AWS Security ChangesHomeSearch

AWS waf documentation change

Service: waf · 2025-08-22 · Documentation low

File: waf/latest/developerguide/waf-atp-rg-using.md

Summary

Updated terminology from 'protection pack or web ACL' to 'protection pack (web ACL)' throughout the document for consistency

Security assessment

Changes are purely terminological clarifications (unifying terminology to 'protection pack (web ACL)'). No security vulnerabilities, mitigations, or new security features are introduced or discussed.

Diff

diff --git a/waf/latest/developerguide/waf-atp-rg-using.md b/waf/latest/developerguide/waf-atp-rg-using.md
index 153468d0c..482ab48b2 100644
--- a//waf/latest/developerguide/waf-atp-rg-using.md
+++ b//waf/latest/developerguide/waf-atp-rg-using.md
@@ -9 +9 @@ You can now use the updated experience to access AWS WAF functionality anywhere
-# Adding the ATP managed rule group to your protection pack or web ACL
+# Adding the ATP managed rule group to your protection pack (web ACL)
@@ -21 +21 @@ The ATP stolen credentials database only contains usernames in email format.
-This guidance is intended for users who know generally how to create and manage AWS WAF protection pack or web ACLs, rules, and rule groups. Those topics are covered in prior sections of this guide. For basic information about how to add a managed rule group to your protection pack or web ACL, see [Adding a managed rule group to a protection pack or web ACL through the console](./waf-using-managed-rule-group.html).
+This guidance is intended for users who know generally how to create and manage AWS WAF protection packs (web ACLs), rules, and rule groups. Those topics are covered in prior sections of this guide. For basic information about how to add a managed rule group to your protection pack (web ACL), see [Adding a managed rule group to a protection pack (web ACL) through the console](./waf-using-managed-rule-group.html).
@@ -27 +27 @@ Use the ATP rule group in accordance with the best practices at [Best practices
-###### To use the `AWSManagedRulesATPRuleSet` rule group in your protection pack or web ACL
+###### To use the `AWSManagedRulesATPRuleSet` rule group in your protection pack (web ACL)
@@ -29 +29 @@ Use the ATP rule group in accordance with the best practices at [Best practices
-  1. Add the AWS managed rule group, `AWSManagedRulesATPRuleSet` to your protection pack or web ACL, and **Edit** the rule group settings before saving. 
+  1. Add the AWS managed rule group, `AWSManagedRulesATPRuleSet` to your protection pack (web ACL), and **Edit** the rule group settings before saving. 
@@ -70 +70 @@ For example, for an HTML form with input elements named `username1` and `passwor
-ATP response inspection is available only in protection pack or web ACLs that protect CloudFront distributions.
+ATP response inspection is available only in protection packs (web ACLs) that protect CloudFront distributions.
@@ -86 +86 @@ You can further limit the scope of requests that the rule group inspects by addi
-  4. Save your changes to the protection pack or web ACL. 
+  4. Save your changes to the protection pack (web ACL).