You can now define custom topics for AI prompt protection. Predefined AI prompt topics cover common content and intent categories such as PII, source code, and jailbreak attempts. Custom topics let you detect unique or proprietary concepts that are not included in predefined categories.
You describe a custom topic in natural language, and Cloudflare DLP detects whether a prompt matches that topic based on context rather than specific keywords. For example, a topic that describes confidential merger discussions matches a prompt that paraphrases the deal, even when the prompt never uses the word merger or names the companies involved. To detect literal values such as internal codenames or product identifiers, use a custom wordlist or pattern entry instead.
Custom topics run through the same application granular controls path as predefined AI prompt topics. Custom topics are available for ChatGPT, Google Gemini, Perplexity, and Claude.
- In the Cloudflare dashboard ↗, go to Zero Trust > Data loss prevention > Detection entries.
- Select AI prompt topics, then select Custom Prompt Topic.
- Describe the topic in natural language. Be specific about the concept you want to detect. For example, describe unreleased product roadmap details or confidential customer contract terms.
- Add this detection entry to an existing DLP profile, or create a new DLP profile.
- Use the profile in a Gateway HTTP policy to log or block prompts that match the topic.
For more information, refer to AI prompt topics.
Customers can now view the number of Dynamic Workers invoked during their billing period from the Workers overview page in the Cloudflare dashboard.
This count reflects the number of Dynamic Workers that Cloudflare would bill for during the selected billing period. Dynamic Workers usage data only goes back to June 1, 2026.
You can also query this count through the GraphQL Analytics API by using
workersInvocationsByOwnerAndScriptGroupsand selectingdistinctDynamicWorkerCount:query getDynamicWorkersCount($accountTag: string!$filter: AccountWorkersInvocationsByOwnerAndScriptGroupsFilter_InputObject) {viewer {accounts(filter: { accountTag: $accountTag }) {workersInvocationsByOwnerAndScriptGroups(limit: 10000, filter: $filter) {uniq {distinctDynamicWorkerCount}}}}}Use variables to set the account and billing-period date range:
{"accountTag": "<ACCOUNT_ID>","filter": {"date_geq": "2026-06-01","date_leq": "2026-06-30"}}For more information, refer to Dynamic Workers pricing.
AI Search now supports namespace-level Wrangler commands, making it easier to manage namespaces from your terminal, scripts, and agent workflows.
The following commands are available:
Command Description wrangler ai-search namespace listList AI Search namespaces wrangler ai-search namespace createCreate a new AI Search namespace wrangler ai-search namespace getGet details for a namespace wrangler ai-search namespace updateUpdate a namespace description wrangler ai-search namespace deleteDelete an AI Search namespace Create a namespace for a new application or tenant directly from the CLI:
Terminal window wrangler ai-search namespace create docs-production --description "Production documentation search"List namespaces with pagination or filter by name or description:
Terminal window wrangler ai-search namespace list --search docs --page 1 --per-page 10Use
--jsonwithlist,create,get, andupdateto return structured output that automation and AI agents can parse directly.Instance-level commands also now support a
--namespaceflag, so you can interact with instances inside a specific namespace from the CLI:Terminal window wrangler ai-search list --namespace docs-productionFor full usage details, refer to the AI Search Wrangler commands documentation.
Cloudflare now enforces DNS records quotas at the account level for Enterprise accounts. Instead of a per-zone limit, these accounts have a quota on the total number of records across all of their zones, letting you distribute records across your zones however you like — regardless of each zone's plan. Public and internal zones are counted separately, each with a default quota of 1,000,000 records.
Accounts without an account-level quota are unaffected: existing per-zone quotas behave exactly as before.
For more details, refer to DNS records quota.
Use the Images binding to upload, list, retrieve, update, and delete images stored in Images directly from your Worker without managing API tokens or making HTTP requests.
