January 19, 2026, Conformity: A summary of Trend Cloud One Conformity Updates for the week ending on 16 January 2026.
New Compliance Standard: AWS Well-Architected Framework Machine Learning Lens: We've added support for the new AWS Web Services Well-Architected Framework Machine
Learning Lens. Machine Learning Lens is an extension of the AWS Well-Architected Framework,
complementing the AWS WAF with Machine Learning specific controls.
New Rules
- AWS
- WAF-002: WAFv2 In Use: This rule ensures that AWS WAFv2 is in use to protect your web applications from common web exploits and checks that the WAF is connected to a resource. The new rule replaces the rule - WAF-001, which ensured WAFv2 in use.
- OCI
- OCI-IAM-017: Prevent Critical Storage Resource Deletion: This rule ensures that critical storage resources cannot be deleted in OCI.
- OCI-IAM-014: Configure Account Lock Threshold: This rule ensures that the account lock threshold is configured in the OCI IAM password policy.
- OCI-IAM-015: Prevent Password Reuse: This rule ensures that the OCI IAM password policy prevents password reuse.
- OCI-FileStorage-003: Check for Clone Hydration Status: This rule ensures that cloned OCI File Storage file systems are fully hydrated before production workload.
- Azure
-
- ApplicationGateway-003: Enable Request Body Inspection for the Associated WAF Policy: This rule ensures that Request Body Inspection is enabled for the Web Application Firewall (WAF) policy associated with your Azure Application Gateway.
- Subscriptions-006: Azure [PersonType]: This rule ensures that there are between 2 and 3 subscription owners assigned to each Microsoft Azure subscription.
- ApplicationGateway-004: Enable Web Application Firewall for Application Gateways: This rule ensures that Web Application Firewall (WAF) policies for Application Gateways are enabled.