AWS Security ChangesHomeSearch

AWS waf documentation change

Service: waf · 2025-08-22 · Documentation low

File: waf/latest/developerguide/waf-captcha-and-challenge.md

Summary

Adjusted terminology to 'protection pack (web ACL)' in CAPTCHA usage context

Security assessment

Consistency update in CAPTCHA documentation. Does not alter security posture or introduce new protections.

Diff

diff --git a/waf/latest/developerguide/waf-captcha-and-challenge.md b/waf/latest/developerguide/waf-captcha-and-challenge.md
index f4cecebf2..e0ff4ae96 100644
--- a//waf/latest/developerguide/waf-captcha-and-challenge.md
+++ b//waf/latest/developerguide/waf-captcha-and-challenge.md
@@ -19 +19 @@ CAPTCHA puzzles and silent challenges can only run when browsers are accessing H
-In protection pack or web ACL rules, CAPTCHA is commonly used when a Block action would stop too many legitimate requests, but letting all traffic through would result in unacceptably high levels of unwanted requests, such as from bots. For information about the rule action behavior, see [How the AWS WAFCAPTCHA and Challenge rule actions work](./waf-captcha-and-challenge-how-it-works.html).
+In protection pack (web ACL) rules, CAPTCHA is commonly used when a Block action would stop too many legitimate requests, but letting all traffic through would result in unacceptably high levels of unwanted requests, such as from bots. For information about the rule action behavior, see [How the AWS WAFCAPTCHA and Challenge rule actions work](./waf-captcha-and-challenge-how-it-works.html).