The
env.IMAGES.hostednamespace supports the following storage and management operations:.upload(image, options)— Upload a new image to your account..list(options)— List images with pagination..image(imageId).details()— Get image metadata..image(imageId).bytes()— Stream the original image bytes..image(imageId).update(options)— Update metadata or access controls..image(imageId).delete()— Delete an image.
For example, you can upload an image from a request body and return its metadata:
TypeScript const image = await env.IMAGES.hosted.upload(request.body, {filename: "upload.jpg",metadata: { source: "worker" },});return Response.json(image);Or retrieve and serve the original bytes of a hosted image:
TypeScript const bytes = await env.IMAGES.hosted.image("IMAGE_ID").bytes();return new Response(bytes);For more information, refer to the Images binding.
TL;DR: Brand Protection now features an Automated Cease & Desist (C&D) workflow. When you discover an infringing domain hosted outside of Cloudflare, you can instantly generate, review, and download a custom-branded, pre-filled legal notice in seconds.
This update introduces a major shift from pure detection to actionable enforcement, eliminating the manual burden for your Trust & Safety and Legal teams:
- Instant WHOIS and Recipient Lookup: We automatically scrape registrar data and WHOIS contact information (such as the registrant or registrar abuse email) behind the scenes, highlighting exactly where your notice needs to be sent
- Smart Template Automation: We pre-fill your custom-branded templates with essential metadata, including the infringing domain, registrar name, and discovery date.
- Tailored Enforcement Tones: Choose from three default layout strategies depending on the severity of the infrastructure match:
- Exact Match: A formal demand for identical trademark infringements
- Similar Match: A standard notice optimized for typosquatting (one-character distance matches)
- Friendly Tone: An amicable initial outreach for potential unintentional or accidental infringements
- Full Editing Control: Before creating the final PDF, a real-time review screen allows you to fine-tune the messaging, modify placeholders, and ensure your text aligns perfectly with internal legal standards
When reviewing a malicious domain match inside your dashboard, your enforcement path splits depending on where the attacker is located:
- On the Cloudflare Network: If the domain uses Cloudflare’s network or registrar, trigger our existing integrated abuse reporting flow with one click.
- Hosted Elsewhere: If the domain is hosted on an external provider, click the Generate C&D Letter option to launch the new document builder, pick your template, verify the auto-populated recipient data, and download your finalized PDF.
You can manage your templates and enforce matches by going to the Cloudflare Dashboard > Application Security > Brand Protection and selecting your detected Brand Protection matches. For more information, read the Brand Protection documentation.
Note: Cloudflare does not represent you and cannot provide you with legal advice. Only you can decide whether your rights have been infringed, whether a cease and desist letter is appropriate, and what that letter should say.
Today we are announcing the deprecation of several features from the Sandbox SDK. The SDK has grown and matured substantially since it first launched. As agent workflows have developed, we have shipped many new features and experiments so developers can easily integrate secure, isolated code execution into their workflows.
We want the SDK to continue providing a stable foundation for agentic workflows while we iterate quickly on the codebase. These deprecated features have either been superseded by newer capabilities or seen low adoption. They will remain in the codebase until July 9, 2026, after which they will no longer be present in future Sandbox SDK versions.
In April 2026, we released the new RPC transport and deprecated the WebSocket transport. This setting governs how the sandbox container talks to the Workers ecosystem. The RPC transport removes the limitations of both the HTTP and WebSocket transports. As of June 9, 2026, it is the recommended default. HTTP and WebSocket transports will no longer be present in Sandbox SDK versions released after July 9, 2026.
