Merge branch 'production' into ranbel/generic-s2s

build errors

Author: ranbel

src/content/docs/bots/reference/verified-bot-categories.mdx

@@ -14,19 +14,24 @@ The Verified Bot Categories field is not compatible with legacy Firewall rules.
 
 ## Categories
 
-- **Academic research**: Internet Archive, Library of Congress, TurnItInBot
-- **Accessibility**
-- **Advertising or marketing**: Google Adsbot
-- **Aggregators**: Pinterest, Indeed Jobsbot
-- **AI Crawler**: Google Bard, ChatGPT bot
-- **Feed fetcher**: RSS or Podcast feed updaters
-- **Monitoring or analytics**: Uptime Monitors
-- **Page preview**: Facebook, Slack, Twitter, or Discord Link Preview tools
-- **Search engine crawler**: Googlebot, Bingbot, Yandexbot, Baidubot
-- **Search engine optimization**: Google Lighthouse, GT Metrix, Pingdom, AddThis
-- **Security**: Vulnerability Scanners, SSL Domain Control Validation (DCV) Check Tools
-- **Webhooks**: Payment processors, WordPress Integration tools
-- **Other**
+| Name                       | String value                 | Example                                                                 |
+| -------------------------- | ---------------------------- | ----------------------------------------------------------------------- |
+| Academic research          | `Academic Research`          | Internet Archive, Library of Congress, TurnItInBot                      |
+| Accessibility              | `Accessibility`              | —                                                                       |
+| Advertising or marketing   | `Advertising & Marketing`    | Google Adsbot                                                           |
+| Aggregators                | `Aggregator`                 | Pinterest, Indeed Jobsbot                                               |
+| AI Assistant               | `AI Assistant`               | —                                                                       |
+| AI Crawler                 | `AI Crawler`                 | Google Bard, ChatGPT bot                                                |
+| AI Search                  | `AI Search`                  | —                                                                       |
+| Feed fetcher               | `Feed Fetcher`               | RSS or Podcast feed updaters                                            |
+| Monitoring or analytics    | `Monitoring & Analytics`     | Uptime Monitors                                                         |
+| Page preview               | `Page Preview`               | Facebook, Slack, Twitter, or Discord Link Preview tools                 |
+| Search engine crawler      | `Search Engine Crawler`      | Googlebot, Bingbot, Yandexbot, Baidubot                                 |
+| Search engine optimization | `Search Engine Optimization` | Google Lighthouse, GT Metrix, Pingdom, AddThis                          |
+| Security                   | `Security`                   | Vulnerability Scanners, SSL Domain Control Validation (DCV) Check Tools |
+| Social media marketing     | `Social Media Marketing`     | —                                                                       |
+| Webhooks                   | `Webhooks`                   | Payment processors, WordPress Integration tools                         |
+| Other                      | `Other`                      | —                                                                       |
 
 ## Availability
 

src/content/docs/cloudflare-one/connections/connect-devices/warp/user-side-certificates/install-cert-with-warp.mdx

@@ -15,14 +15,14 @@ import { Details } from "~/components";
 | ----------------------------------------------------------------------------------------- | ------------------------------------------------------------- |
 | All modes                                                                                 | All plans                                                     |
 
-| System   | Availability | Minimum WARP version |
-| -------- | ------------ | -------------------- |
-| Windows  | ✅           | 2023.3.381.0         |
-| macOS    | ✅           | 2023.3.381.0         |
-| Linux <sup>*</sup>    | ✅           | 2023.3.381.0         |
-| iOS      | ❌           |                      |
-| Android  | ❌           |                      |
-| ChromeOS | ❌           |                      |
+| System              | Availability | Minimum WARP version |
+| ------------------- | ------------ | -------------------- |
+| Windows             | ✅           | 2023.3.381.0         |
+| macOS               | ✅           | 2023.3.381.0         |
+| Linux <sup>\*</sup> | ✅           | 2023.3.381.0         |
+| iOS                 | ❌           |                      |
+| Android             | ❌           |                      |
+| ChromeOS            | ❌           |                      |
 
 <sup>*</sup> Only supported on Debian-based systems.
 </Details>
@@ -41,18 +41,18 @@ The certificate is required if you want to [apply HTTP policies to encrypted web
 
 If a custom certificate is not provided, WARP will install the default [Cloudflare certificate](/cloudflare-one/connections/connect-devices/warp/user-side-certificates/install-cloudflare-cert/#download-the-cloudflare-root-certificate) in the system keychain for all users. If you uploaded a custom certificate, the WARP client will deploy your custom certificate instead of the Cloudflare certificate.
 
