Changelog

New updates and improvements at Cloudflare. Subscribe to RSS

All products Access Agents AI Gateway Browser Isolation Browser Rendering Cache / CDN D1 Digital Experience Monitoring Email Routing Cloudflare Fundamentals Hyperdrive Cloudflare Images KV Logs Queues R2 Radar Rules SSL/TLS Stream Cloudflare Web Analytics Workers Workers AI Workers for Platforms Workflows Zaraz

Mar 12, 2025

1. Threaded replies now possible in Email Workers

   Email Routing

   We’re removing some of the restrictions in Email Routing so that AI Agents and task automation can better handle email workflows, including how Workers can reply to incoming emails.

   It's now possible to keep a threaded email conversation with an Email Worker script as long as:

   • The incoming email has to have valid DMARC ↗.
   • The email can only be replied to once in the same EmailMessage event.
   • The recipient in the reply must match the incoming sender.
   • The outgoing sender domain must match the same domain that received the email.
   • Every time an email passes through Email Routing or another MTA, an entry is added to the References list. We stop accepting replies to emails with more than 100 References entries to prevent abuse or accidental loops.

   Here's an example of a Worker responding to Emails using a Workers AI model:

   AI model responding to emails

   import PostalMime from "postal-mime";
   import {createMimeMessage} from "mimetext"
   import { EmailMessage } from "cloudflare:email";
   
   export default {
     async email(message, env, ctx) {
       const email = await PostalMime.parse(message.raw)
       const res = await env.AI.run('@cf/meta/llama-2-7b-chat-fp16', {
         messages: [{
           role: "user",
           content: email.text ?? ''
         }]
       })
   
       // message-id is generated by mimetext
       const response = createMimeMessage()
       response.setHeader("In-Reply-To", message.headers.get("Message-ID")!);
       response.setSender("agent@example.com");
       response.setRecipient(message.from);
       response.setSubject("Llama response");
       response.addMessage({
         contentType: 'text/plain',
         data: res instanceof ReadableStream ? await new Response(res).text() : res.response!
       })
   
       const replyMessage = new EmailMessage("<email>", message.from, response.asRaw());
       await message.reply(replyMessage)
     }
   } satisfies ExportedHandler<Env>;

   See Reply to emails from Workers for more information.

Mar 11, 2025

1. Access your Worker's environment variables from process.env

   Workers

   You can now access environment variables and secrets on process.env when using the nodejs_compat compatability flag.

   const apiClient = ApiClient.new({ apiKey: process.env.API_KEY });
   const LOG_LEVEL = process.env.LOG_LEVEL || "info";

   In Node.js, environment variables are exposed via the global process.env object. Some libraries assume that this object will be populated, and many developers may be used to accessing variables in this way.

   Previously, the process.env object was always empty unless written to in Worker code. This could cause unexpected errors or friction when developing Workers using code previously written for Node.js.

   Now, environment variables, secrets, and version metadata can all be accessed on process.env.

   To opt-in to the new process.env behaviour now, add the nodejs_compat_populate_process_env compatibility flag to your wrangler.json configuration:

   wrangler.jsonc

   {
     // Rest of your configuration
     // Add "nodejs_compat_populate_process_env" to your compatibility_flags array
     "compatibility_flags": ["nodejs_compat", "nodejs_compat_populate_process_env"],
     // Rest of your configuration

   wrangler.toml

   compatibility_flags = [ "nodejs_compat", "nodejs_compat_populate_process_env" ]

   After April 1, 2025, populating process.env will become the default behavior when both nodejs_compat is enabled and your Worker's compatability_date is after "2025-04-01".

Mar 07, 2025

1. Hyperdrive reduces query latency by up to 90% and now supports IP access control lists

   Hyperdrive

   Hyperdrive now pools database connections in one or more regions close to your database. This means that your uncached queries and new database connections have up to 90% less latency as measured from connection pools.

   

   By improving placement of Hyperdrive database connection pools, Workers' Smart Placement is now more effective when used with Hyperdrive, ensuring that your Worker can be placed as close to your database as possible.

   With this update, Hyperdrive also uses Cloudflare's standard IP address ranges ↗ to connect to your database. This enables you to configure the firewall policies (IP access control lists) of your database to only allow access from Cloudflare and Hyperdrive.

   Refer to documentation on how Hyperdrive makes connecting to regional databases from Cloudflare Workers fast.

   This improvement is enabled on all Hyperdrive configurations.

Mar 07, 2025

1. Cloudflare One Agent now supports Endpoint Monitoring

   Digital Experience Monitoring

   Digital Experience Monitoring (DEX) provides visibility into device, network, and application performance across your Cloudflare SASE deployment. The latest release of the Cloudflare One agent (v2025.1.861) now includes device endpoint monitoring capabilities to provide deeper visibility into end-user device performance which can be analyzed directly from the dashboard.