To migrate before July 9, 2026, update the
SANDBOX_TRANSPORTvariable torpcor set thetransportoption when callinggetSandbox(). For more information, refer to the transport configuration documentation.The desktop feature landed as a technical demonstration of what can be done with the Sandbox SDK — controlling a full browser environment from within a sandbox. With Cloudflare Browser Run now available, this feature saw very little use. We have removed it in
0.10.2.We recently released support for Cloudflare Tunnel in the Sandbox SDK. This provides a robust API for exposing services running in your sandbox to the public internet. It fixes issues many were facing with local development and deployment to
workers.devdomains. To migrate fromexposePort()to tunnels, refer to the tunnels API documentation and the expose services guide.By default, the
exec()method in the Sandbox SDK maintains a default session across all calls, so acdin one call is honored in the next. This convenience helped developers writingexecstatements by hand, but confused agents and caused hard-to-trace bugs. As of0.10.3, we have introduced theenableDefaultSessionflag on thegetSandbox()interface to turn this off. Default sessions as a concept — and the flag — will be removed in an upcoming release.We recommend setting
enableDefaultSession: falsetoday and using thesandbox.createSession()API when you need the previous behavior.We are also consolidating all APIs that buffer data to support streaming by default. This includes
readFile,writeFile, andexec. The stream equivalents will be removed.We are exploring moving non-core features like the code interpreter, terminal, and git APIs into helpers. These features will retain their existing APIs, so migration should be simple.
If you use any of these features, refer to the 2026 deprecation migration guide. We also provide an agent skill to help with the migration.
For any questions, ask in the Cloudflare Developers Discord ↗.
This release introduces new detections for a critical SQL injection vulnerability in Drupal installations utilizing PostgreSQL (CVE-2026-9082), alongside targeted protection for an unsafe deserialization flaw in the Mirasvit Cache Warmer extension (CVE-2026-45247). Additionally, this release includes coverage for a prototype pollution vector in Axios (CVE-2026-40175) and a new generic rule designed to identify and block sophisticated SQL Injection (SQLi) bypass attempts leveraging obfuscated boolean logic.
Key Findings
-
CVE-2026-9082: A database abstraction vulnerability affects Drupal sites configured with a PostgreSQL backend. Remote, unauthenticated attackers can exploit this flaw via crafted inputs to inject malicious SQL commands and access or manipulate backend data.
-
CVE-2026-45247: A PHP Object Injection vulnerability exists in the Mirasvit Cache Warmer extension for Magento and Adobe Commerce. This flaw stems from unsafe deserialization of untrusted user input, enabling unauthenticated attackers to execute arbitrary code on the hosting server.
-
CVE-2026-40175: A prototype pollution vulnerability affects the Axios HTTP client library. Attackers can exploit this to inject malicious properties into the global JavaScript object prototype, potentially causing application crashes (Denial of Service) or executing unauthorized code depending on the application structure.
Impact
Successful exploitation of these vulnerabilities could allow unauthenticated attackers to execute arbitrary code, manipulate database contents, or induce application crashes, leading to severe operational disruption or complete server compromise. These newly deployed signatures intercept these advanced malicious payloads at the edge before they can interact with vulnerable software configurations.
Ruleset Rule ID Legacy Rule ID Description Previous Action New Action Comments Cloudflare Managed Ruleset N/A Axios - Prototype Pollution - CVE:CVE-2026-40175 Log Block This is a new detection.
Cloudflare Managed Ruleset N/A Drupal - PostgreSQL SQLi - CVE:CVE-2026-9082 - Body Log Block This is a new detection.
Cloudflare Managed Ruleset N/A Drupal - PostgreSQL SQLi - CVE:CVE-2026-9082 - URI Log Block This is a new detection.
Cloudflare Managed Ruleset N/A SQLi - Obfuscated Boolean - Body N/A Disabled This is a new detection.
Cloudflare Managed Ruleset N/A SQLi - Obfuscated Boolean - Headers N/A Disabled This is a new detection.
Cloudflare Managed Ruleset N/A Mirasvit Cache Warmer - PHP Object Injection - CVE:CVE-2026-45247 N/A Block This is a new detection.
-
Announcement Date Release Date Release Behavior Legacy Rule ID Rule ID Description Comments 2026-06-09 2026-06-15 Log N/A Ghost CMS - SQLi - CVE:CVE-2026-26980 This is a new detection.
2026-06-09 2026-06-15 Log N/A SQLi - Obfuscated Boolean - URI This is a new detection.
