,
-    # for example, if you change a rule action setting, the action might be
-    # the old action in one area and the new action in another area. Or if
-    # you add an IP address to an IP set used in a blocking rule, the new
-    # address might briefly be blocked in one area while still allowed in
-    # another. This temporary inconsistency can occur when you first
-    # associate a web ACL with an Amazon Web Services resource and when you
-    # change a web ACL that is already associated with a resource.
-    # Generally, any inconsistencies of this type last only a few seconds.
-    #
     # A rule group defines a collection of rules to inspect and control web
     # requests that you can use in a WebACL. When you create a rule group,
     # you define an immutable capacity limit. If you update a rule group,
     # you must stay within the capacity. This allows others to reuse the
     # rule group with confidence in its capacity requirements.
     #
+    # **Temporary inconsistencies during updates**
+    #
+    # When you create or change a web ACL or other WAF resources, the
+    # changes take a small amount of time to propagate to all areas where
+    # the resources are stored. The propagation time can be from a few
+    # seconds to a number of minutes.
+    #
+    # The following are examples of the temporary inconsistencies that you
+    # might notice during change propagation:
+    #
+    # * After you create a web ACL, if you try to associate it with a
+    #   resource, you might get an exception indicating that the web ACL is
+    #   unavailable.
+    #
+    # * After you add a rule group to a web ACL, the new rule group rules
+    #   might be in effect in one area where the web ACL is used and not in
+    #   another.
+    #
+    # * After you change a rule action setting, you might see the old action
+    #   in some places and the new action in others.
+    #
+    # * After you add an IP address to an IP set that is in use in a
+    #   blocking rule, the new address might be blocked in one area while
+    #   still allowed in another.
+    #
     # @option params [required, String] :name
     #   The name of the rule group. You cannot change the name of a rule group
     #   after you create it.
@@ -7867,20 +7960,6 @@ module Aws::WAFV2
     #
     #  </note>
     #
-    # When you make changes to web ACLs or web ACL components, like rules
-    # and rule groups, WAF propagates the changes everywhere that the web
-    # ACL and its components are stored and used. Your changes are applied
-    # within seconds, but there might be a brief period of inconsistency
-    # when the changes have arrived in some places and not in others. So,
-    # for example, if you change a rule action setting, the action might be
-    # the old action in one area and the new action in another area. Or if
-    # you add an IP address to an IP set used in a blocking rule, the new
-    # address might briefly be blocked in one area while still allowed in
-    # another. This temporary inconsistency can occur when you first
-    # associate a web ACL with an Amazon Web Services resource and when you
-    # change a web ACL that is already associated with a resource.
-    # Generally, any inconsistencies of this type last only a few seconds.
-    #
     # A web ACL defines a collection of rules to use to inspect and control
     # web requests. Each rule has a statement that defines what to look for
     # in web requests and an action that WAF applies to requests that match
@@ -7894,6 +7973,31 @@ module Aws::WAFV2
     # Cognito user pool, an App Runner service, or an Amazon Web Services
     # Verified Access instance.
     #
+    # **Temporary inconsistencies during updates**
+    #
+    # When you create or change a web ACL or other WAF resources, the
+    # changes take a small amount of time to propagate to all areas where
+    # the resources are stored. The propagation time can be from a few
+    # seconds to a number of minutes.
+    #
+    # The following are examples of the temporary inconsistencies that you
+    # might notice during change propagation:
+    #
+    # * After you create a web ACL, if you try to associate it with a
+    #   resource, you might get an exception indicating that the web ACL is
+    #   unavailable.
+    #
+    # * After you add a rule group to a web ACL, the new rule group rules
+    #   might be in effect in one area where the web ACL is used and not in
+    #   another.
+    #
+    # * After you change a rule action setting, you might see the old action
+    #   in some places and the new action in others.
+    #
+    # * After you add an IP address to an IP set that is in use in a
+    #   blocking rule, the new address might be blocked in one area while
+    #   still allowed in another.
+    #
     # @option params [required, String] :name
     #   The name of the web ACL. You cannot change the name of a web ACL after
     #   you create it.
@@ -8922,7 +9026,7 @@ module Aws::WAFV2
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-wafv2'
-      context[:gem_version] = '1.70.0'
+      context[:gem_version] = '1.72.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-wafv2/endpoint_provider.rb

