[WAF] Add content scanning limitations (cloudflare#22663)

pedrosousa · sdnts · commit e82d298a18b6 · 2025-07-24T16:05:58.000-04:00
diff --git a/src/content/docs/waf/detections/malicious-uploads/index.mdx b/src/content/docs/waf/detections/malicious-uploads/index.mdx
@@ -57,8 +57,15 @@ All content objects in an incoming request will be checked, namely for requests
 
 The content scanner will fully check content objects with a size up to 15 MB. For larger content objects, the scanner will analyze the first 15 MB and provide scan results based on that portion of the object.
 
-:::caution
-The AV scanner will not scan some particular types of files, namely encrypted or password-protected files. Refer to [Non-scannable files](/cloudflare-one/policies/gateway/http-policies/antivirus-scanning/#non-scannable-files) for a list of AV scanning limitations. For WAF content scanning, the size limit of 15 MB applies to all plans.
+:::note
+
+The AV scanner will not scan some particular types of files, namely the following:
+
+- Password-protected archives
+- Archives with more than three recursion levels
+- Archives with more than 300 files
+- PGP-encrypted files
+
 :::
 
 ## Custom scan expressions
