AWS Security ChangesHomeSearch

AWS waf documentation change

Service: waf · 2025-06-19 · Documentation low

File: waf/latest/developerguide/waf-captcha-and-challenge.md

Summary

Added console announcement and updated rule context references to include 'protection pack' terminology

Security assessment

Updates focus on organizational structure (protection packs) rather than modifying security controls. Existing CAPTCHA/challenge functionality documentation remains unchanged except terminology.

Diff

diff --git a/waf/latest/developerguide/waf-captcha-and-challenge.md b/waf/latest/developerguide/waf-captcha-and-challenge.md
index 320afd7f5..f4cecebf2 100644
--- a//waf/latest/developerguide/waf-captcha-and-challenge.md
+++ b//waf/latest/developerguide/waf-captcha-and-challenge.md
@@ -4,0 +5,4 @@
+**Introducing a new console experience for AWS WAF**
+
+You can now use the updated experience to access AWS WAF functionality anywhere in the console. For more details, see [Working with the updated console experience](./working-with-console.html). 
+
@@ -15 +19 @@ CAPTCHA puzzles and silent challenges can only run when browsers are accessing H
-In web ACL rules, CAPTCHA is commonly used when a Block action would stop too many legitimate requests, but letting all traffic through would result in unacceptably high levels of unwanted requests, such as from bots. For information about the rule action behavior, see [How the AWS WAFCAPTCHA and Challenge rule actions work](./waf-captcha-and-challenge-how-it-works.html).
+In protection pack or web ACL rules, CAPTCHA is commonly used when a Block action would stop too many legitimate requests, but letting all traffic through would result in unacceptably high levels of unwanted requests, such as from bots. For information about the rule action behavior, see [How the AWS WAFCAPTCHA and Challenge rule actions work](./waf-captcha-and-challenge-how-it-works.html).