diff --git a/output/info202_labs.html b/output/info202_labs.html
index 6ea51ed..c91efb2 100644
--- a/output/info202_labs.html
+++ b/output/info202_labs.html
@@ -1,3 +1,3 @@
 version https://git-lfs.github.com/spec/v1
-oid sha256:3f404cc692b80b82c8e466535f840427f2ccbcced9d922abfe4c9fe4264715bb
-size 4784276
+oid sha256:76eddd2e451c255630f8863f14c24b59ceace48960f5a09699aa9fe6cffff1f0
+size 4784544
diff --git a/tiddlers/content/labs/lab11/_Labs_11_Allow List for Static Assets.md b/tiddlers/content/labs/lab11/_Labs_11_Allow List for Static Assets.md
index 1d9e204..7915cad 100644
--- a/tiddlers/content/labs/lab11/_Labs_11_Allow List for Static Assets.md
+++ b/tiddlers/content/labs/lab11/_Labs_11_Allow List for Static Assets.md
@@ -40,6 +40,8 @@
 
 Adapt to suit your file names.  You need to list every single file that your client is using.  While this is a little bit tedious it does add a lot of protection to the web site.
 
+You will also need to remember to add any new files that you create to the `StaticAssetModule`.
+
 Comment out the existing `assets` line since it is dangerous.
 
 You have most likely received a phishing email that contains a link to a random web site in another country that appears to be hosted by a small business. This is because the maintainers of the site for that business did not use an allow list for their files and an attacker has found a way to upload their own pages to the site which they are now using for phishing scams.
diff --git a/tiddlers/content/labs/lab11/_Labs_11_Introduction.md b/tiddlers/content/labs/lab11/_Labs_11_Introduction.md
index b376c40..4946f4a 100644
--- a/tiddlers/content/labs/lab11/_Labs_11_Introduction.md
+++ b/tiddlers/content/labs/lab11/_Labs_11_Introduction.md
@@ -23,11 +23,9 @@
 
 This lab will focus on securing the web client and service.  Next week's lab will focus on securing the database.
 
-## Don't use your milestone 1 project for this lab
+## Be careful with your Milestone 2 project
 
-We don't want to break anything just prior to the deadline.
-
-Use the CSR version of the student system for this lab.
+You will be working in your milestone 2 project this week.  We don't want to break anything just prior to the deadline, so test everything thouroughly.  Nothing that we are doing in this lab should break features unless you make a mistake --- in this case revert anything that causes a problem.
 
 ## Milestone 2 is due on Friday @ 5pm