Live View stopped working with a 403 response from the AWS WAF on the GET request for live/websocket. I found the AWSManagedRulesCommonRuleSet’s GenericRFI_QUERYARGUMENTS rule to be the culprit. After setting the specific rule to count Live View worked again. This managed ruleset used to work with Live View, but I cannot confirm when it changed.
The rule description: “Inspects the values of all query parameters and blocks requests attempting to exploit RFI (Remote File Inclusion) in web applications. Examples include patterns like ://.” I assume it is the track_static part in the query path.
Hopefully this helps someone with the same issue.