When dealing with false positive WAF events it would be nice if req_id was a searchable field from the securiy events page.
You won't be notified about changes to this idea.