AWS Security ChangesHomeSearch

AWS waf documentation change

Service: waf · 2025-08-22 · Documentation low

File: waf/latest/developerguide/listing-managed-ips.md

Summary

Updated terminology from 'protection pack or web ACL' to 'protection pack (web ACL)' throughout the document to clarify relationship between protection packs and web ACLs

Security assessment

The changes are purely terminological clarifications without addressing vulnerabilities or introducing new security features. The updates provide clearer documentation about existing WAF functionality but don't reference any security incidents or new protections.

Diff

diff --git a/waf/latest/developerguide/listing-managed-ips.md b/waf/latest/developerguide/listing-managed-ips.md
index fecea0015..3dcac6a89 100644
--- a//waf/latest/developerguide/listing-managed-ips.md
+++ b//waf/latest/developerguide/listing-managed-ips.md
@@ -27 +27 @@ For the AWS WAF CLI, the command is [get-rate-based-statement-managed-keys](http
-The following shows the syntax for retrieving the list of rate limited IP addresses for a rate-based rule that's being used in a protection pack or web ACL on an Amazon CloudFront distribution.
+The following shows the syntax for retrieving the list of rate limited IP addresses for a rate-based rule that's being used in a protection pack (web ACL) on an Amazon CloudFront distribution.
@@ -37 +37 @@ The following shows the syntax for a regional application, an Amazon API Gateway
-AWS WAF monitors web requests and manages keys independently for each unique combination of protection pack or web ACL, optional rule group, and rate-based rule. For example, if you define a rate-based rule inside a rule group, and then use the rule group in a protection pack or web ACL, AWS WAF monitors web requests and manages keys for that protection pack or web ACL, rule group reference statement, and rate-based rule instance. If you use the same rule group in a second protection pack or web ACL, AWS WAF monitors web requests and manages keys for this second usage completely independent of your first.
+AWS WAF monitors web requests and manages keys independently for each unique combination of protection pack (web ACL), optional rule group, and rate-based rule. For example, if you define a rate-based rule inside a rule group, and then use the rule group in a protection pack (web ACL), AWS WAF monitors web requests and manages keys for that protection pack (web ACL), rule group reference statement, and rate-based rule instance. If you use the same rule group in a second protection pack (web ACL), AWS WAF monitors web requests and manages keys for this second usage completely independent of your first.
@@ -39 +39 @@ AWS WAF monitors web requests and manages keys independently for each unique com
-For a rate-based rule that you've defined inside a rule group, you need to provide the name of the rule group reference statement in your request, in addition to the protection pack or web ACL name and the name of the rate-based rule inside the rule group. The following shows the syntax for a regional application where the rate-based rule is defined inside a rule group, and the rule group is used in a protection pack or web ACL. 
+For a rate-based rule that you've defined inside a rule group, you need to provide the name of the rule group reference statement in your request, in addition to the protection pack (web ACL) name and the name of the rate-based rule inside the rule group. The following shows the syntax for a regional application where the rate-based rule is defined inside a rule group, and the rule group is used in a protection pack (web ACL).