put https://{hostname}/appsec/v1/configs//versions//security-policies//api-request-constraints
Update what action to take when any API request constraint triggers. Use alert to record the trigger of the event, deny to block the request, or customDenyId to apply a custom deny response. Products: Kona Site Defender, App & API Protector with the Advanced Security module.