Vercel now lets you write WAF custom rules in plain English. Describe the traffic behavior you want, and the Vercel Firewall dashboard generates the rule for you.
The rules themselves are not new. WAF custom rules already support logging, blocking, challenging, rate limiting, and redirecting based on IP, path, country, user agent, and more. What changed is the input method. Instead of manually configuring conditions, you type something like 'block all requests to /wp-admin' or 'challenge all traffic to /checkout that does not come from the US' and the rule is generated. The natural language interface lives on the firewall custom rules page under any team project.
The changelog entry is short, but the documentation link on rule creation with natural language is where the real specifics live, including how condition logic is interpreted and what the generator can and cannot handle. If you manage Vercel projects with non-trivial traffic filtering needs, that is the part worth reading.
[READ ORIGINAL →]