You can now send emails through Cloudflare Email Service using authenticated SMTP submission on
smtp.mx.cloudflare.net:465. SMTP joins the REST API and the Workers binding as a third way to send transactional email — useful for existing applications that already speak SMTP and language-native SMTP libraries (Nodemailer,smtplib, PHPMailer, JavaMail).Setting Value Host smtp.mx.cloudflare.netPort 465(implicit TLS)AUTH PLAINorLOGINUsername api_tokenPassword A Cloudflare API token (account-owned or user-owned) with Email Sending: Edit Submissions enter the same delivery pipeline as the REST API and Workers binding: identical limits, automatic DKIM and ARC signing, and shared dashboard logs.
Send your first email with a single command:
Terminal window curl --ssl-reqd \--url "smtps://smtp.mx.cloudflare.net:465" \--user "api_token:<API_TOKEN>" \--mail-from "welcome@yourdomain.com" \--mail-rcpt "user@example.com" \--upload-file mail.txtRefer to the SMTP reference for authentication details, response codes, and language-specific examples.
R2 SQL now supports set operations (
UNION,INTERSECT,EXCEPT) andSELECT DISTINCT, expanding the range of analytical queries you can run directly on Apache Iceberg ↗ tables in R2 Data Catalog.Combine the results of multiple
SELECTstatements:UNION— returns all rows from both queries, removing duplicatesUNION ALL— returns all rows from both queries, including duplicatesINTERSECT— returns only rows that appear in both queriesEXCEPT— returns rows from the first query that do not appear in the second
-- Find zones that had either firewall blocks OR high-risk requestsSELECT zone_id FROM my_namespace.firewall_events WHERE action = 'block'UNIONSELECT zone_id FROM my_namespace.http_requests WHERE risk_score > 0.8-- Find zones with both firewall blocks AND high trafficSELECT zone_id FROM my_namespace.firewall_events WHERE action = 'block'INTERSECTSELECT zone_id FROM my_namespace.http_requestsGROUP BY zone_idHAVING COUNT(*) > 10000-- Find enterprise zones that have not been compactedSELECT zone_id FROM my_namespace.zones WHERE plan = 'enterprise'EXCEPTSELECT zone_id FROM my_namespace.compaction_historyEliminate duplicate rows from query results:
SELECT DISTINCT region, departmentFROM my_namespace.sales_dataWHERE total_amount > 1000ORDER BY region, departmentLIMIT 100For large datasets where approximate results are acceptable,
approx_distinct()remains a faster alternative for counting unique values.For the full syntax reference, refer to the SQL reference. For performance guidance, refer to Limitations and best practices.
RealtimeKit lets you build products where people meet over live audio and video — such as HealthTech, EdTech, proctoring, and other real-time platforms — on Cloudflare's global WebRTC infrastructure.
Post-meeting transcription is now Generally Available, so completed RealtimeKit meetings can automatically produce full transcript files after they end. Those transcripts can also power AI-generated summaries for meeting notes, review workflows, and follow-up tasks after the transcript is available.
Post-meeting transcription is a managed service powered by Workers AI using Whisper Large v3 Turbo. RealtimeKit handles transcription processing and can return transcript and summary files through webhooks or the REST API, so you do not need to run your own transcription infrastructure.
