For AI agents: a documentation index is available at the root level at /llms.txt and /llms-full.txt. Append /llms.txt to any URL for a page-level index, or .md for the markdown version of any page.
HUMAN DashboardHUMAN WebsiteRequest a Demo
Product GuidesEnforcer GuidesMobile SDKAPI ReferenceCustomer support
Product GuidesEnforcer GuidesMobile SDKAPI ReferenceCustomer support
  • General
    • About Enforcers
    • Support first-party HUMAN calls
    • Troubleshoot Enforcer configurations
  • Enforcer frameworks
    • Akamai ESI
    • Apache - C Module
    • ASP.NET
    • Callout Enforcer
    • Envoy Proxy
    • F5 BIGIP
    • Fastly JavaScript Compute@Edge
      • Fastly VCL changelog
    • Google Cloud Platform (GCP) Callout Enforcer
    • Kong Plugin
    • NGINX - C Module
    • NGINX - LUA Module
    • PHP
    • Python
    • Ruby
    • Salesforce Commerce Cloud Cartridge
LogoLogo
Login
Login
HUMAN DashboardHUMAN WebsiteRequest a Demo
On this page
  • April 27, 2026
  • Version 12.4.2
  • February 11, 2026
  • Version 12.4.1
  • December 10, 2025
  • Version 12.4.0
  • November 18, 2025
  • Version 12.3.0
  • September 16, 2025
  • Version 12.2.1
  • August 19, 2025
  • Version 12.2.0
  • June 15, 2025
  • Version 12.1.5
  • June 5, 2025
  • Version 12.1.4
  • May 4, 2025
  • Version 12.1.3
  • April 7, 2025
  • Version 12.1.2
Enforcer frameworksFastly VCL

Fastly VCL changelog

April 27, 2026
April 27, 2026
February 11, 2026
February 11, 2026
December 10, 2025
December 10, 2025
November 18, 2025
November 18, 2025
September 16, 2025
September 16, 2025
August 19, 2025
August 19, 2025
June 15, 2025
June 15, 2025
June 5, 2025
June 5, 2025
May 4, 2025
May 4, 2025
April 7, 2025
April 7, 2025

Older posts

Next
Built with

Version 12.4.2

  • Send original vid from cookie on all activities under orig_cookie_vid

Version 12.4.1

  • Adjusted Telemetry by risk - adjusted telemetry requested flag on risk_api response

Version 12.4.0

  • Added Header Based Logger support
  • Added Telemetry by Risk support
  • Correct enforcer_start_time and risk_start_time on all enforcer activities

Version 12.3.0

  • Added response custom parameters feature (px_custom_add_response_custom_parameters custom subroutine)

Version 12.2.1

  • Added px_cookie field on block activity

Version 12.2.0

  • Updated MAIN.vcl boilerplate

  • Support for adding a data enrichment header (new px_data_enrichment_header_name configuration)

  • Added Documentation enforcement workflow - verify that the documentation is up to date with the latest changes in the codebase

  • Added mobile headers to async activities

    • X-PX-VID-MOBILE
    • X-PX-UUID-MOBILE
    • X-PX-HID
    • X-PX-MOBILE-SDK-VERSION
    • X-PX-OS
    • X-PX-OS-VERSION
    • X-PX-DEVICE-FP
    • X-PX-DEVICE-MODEL
    • X-PX-HELLO

  • Adding redacted px_auth_token, px_cookie_secret, and px_remote_config_auth_token to telemetry activities

  • Fixed PXDE bugs

Version 12.1.5

  • Send default config values on Telemetry activity even if not set in enforcer config config explicitly

Version 12.1.4

  • Added Cross Tab Session cookie support on activities
  • Fixed the commented out example for the px_custom_block_page_content subroutine in the VCL template

Version 12.1.3

  • Added JA4 fingerprint data on risk_api and async activities

Version 12.1.2

  • Fixed an issue where remote configuration list comparisons returned true for all requests when configured via remote config:
    • sensitive, monitored, and enforced routes
    • filtered routes, methods, ips, extensions, and user agents
    • graphql routes, sensitive operation names and types