October 2025: Delivered Flexible WAF policy management for NGINX by removing the restriction on using both precompiled and custom WAF policies simultaneously. Updated documentation to remove warnings and known issues related to this limitation. This enhances WAF policy flexibility, reduces configuration friction, and supports faster, more secure deployments. Notable commit: e4626d8117cbe041703a2adefa528efd89d15b04 (Remove restriction on combination of WAF policies, #1181).

May 2025 focused on documenting product readiness and guiding users through new policy capabilities. Updated changelog to reflect GA of NGINX App Protect WAF and support for creating/deploying custom security policies; clarified billing and directed users to configuration docs. No major bugs fixed in this repository this month; efforts centered on documentation accuracy and release-readiness for customers and Azure deployments.

April 2025 monthly summary for nginx/documentation: Implemented and documented NGINX App Protect custom security policies in NGINXaaS for Azure. Updated docs and release notes to reflect support, provided guidance for managing custom policies via Azure Portal and API, clarified constraints when using custom and precompiled policies together, and updated the changelog to mark NGINX App Protect WAF as generally available. This work delivers clear customer guidance, reduces deployment risk, and supports faster onboarding of policy-based security in the Azure-based offering. Commit ae0e131955f31d17826211a835dbe88075f606b6 (NGINXaaS Custom Security Policies).