AWS Security ChangesHomeSearch

AWS waf documentation change

Service: waf · 2025-08-22 · Documentation low

File: waf/latest/developerguide/waf-bot-with-tokens.md

Summary

Updated terminology from 'protection pack or web ACL' to 'protection pack (web ACL)' for consistency

Security assessment

The change clarifies terminology but does not introduce new security-related content or address vulnerabilities. It maintains existing security documentation about CAPTCHA/Challenge actions.

Diff

diff --git a/waf/latest/developerguide/waf-bot-with-tokens.md b/waf/latest/developerguide/waf-bot-with-tokens.md
index 12fef48b2..e98a353b8 100644
--- a//waf/latest/developerguide/waf-bot-with-tokens.md
+++ b//waf/latest/developerguide/waf-bot-with-tokens.md
@@ -19 +19 @@ We highly recommend implementing the application integration SDKs, for the most
-  * If you're unable to use the SDKs, you can configure your protection pack or web ACL so that it runs the Challenge or CAPTCHA rule action against all requests that will be inspected by the Bot Control rule group. Using the Challenge or CAPTCHA rule action can incur additional fees. For pricing details, see [AWS WAF Pricing](https://aws.amazon.com/waf/pricing/). 
+  * If you're unable to use the SDKs, you can configure your protection pack (web ACL) so that it runs the Challenge or CAPTCHA rule action against all requests that will be inspected by the Bot Control rule group. Using the Challenge or CAPTCHA rule action can incur additional fees. For pricing details, see [AWS WAF Pricing](https://aws.amazon.com/waf/pricing/). 
@@ -38 +38 @@ Bot Control components
-Adding the Bot Control managed rule group to your protection pack or web ACL
+Adding the Bot Control managed rule group to your protection pack (web ACL)