To generate a transcript after a meeting ends, set
transcribe_on_end: truewhen creating a meeting. To also generate an AI summary automatically after the transcript is available, setsummarize_on_end: true:Terminal window curl -X POST "https://api.cloudflare.com/client/v4/accounts/$ACCOUNT_ID/realtime/kit/$APP_ID/meetings" \-H "Authorization: Bearer $CLOUDFLARE_API_TOKEN" \-H "Content-Type: application/json" \-d '{"title": "Weekly product review","transcribe_on_end": true,"summarize_on_end": true,"ai_config": {"transcription": {"language": "en"},"summarization": {"word_limit": 500,"text_format": "markdown","summary_type": "team_meeting"}}}'When RealtimeKit finishes processing a meeting, it creates download URLs for the transcript and, if
summarize_on_endis set, the summary. You can receive those URLs automatically with webhooks, or fetch them later for a specific session with the REST API.To receive results as soon as they are ready, configure the
meeting.transcriptandmeeting.summarywebhook events:Terminal window curl -X POST "https://api.cloudflare.com/client/v4/accounts/$ACCOUNT_ID/realtime/kit/$APP_ID/webhooks" \-H "Authorization: Bearer $CLOUDFLARE_API_TOKEN" \-H "Content-Type: application/json" \-d '{"name": "AI results webhook","url": "https://example.com/webhook","events": ["meeting.transcript", "meeting.summary"],"enabled": true}'To fetch results later, call the transcript or summary endpoint for the session:
Terminal window curl -X GET "https://api.cloudflare.com/client/v4/accounts/$ACCOUNT_ID/realtime/kit/$APP_ID/sessions/$SESSION_ID/transcript" \-H "Authorization: Bearer $CLOUDFLARE_API_TOKEN"curl -X GET "https://api.cloudflare.com/client/v4/accounts/$ACCOUNT_ID/realtime/kit/$APP_ID/sessions/$SESSION_ID/summary" \-H "Authorization: Bearer $CLOUDFLARE_API_TOKEN"Use the Generate summary of transcripts for the session API only if
summarize_on_endwas not set and you want to generate a summary manually after the transcript is available:Terminal window curl -X POST "https://api.cloudflare.com/client/v4/accounts/$ACCOUNT_ID/realtime/kit/$APP_ID/sessions/$SESSION_ID/summary" \-H "Authorization: Bearer $CLOUDFLARE_API_TOKEN"Post-meeting transcription supports CSV, JSON, SRT, and VTT transcript outputs, automatic language detection and Whisper language codes. RealtimeKit also supports real-time transcription with Deepgram Nova-3 for live captions, in-meeting accessibility, and real-time note-taking.
Learn more in the RealtimeKit transcription docs and summary docs.
Cloudforce One users can now turn Threat Events indicators into active defense. With this update, users can instantly generate a WAF rule that matches the dynamic list of IP addresses returned by any of their Saved Views.
Threat intelligence is most effective when it is immediately actionable. Previously, blocking threat actors required manually extracting indicators from threat events and copying them into your firewall rules. This new integration bridges the gap between threat discovery and threat mitigation:
- When you identify an active threat pattern - such as an ongoing campaign targeting a specific industry, or using a known indicator type - you can pivot from investigation to mitigation in a single click.
- Instead of writing complex, static IP rules, this functionality allows you to leverage the specific filtering logic you have already defined and saved within your Threat Events ecosystem.
- Automating the generation of the WAF rule expression from your threat views eliminates manual copying errors, ensuring that the right malicious infrastructure is blocked instantly.
You can implement these rules through both the dashboard UI and via the API / Terraform.
Go to Cloudflare Dashboard > Application Security > Threat Intelligence > Manage Views, select your desired view, and select Create WAF Rule.
This will automatically pre-populate the WAF rule builder with the matching threat event IP indicators.
You can also automate this workflow by utilizing the WAF Rule Builder API alongside your Threat Events saved views endpoints.
TL;DR: We’ve launched Threat Actor Profiles directly inside the Threat Events dashboard. You can now immediately pivot from a generic alert or blocked event to a profile that unmasks the "Who, Why, and How" behind a threat event.
Security teams often suffer from a visibility gap. When an attack is blocked, it's difficult to know if it was a random automated bot or a sophisticated advanced persistent threat (APT) campaign specifically targeting your industry. Finding out usually means leaving your security dashboard to hunt through external OSINT feeds or static, out-of-date threat reports. Threat Actor Profiles solve this by sharing Cloudforce One’s deep adversary research directly inside your workflow:
- Cloudflare sees the traffic in real-time across approximately 20% of the web. This means actor profiles display active malicious infrastructure the moment it touches our global edge.
