[WAF] Add content scanning limitations

pedrosousa · pedrosousa · commit 33400221725e · 2025-05-26T15:17:27.000+01:00
diff --git a/src/content/docs/waf/detections/malicious-uploads/index.mdx b/src/content/docs/waf/detections/malicious-uploads/index.mdx
@@ -58,7 +58,14 @@ All content objects in an incoming request will be checked, namely for requests
 The content scanner will fully check content objects with a size up to 15 MB. For larger content objects, the scanner will analyze the first 15 MB and provide scan results based on that portion of the object.
 
 :::caution
-The AV scanner will not scan some particular types of files, namely encrypted or password-protected files. Refer to [Non-scannable files](/cloudflare-one/policies/gateway/http-policies/antivirus-scanning/#non-scannable-files) for a list of AV scanning limitations. For WAF content scanning, the size limit of 15 MB applies to all plans.
+
+The AV scanner will not scan some particular types of files, namely the following:
+
+- Password-protected archives
+- Archives with more than three recursion levels
+- Archives with more than 300 files
+- PGP-encrypted files
+
 :::
 
 ## Custom scan expressions