   Device health metrics are now automatically collected, allowing administrators to:

   • View the last network a user was connected to
   • Monitor CPU and RAM utilization on devices
   • Identify resource-intensive processes running on endpoints
   

   This feature complements existing DEX features like synthetic application monitoring and network path visualization, creating a comprehensive troubleshooting workflow that connects application performance with device state.

   For more details refer to our DEX documentation.

Mar 06, 2025

1. Introducing Media Transformations from Cloudflare Stream

   Stream

   Today, we are thrilled to announce Media Transformations, a new service that brings the magic of Image Transformations to short-form video files, wherever they are stored!

   For customers with a huge volume of short video — generative AI output, e-commerce product videos, social media clips, or short marketing content — uploading those assets to Stream is not always practical. Sometimes, the greatest friction to getting started was the thought of all that migrating. Customers want a simpler solution that retains their current storage strategy to deliver small, optimized MP4 files. Now you can do that with Media Transformations.

   To transform a video or image, enable transformations for your zone, then make a simple request with a specially formatted URL. The result is an MP4 that can be used in an HTML video element without a player library. If your zone already has Image Transformations enabled, then it is ready to optimize videos with Media Transformations, too.

   URL format

   https://example.com/cdn-cgi/media/<OPTIONS>/<SOURCE-VIDEO>

   For example, we have a short video of the mobile in Austin's office. The original is nearly 30 megabytes and wider than necessary for this layout. Consider a simple width adjustment:

   Example URL

   https://example.com/cdn-cgi/media/width=640/<SOURCE-VIDEO>
   https://developers.cloudflare.com/cdn-cgi/media/width=640/https://pub-d9fcbc1abcd244c1821f38b99017347f.r2.dev/aus-mobile.mp4

   The result is less than 3 megabytes, properly sized, and delivered dynamically so that customers do not have to manage the creation and storage of these transformed assets.

   For more information, learn about Transforming Videos.

Mar 06, 2025

1. One-click Logpush Setup with R2 Object Storage

   Logs

   We’ve streamlined the Logpush setup process by integrating R2 bucket creation directly into the Logpush workflow!

   Now, you no longer need to navigate multiple pages to manually create an R2 bucket or copy credentials. With this update, you can seamlessly configure a Logpush job to R2 in just one click, reducing friction and making setup faster and easier.

   This enhancement makes it easier for customers to adopt Logpush and R2.

   For more details refer to our Logs documentation.

   

Mar 06, 2025

1. Set retention polices for your R2 bucket with bucket locks

   R2

   You can now use bucket locks to set retention policies on your R2 buckets (or specific prefixes within your buckets) for a specified period — or indefinitely. This can help ensure compliance by protecting important data from accidental or malicious deletion.

   Locks give you a few ways to ensure your objects are retained (not deleted or overwritten). You can:

   • Lock objects for a specific duration, for example 90 days.
   • Lock objects until a certain date, for example January 1, 2030.
   • Lock objects indefinitely, until the lock is explicitly removed.

   Buckets can have up to 1,000 bucket lock rules. Each rule specifies which objects it covers (via prefix) and how long those objects must remain retained.

   Here are a couple of examples showing how you can configure bucket lock rules using Wrangler:

   Ensure all objects in a bucket are retained for at least 180 days

   npx wrangler r2 bucket lock add <bucket> --name 180-days-all --retention-days 180

   Prevent deletion or overwriting of all logs indefinitely (via prefix)

   npx wrangler r2 bucket lock add <bucket> --name indefinite-logs --prefix logs/ --retention-indefinite

   For more information on bucket locks and how to set retention policies for objects in your R2 buckets, refer to our documentation.

Mar 04, 2025

1. Gain visibility into user actions in Zero Trust Browser Isolation sessions

   Browser Isolation

   We're excited to announce that new logging capabilities for Remote Browser Isolation (RBI) through Logpush are available in Beta starting today!

   With these enhanced logs, administrators can gain visibility into end user behavior in the remote browser and track blocked data extraction attempts, along with the websites that triggered them, in an isolated session.

   {
     "AccountID": "$ACCOUNT_ID",
     "Decision": "block",
     "DomainName": "www.example.com",
     "Timestamp": "2025-02-27T23:15:06Z",
     "Type": "copy",
     "UserID": "$USER_ID"
   }

   User Actions available:

   • Copy & Paste
   • Downloads & Uploads
   • Printing

   Learn more about how to get started with Logpush in our documentation.

Mar 03, 2025

1. New SAML and OIDC Fields and SAML transforms for Access for SaaS

   Access

   Access for SaaS applications now include more configuration options to support a wider array of SaaS applications.

   SAML and OIDC Field Additions

   OIDC apps now include:

   • Group Filtering via RegEx
   • OIDC Claim mapping from an IdP
   • OIDC token lifetime control
   • Advanced OIDC auth flows including hybrid and implicit flows
   

   SAML apps now include improved SAML attribute mapping from an IdP.

   

   SAML transformations

   SAML identities sent to Access applications can be fully customized using JSONata expressions. This allows admins to configure the precise identity SAML statement sent to a SaaS application.