- Every profile provides clear strategic and tactical modules including alternative aliases, origin tracking, historical threat event volume, and MITRE ATT&CK mapping detailing the adversary's technical methods.
- You can search the dedicated threat actor directory or click an actor's name inside any threat event to view all details and related events to the specific threat actor.
Adversary tracking is now available in the Cloudflare Dashbboard and ready to be included in your daily investigation workflow:
- Click on the Threat Actor name in the Threat Events table to open their full identity profile and review their aliases and attack stats.
- Navigate to Cloudflare Dashboard > Application Security > Threat Intelligence to explore the new Threat Actors tab. Here, you can browse a card-based directory of all established entities tracked by Cloudforce One.
Learn more in the Cloudforce One documentation ↗.
Workflows now supports saga-style rollbacks, allowing you to add compensating logic to each
step.do()in case of downstream failures. If the instance fails, the rollback handlers will execute in reversestep-startorder.This is useful for multi-step operations that touch external systems, such as inventory reservations, payment authorization, ticket creation, or infrastructure provisioning. Instead of writing all cleanup logic in a top-level
catch, you can keep each compensating action next to the step it undoes.Rollback handlers support their own retry and timeout configuration, and Workflows now exposes rollback outcomes in instance status responses. Workflows analytics also emits rollback lifecycle events, making it easier to distinguish a forward execution failure from a rollback failure when debugging production workflows.
JavaScript await step.do("provision resource",async () => {const resource = await provisionResource();return { resourceId: resource.id };},{rollback: async ({ output }) => {const { resourceId } = output;await deleteResource(resourceId);},rollbackConfig: {retries: { limit: 3, delay: "15 seconds", backoff: "linear" },timeout: "2 minutes",},},);TypeScript await step.do("provision resource",async () => {const resource = await provisionResource();return { resourceId: resource.id };},{rollback: async ({ output }) => {const { resourceId } = output as { resourceId: string };await deleteResource(resourceId);},rollbackConfig: {retries: { limit: 3, delay: "15 seconds", backoff: "linear" },timeout: "2 minutes",},},);Refer to rollback options to learn more.
AI Gateway now supports spend limits — cost-based budgets that track cumulative dollar spend and block requests when the budget is exceeded. Unlike rate limiting, which caps the number of requests, spend limits track actual cost based on token usage and model pricing.
You can scope limits by model, provider, or custom metadata dimensions. For example, give each user a $200/day budget, cap total gateway spend at $10,000/day, or limit a specific model to $50/day per user. Each rule uses a configurable time window with fixed or sliding enforcement.
Spend limits work with both Unified Billing and BYOK requests for models with known pricing.
For more details, refer to the Spend limits documentation.
Radar now provides finer-grained traffic charts for longer time ranges. Previously, selecting a 1-3 month view on HTTP and NetFlows charts defaulted to weekly aggregation, which was too coarse to surface meaningful trends. Views longer than 3 months defaulted to monthly aggregation, returning as few as 7 data points for a 6-month range.
The new defaults are:
- 1-3 months: daily granularity (7x more data points)
- Longer than 3 months (HTTP and NetFlows): weekly granularity (4x more data points)
For example, a 12-week traffic view previously showed weekly data:
The same view now shows daily data:
Similarly, a 1-year HTTP traffic view that previously showed just 12 monthly data points now provides 52 weekly data points.
Visit Cloudflare Radar ↗ to explore the new granular views.
Workers using a VPC Network binding with
network_id: "cf1:network"now egress to public Internet destinations through Cloudflare Gateway. This means your existing Zero Trust traffic policies — DNS, HTTP, Network, and egress — extend to traffic that originates from your Workers, the same way they do for WARP users today.-
Calls
env.EGRESS.fetch() - VPC binding
-
Bind via
cf1:network - Public Internet
Any public hostname or IP
What you get by default:
- Visibility. Worker egress shows up in Gateway DNS, HTTP, and Network logs alongside your other traffic, so you can audit what your Workers are calling and when.
