@SM, great questions about Proactive Bot Defense.
- Yes, the ASM will re-inject the javascript if a user deletes the proactive bot defense cookie
- All three features: CSRF, Web Scraping, and Proactive Bot Defense work together. The injected scripts are combined and do not interfere with each other (specifically CSRF and Web Scraping).
I hope this helps!