@@ -32,7 +32,7 @@ module Aws::WAFV2
             raise ArgumentError, "FIPS and DualStack are enabled, but this partition does not support one or both"
           end
           if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true)
-            if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsFIPS"))
+            if Aws::Endpoints::Matchers.boolean_equals?(Aws::Endpoints::Matchers.attr(partition_result, "supportsFIPS"), true)
               return Aws::Endpoints::Endpoint.new(url: "https://wafv2-fips.#{region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
             end
             raise ArgumentError, "FIPS is enabled but this partition does not support FIPS"

data/lib/aws-sdk-wafv2/types.rb

@@ -542,14 +542,21 @@ module Aws::WAFV2
     #   * `UriPath`: The value that you want WAF to search for in the URI
     #     path, for example, `/images/daily-ad.jpg`.
     #
-    #   * `JA3Fingerprint`: The string to match against the web request's
-    #     JA3 fingerprint header. The header contains a hash fingerprint of
-    #     the TLS Client Hello packet for the request.
-    #
-    #   * `HeaderOrder`: The comma-separated list of header names to match
-    #     for. WAF creates a string that contains the ordered list of header
-    #     names, from the headers in the web request, and then matches
-    #     against that string.
+    #   * `JA3Fingerprint`: Match against the request's JA3 fingerprint.
+    #     The JA3 fingerprint is a 32-character hash derived from the TLS
+    #     Client Hello of an incoming request. This fingerprint serves as a
+    #     unique identifier for the client's TLS configuration. You can use
+    #     this choice only with a string match `ByteMatchStatement` with the
+    #     `PositionalConstraint` set to `EXACTLY`.
+    #
+    #     You can obtain the JA3 fingerprint for client requests from the
+    #     web ACL logs. If WAF is able to calculate the fingerprint, it
+    #     includes it in the logs. For information about the logging fields,
+    #     see [Log fields][1] in the *WAF Developer Guide*.
+    #
+    #   * `HeaderOrder`: The list of header names to match for. WAF creates
+    #     a string that contains the ordered list of header names, from the
+    #     headers in the web request, and then matches against that string.
     #
     #   If `SearchString` includes alphabetic characters A-Z and a-z, note
     #   that the value is case sensitive.
@@ -569,6 +576,10 @@ module Aws::WAFV2
     #
     #   The value that you want WAF to search for. The SDK automatically
     #   base64 encodes the value.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/waf/latest/developerguide/logging-fields.html
     #   @return [String]
     #
     # @!attribute [rw] field_to_match
@@ -966,7 +977,14 @@ module Aws::WAFV2
     #
     # @!attribute [rw] match_scope
     #   The parts of the cookies to inspect with the rule inspection
-    #   criteria. If you specify `All`, WAF inspects both keys and values.
+    #   criteria. If you specify `ALL`, WAF inspects both keys and values.
+    #
+    #   `All` does not require a match to be found in the keys and a match
+    #   to be found in the values. It requires a match to be found in the
+    #   keys or the values or both. To require a match in the keys and in
+    #   the values, use a logical `AND` statement to combine two match
+    #   rules, one that inspects the keys and another that inspects the
+    #   values.
     #   @return [String]
     #
     # @!attribute [rw] oversize_handling
@@ -2397,15 +2415,32 @@ module Aws::WAFV2
     #   @return [Types::HeaderOrder]
     #
     # @!attribute [rw] ja3_fingerprint
-    #   Match against the request's JA3 fingerprint header. The header
-    #   contains a hash fingerprint of the TLS Client Hello packet for the
-    #   request.
+    #   Match against the request's JA3 fingerprint. The JA3 fingerprint is
+    #   a 32-character hash derived from the TLS Client Hello of an incoming
+    #   request. This fingerprint serves as a unique identifier for the
+    #   client's TLS configuration. WAF calculates and logs this
+    #   fingerprint for each request that has enough TLS Client Hello
+    #   information for the calculation. Almost all web requests include
+    #   this information.
     #
     #   <note markdown="1"> You can use this choice only with a string match
     #   `ByteMatchStatement` with the `PositionalConstraint` set to
     #   `EXACTLY`.
     #
     #    </note>
+    #
+    #   You can obtain the JA3 fingerprint for client requests from the web
+    #   ACL logs. If WAF is able to calculate the fingerprint, it includes
+    #   it in the logs. For information about the logging fields, see [Log
+    #   fields][1] in the *WAF Developer Guide*.
+    #
+    #   Provide the JA3 fingerprint string from the logs in your string
+    #   match statement specification, to match with any future requests
+    #   that have the same TLS configuration.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/waf/latest/developerguide/logging-fields.html
     #   @return [Types::JA3Fingerprint]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/wafv2-2019-07-29/FieldToMatch AWS API Documentation
@@ -3532,7 +3567,14 @@ module Aws::WAFV2
     #
     # @!attribute [rw] match_scope
     #   The parts of the headers to match with the rule inspection criteria.
-    #   If you specify `All`, WAF inspects both keys and values.
+    #   If you specify `ALL`, WAF inspects both keys and values.
+    #
+    #   `All` does not require a match to be found in the keys and a match
+    #   to be found in the values. It requires a match to be found in the
+    #   keys or the values or both. To require a match in the keys and in
+    #   the values, use a logical `AND` statement to combine two match
+    #   rules, one that inspects the keys and another that inspects the
+    #   values.
     #   @return [String]
     #
     # @!attribute [rw] oversize_handling
@@ -3832,15 +3874,31 @@ module Aws::WAFV2
       include Aws::Structure
     end
 