- Enforcement. Any existing Gateway policy whose selectors match a Worker request will apply — including allow / block lists, DNS category filtering, and HTTP destination rules. If you have already blocked a category for your workforce, your Workers inherit that block.
JSONC {"vpc_networks": [{"binding": "EGRESS","network_id": "cf1:network","remote": true,},],}TOML [[vpc_networks]]binding = "EGRESS"network_id = "cf1:network"remote = trueJavaScript // Egress to a public destination — subject to your Gateway policies and loggedconst response = await env.EGRESS.fetch("https://api.example.com/data");TypeScript // Egress to a public destination — subject to your Gateway policies and loggedconst response = await env.EGRESS.fetch("https://api.example.com/data");For configuration options, refer to VPC Networks. For policy authoring, refer to Cloudflare Gateway traffic policies.
-
Cloudflare Access now supports IdP federation, which allows organizations to share a single identity provider across multiple Cloudflare accounts.
Instead of configuring the same IdP (for example, Okta or Entra ID) separately in every account, you configure it once in a source account and share it with the other accounts in your organization. Each recipient account gets a read-only IdP connection that routes authentication back to the source account through a bridge — a hidden application in the source account that brokers the cross-account login. End users sign in with their existing IdP credentials, and each account's Access policies evaluate the resulting identity just like any other IdP login.
Key capabilities:
- One IdP, many accounts — Configure your IdP once and share it with all accounts in your organization.
- Lifecycle management — As accounts join or leave your Cloudflare organization, their IdP connections are provisioned and removed automatically — no manual cleanup required.
- Immutable recipient connections — IdP connections in recipient accounts cannot be accidentally modified or deleted.
To get started, refer to IdP federation.
Pay-as-you-go customers can now view billable usage and create budget alerts directly from the product overview pages for Workers & Pages, D1, R2, Workers KV, Queues, Vectorize, Durable Objects, and Containers. A new sidebar widget shows current-period spend and the billing cycle date range, alongside a button to create a budget alert.
The widget pulls from the same data as the Billable Usage dashboard and aligns to your billing cycle (or the current day on Free plans), so the numbers match your invoice. Enterprise contract accounts are not yet supported.
Selecting Create budget alert opens the budget alert flow inline so you can set a dollar threshold in the same place you are reviewing usage. Budget alerts apply to your total account-level spend across all products, not just the product page you create them from.
For more information, refer to the Usage-based billing documentation.
The
pipelinefield inside thepipelinesbinding configuration in your Wrangler configuration file has been renamed tostream. The old field is deprecated but still accepted.Update your configuration to use
streamto avoid the deprecation warning.Before (deprecated):
JSONC {"$schema": "./node_modules/wrangler/config-schema.json","pipelines": [{"binding": "MY_PIPELINE","pipeline": "<STREAM_ID>"}]}TOML [[pipelines]]binding = "MY_PIPELINE"pipeline = "<STREAM_ID>"After:
JSONC {"$schema": "./node_modules/wrangler/config-schema.json","pipelines": [{"binding": "MY_PIPELINE","stream": "<STREAM_ID>"}]}TOML [[pipelines]]binding = "MY_PIPELINE"stream = "<STREAM_ID>"No other changes are required. The binding name, TypeScript types, and runtime API (
env.MY_PIPELINE.send(...)) remain the same.For more information on configuring pipeline bindings, refer to Writing to streams.
Cloudflare Access now supports SAML assertion encryption for identity provider integrations. When turned on, your identity provider encrypts SAML assertions using a Cloudflare-managed certificate before sending them through the user's browser. Only Access can decrypt these assertions, protecting sensitive identity data even after TLS termination.
Without encryption, SAML assertions are transmitted in plaintext and could be visible to browser extensions or client-side malware.
SAML encryption includes built-in certificate lifecycle management:
- Automatic certificate generation: Access generates an encryption certificate when you turn on SAML encryption for an identity provider.
