CloudFlare JS challenge is breaking my SPA
If you have backend access, you may be able to use NPM and process.kill(process.pid)
upon detection of a bot as a temporary solution.
I suggest not to host spa in s3 only file uploads or attachments to s3
Host on Ec2 and block all access through security Group Policyonly allow Cloudflare IP'swhich are listed here https://www.cloudflare.com/ips/
You can also use Amazon AWS Lambda serverless for hosting instead of s3https://aws.amazon.com/lambda/?c=ser&sec=srv