Spacing and minor copy edits

patriciasantaana · web-flow · commit 7f7d768fd454 · 2025-04-18T10:18:23.000-07:00
diff --git a/src/content/changelog/api-shield/2025-03-18-api-posture-management.mdx b/src/content/changelog/api-shield/2025-03-18-api-posture-management.mdx
@@ -15,6 +15,7 @@ View these risks in [Endpoint Management](https://developers.cloudflare.com/api-
 ![An example security center insight](~/assets/images/changelog/api-shield/posture-management-insight.png)
  
 API Shield will scan for risks on your API inventory daily. Here are the new risks we're scanning for and automatically labelling:
+
 - **cf-risk-sensitive**: applied if the customer is subscribed to the sensitive data detection ruleset and the WAF detects sensitive data returned on an endpoint in the last 7 days.
 - **cf-risk-missing-auth**: applied if the customer has configured a session ID and no successful requests to the endpoint contain the session ID. 
 - **cf-risk-mixed-auth**: applied if the customer has configured a session ID and some successful requests to the endpoint contain the session ID while some lack the session ID.
@@ -24,9 +25,10 @@ API Shield will scan for risks on your API inventory daily. Here are the new ris
 - **cf-risk-size-anomaly**: added when an endpoint experiences a spike in response body size over the last 24 hours.
 
 In addition, API Shield has two new 'beta' scans for **Broken Object Level Authorization (BOLA) attacks**. If you're in the beta, you'll see the following two labels when API Shield suspects an endpoint is suffering from a BOLA vulnerability:
+ 
  - **cf-risk-bola-enumeration**: added when an endpoint experiences successful responses with drastic differences in the number of unique elements requested by different user sessions.
  - **cf-risk-bola-pollution**: added when an endpoint experiences successful responses where parameters are found in multiple places in the request.
 
-We are currently accepting more customers into our beta. Please contact your account team if you are interested in BOLA attack detection for your API.
+We are currently accepting more customers into our beta. Contact your account team if you are interested in BOLA attack detection for your API.
 
-Read our [blog post](https://blog.cloudflare.com/cloudflare-security-posture-management/) to learn more about Cloudflare's expanded posture management capabilities.
+Refer to the [blog post](https://blog.cloudflare.com/cloudflare-security-posture-management/) for more information about Cloudflare's expanded posture management capabilities.