-Next, [verify](#view-the-installed-certificate) that the certificate was successfully installed.
+Next, [verify](#access-the-installed-certificate) that the certificate was successfully installed.
 
 :::note[Important]
-
 WARP only installs the system certificate — it does not install the certificate on individual applications. You will need to [manually add the certificate](/cloudflare-one/connections/connect-devices/warp/user-side-certificates/install-cloudflare-cert/#add-the-certificate-to-applications) to applications that rely on their own certificate store.
-
 :::
 
-## View the installed certificate
+## Access the installed certificate
 
 ### Windows
 
+To access the installed certificate in Windows:
+
 1. Open the Start menu and select **Run**.
 2. Enter `certlm.msc`.
 3. Go to **Trusted Root Certification Authority** > **Certificates**.
@@ -63,26 +63,29 @@ The certificate is also placed in `%ProgramData%\Cloudflare\installed_cert.pem`
 
 ### macOS
 
-1. Open **Keychain Access**.
-2. Go to **System** > **Certificates**.
-3. Double-click your certificate. (The default Cloudflare certificate is named **Cloudflare for Teams ECC Certificate Authority**.)
-4. You should see **This certificate is marked as trusted for all users**.
+To access the installed certificate in Windows:
 
-:::note
+1. Open Keychain Access.
+2. In **System Keychains**, go to **System** > **Certificates**.
+3. Open your certificate. The default Cloudflare certificate is named **Cloudflare for Teams ECC Certificate Authority**.
+4. If the certificate is trusted by all users, Keychain Access will display **This certificate is marked as trusted for all users**.
 
-Certain macOS versions (`13.5` for example) do not allow WARP to automatically trust the certificate. To manually trust the certificate:
+:::note
+Certain macOS versions (such as macOS Ventura `13.5`) do not allow WARP to automatically trust the certificate. To manually trust the certificate:
 
 1. Select **Trust**.
 2. Set **When using this certificate** to _Always Trust_.
-   :::
+
+Alternatively, you can configure your mobile device management (MDM) to automatically trust the certificate on all of your organization's devices.
+:::
 
 The certificate is also placed in `/Library/Application Support/Cloudflare/installed_cert.pem` for reference by scripts or tools.
 
 ### Linux
 
 On Linux, the certificate is stored in `/usr/local/share/ca-certificates`. The default Cloudflare certificate is named `managed-warp.pem`.
 
-If you do not see the certificate, run the following commands to update the system store:
+If you cannot find the certificate, run the following commands to update the system store:
 
 1. Go to the system certificate store.
 

src/content/docs/cloudflare-one/policies/gateway/domain-categories.mdx

@@ -198,7 +198,7 @@ Subdomains that have not been assigned a category will inherit the category of t
 | 29          | Violence               | 165            | Violence                                   |
 | 29          | Violence               | 166            | Weapons                                    |
 | 30          | Weather                | 167            | Weather                                    |
-| 31          | Blocked by default     | 170            | Child Abuse                                |
+| 31          | Always blocked         | 170            | Child Abuse                                |
 | 32          | Security Risks         | 128            | Parked & For Sale Domains                  |
 | 32          | Security Risks         | 169            | New Domains                                |
 | 32          | Security Risks         | 177            | Newly Seen Domains                         |

src/content/partials/cloudflare-one/gateway/domain-categories.mdx

@@ -1,10 +1,9 @@
 ---
 {}
-
 ---
 
 Cloudflare categorizes domains into content categories and security categories, which cover security risks and security threats:
 
-* **Content categories**: An upstream vendor supplies content categories for domains. These categories help us organize domains into broad topic areas. However, the specific criteria and methods used by our vendor may not be disclosed.
-* **Security risks**: Cloudflare determines security risks for domains using internal models. These models analyze various factors, including the age of a domain and its reputation. This allows us to identify potentially risky domains.
-* **Security threats**: To identify malicious domains that pose security threats, Cloudflare employs a mix of internal data sources, machine learning models, commercial feeds, and open-source threat intelligence.
+- **Content categories**: An upstream vendor supplies content categories for domains. These categories help us organize domains into broad topic areas. However, the specific criteria and methods used by our vendor may not be disclosed.
+- **Security risks**: Cloudflare determines security risks for domains using internal models. These models analyze various factors, including the age of a domain and its reputation. This allows us to identify potentially risky domains.
+- **Security threats**: To identify malicious domains that pose security threats, Cloudflare employs a mix of internal data sources, machine learning models, commercial feeds, and open-source threat intelligence.