- Certificate rotation: Rotate certificates without downtime. The previous certificate remains valid until expiration, giving you time to update your IdP.
- PEM export: Copy the certificate in PEM format for manual upload to your IdP, or point your IdP to the SAML metadata endpoint for automatic retrieval.
To get started, refer to Encrypt SAML assertions.
Today we are launching self-managed OAuth, enabling developers to build third-party applications that integrate with Cloudflare via OAuth. This provides a more secure, user-friendly, and manageable alternative to API tokens.
OAuth lets third-party applications act on behalf of a user to access their Cloudflare account. For example, after a user grants consent, Wrangler can deploy Workers into that account.
Cloudflare Developers can now create and manage their own OAuth applications to integrate with Cloudflare.
To create an application, go to Manage account > OAuth clients in your account on the Cloudflare dashboard.
Go to OAuth clientsIf you have used an API token to call Cloudflare APIs, OAuth client scopes will look familiar. Select only the scopes your application needs during application creation, and include that scope list when sending users to Cloudflare for consent.
Users can review the requested scopes before they consent.
Applications start with
privatevisibility. Private applications can only be used by members of the account where the application was created.To make an application available to any Cloudflare user, complete the prerequisites for
publicvisibility.For more information, refer to client visibility.
Before an application can be made public, you must verify the client domain. Domain verification helps users confirm that the application owner controls the domain shown on the consent page.
After verification, users see a verified badge on the consent page.
For more information, refer to domain verification.
For more information, refer to OAuth clients.
You can now create, update, or delete multiple secrets for your Worker in a single request using the bulk secrets endpoint.
- Include a secret with a value to create or update.
- Set a secret to
nullto delete. - Secrets not included in the request are left unchanged.
The following example creates
API_KEY, updates the already existingDB_PASSWORD, and deletesOLD_SECRET:{"secrets": {"API_KEY": { "type": "secret_text", "name": "API_KEY", "text": "my-api-key" },"DB_PASSWORD": { "type": "secret_text", "name": "DB_PASSWORD", "text": "my-db-password" },"OLD_SECRET": null}}You can do the same from the command line using
wrangler secret bulk:Terminal window npx wrangler secret bulk < secrets.jsonTo delete a key, set its value to
nullin the JSON file. Deletion is not supported with.envfiles.Each request supports up to 100 total operations (creates, updates, and deletes combined).
You can now attach cron schedules directly to a Workflow binding in
wrangler.jsonc. Each scheduled run creates a new Workflow instance automatically, so you do not need to define a separate Worker with ascheduledhandler just to trigger your Workflow on an interval.For example, you can configure hourly, every-15-minute, or weekday schedules on the same Workflow:
JSONC {"workflows": [{"name": "my-scheduled-workflow","binding": "MY_WORKFLOW","class_name": "MyScheduledWorkflow","schedules": ["0 * * * *", "*/15 * * * *", "0 9 * * MON-FRI"],},],}Cron workloads get all the same benefits of Workflows with built-in retries, multi-step durable execution, and configurable timeouts of Workflows.
TypeScript import {WorkflowEntrypoint,WorkflowEvent,WorkflowStep,} from "cloudflare:workers";// Runs automatically on each cron schedule defined for the MY_WORKFLOW binding in wrangler.jsonc.export class MyScheduledWorkflow extends WorkflowEntrypoint<Env> {async run(event: WorkflowEvent, step: WorkflowStep) {const data = await step.do("fetch source data", async () => {return await fetchSourceData();});// If this step fails, only this step is retried with the custom logic belowawait step.do("process and store results",{retries: { limit: 5, delay: "30 seconds", backoff: "exponential" },timeout: "10 minutes",},async () => {await processAndStore(data);},);}}This makes it easier to build recurring, scheduled jobs such as database backups, invoice generation, report aggregation, and cleanup tasks without wiring up a separate Cron Trigger entrypoint.
For more information, refer to Trigger Workflows.