-    # Match against the request's JA3 fingerprint header. The header
-    # contains a hash fingerprint of the TLS Client Hello packet for the
-    # request.
+    # Match against the request's JA3 fingerprint. The JA3 fingerprint is a
+    # 32-character hash derived from the TLS Client Hello of an incoming
+    # request. This fingerprint serves as a unique identifier for the
+    # client's TLS configuration. WAF calculates and logs this fingerprint
+    # for each request that has enough TLS Client Hello information for the
+    # calculation. Almost all web requests include this information.
     #
     # <note markdown="1"> You can use this choice only with a string match `ByteMatchStatement`
     # with the `PositionalConstraint` set to `EXACTLY`.
     #
     #  </note>
     #
+    # You can obtain the JA3 fingerprint for client requests from the web
+    # ACL logs. If WAF is able to calculate the fingerprint, it includes it
+    # in the logs. For information about the logging fields, see [Log
+    # fields][1] in the *WAF Developer Guide*.
+    #
+    # Provide the JA3 fingerprint string from the logs in your string match
+    # statement specification, to match with any future requests that have
+    # the same TLS configuration.
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/waf/latest/developerguide/logging-fields.html
+    #
     # @!attribute [rw] fallback_behavior
     #   The match status to assign to the web request if the request
     #   doesn't have a JA3 fingerprint.
@@ -3883,7 +3941,14 @@ module Aws::WAFV2
     #
     # @!attribute [rw] match_scope
     #   The parts of the JSON to match against using the `MatchPattern`. If
-    #   you specify `All`, WAF matches against keys and values.
+    #   you specify `ALL`, WAF matches against keys and values.
+    #
+    #   `All` does not require a match to be found in the keys and a match
+    #   to be found in the values. It requires a match to be found in the
+    #   keys or the values or both. To require a match in the keys and in
+    #   the values, use a logical `AND` statement to combine two match
+    #   rules, one that inspects the keys and another that inspects the
+    #   values.
     #   @return [String]
     #
     # @!attribute [rw] invalid_fallback_behavior

data/lib/aws-sdk-wafv2.rb

@@ -52,6 +52,6 @@ require_relative 'aws-sdk-wafv2/customizations'
 # @!group service
 module Aws::WAFV2
 
-  GEM_VERSION = '1.70.0'
+  GEM_VERSION = '1.72.0'
 
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-wafv2
 version: !ruby/object:Gem::Version
-  version: 1.70.0
+  version: 1.72.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2023-09-27 00:00:00.000000000 Z
+date: 2023-10-27 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-core