   

Feb 28, 2025

1. Use the latest JavaScript features with Wrangler CLI v4.0.0-rc.0

   Workers

   We've released a release candidate of the next major version of Wrangler, the CLI for Cloudflare Workers — wrangler@4.0.0-rc.0.

   You can run the following command to install it and be one of the first to try it out:

   npm

   npm i wrangler@v4-rc

   pnpm

   pnpm add wrangler@v4-rc

   yarn

   yarn add wrangler@v4-rc

   Unlike previous major versions of Wrangler, which were foundational rewrites ↗ and rearchitectures ↗ — Version 4 of Wrangler includes a much smaller set of changes. If you use Wrangler today, your workflow is very unlikely to change. Before we release Wrangler v4 and advance past the release candidate stage, we'll share a detailed migration guide in the Workers developer docs. But for the vast majority of cases, you won't need to do anything to migrate — things will just work as they do today. We are sharing this release candidate in advance of the official release of v4, so that you can try it out early and share feedback.

   New JavaScript language features that you can now use with Wrangler v4

   Version 4 of Wrangler updates the version of esbuild ↗ that Wrangler uses internally, allowing you to use modern JavaScript language features, including:

   The using keyword from Explicit Resource Management

   The using keyword from the Explicit Resource Management standard makes it easier to work with the JavaScript-native RPC system built into Workers. This means that when you obtain a stub, you can ensure that it is automatically disposed when you exit scope it was created in:

   function sendEmail(id, message) {
     using user = await env.USER_SERVICE.findUser(id);
     await user.sendEmail(message);
   
     // user[Symbol.dispose]() is implicitly called at the end of the scope.
   }

   Import attributes

   Import attributes ↗ allow you to denote the type or other attributes of the module that your code imports. For example, you can import a JSON module, using the following syntax:

   import data from "./data.json" with { type: "json" };

   Other changes

   --local is now the default for all CLI commands

   All commands that access resources (for example, wrangler kv, wrangler r2, wrangler d1) now access local datastores by default, ensuring consistent behavior.

   Clearer policy for the minimum required version of Node.js required to run Wrangler

   Moving forward, the active, maintenance, and current versions of Node.js ↗ will be officially supported by Wrangler. This means the minimum officially supported version of Node.js you must have installed for Wrangler v4 will be Node.js v18 or later. This policy mirrors how many other packages and CLIs support older versions of Node.js, and ensures that as long as you are using a version of Node.js that the Node.js project itself supports, this will be supported by Wrangler as well.

   Features previously deprecated in Wrangler v3 are now removed in Wrangler v4

   All previously deprecated features in Wrangler v2 ↗ and in Wrangler v3 ↗ have now been removed. Additionally, the following features that were deprecated during the Wrangler v3 release have been removed:

   • Legacy Assets (using wrangler dev/deploy --legacy-assets or the legacy_assets config file property). Instead, we recommend you migrate to Workers assets ↗.
   • Legacy Node.js compatibility (using wrangler dev/deploy --node-compat or the node_compat config file property). Instead, use the nodejs_compat compatibility flag ↗. This includes the functionality from legacy node_compat polyfills and natively implemented Node.js APIs.
   • wrangler version. Instead, use wrangler --version to check the current version of Wrangler.
   • getBindingsProxy() (via import { getBindingsProxy } from "wrangler"). Instead, use the getPlatformProxy() API ↗, which takes exactly the same arguments.
   • usage_model. This no longer has any effect, after the rollout of Workers Standard Pricing ↗.

   We'd love your feedback! If you find a bug or hit a roadblock when upgrading to Wrangler v4, open an issue on the cloudflare/workers-sdk repository on GitHub ↗.

Feb 27, 2025

1. DNS Insights in Cloudflare Radar

   Radar

   Radar has expanded its DNS insights, providing visibility into aggregated traffic and usage trends observed by our 1.1.1.1 DNS resolver. In addition to global, location, and ASN traffic trends, we are also providing perspectives on protocol usage, query/response characteristics, and DNSSEC usage.

   Previously limited to the top locations and ASes endpoints, we have now introduced the following endpoints:

   • timeseries: Retrieves DNS query volume over time.
   • summary: Retrieves summaries of DNS query distribution across ten different dimensions.
   • timeseries_group: Retrieves timeseries data for DNS query distribution across ten different dimensions.

   For the summary and timeseries_groups endpoints, the following dimensions are available, displaying the distribution of DNS queries based on:

   • cache_hit: Cache status (hit vs. miss).
   • dnsssec: DNSSEC support status (secure, insecure, invalid or other).
   • dnsssec_aware: DNSSEC client awareness (aware vs. not-aware).
   • dnsssec_e2e: End-to-end security (secure vs. insecure).
   • ip_version: IP version (IPv4 vs. IPv6).
   • matching_answer: Matching answer status (match vs. no-match).
   • protocol: Transport protocol (UDP, TLS, HTTPS or TCP).
   • query_type: Query type (A, AAAA, PTR, etc.).
   • response_code: Response code (NOERROR, NXDOMAIN, REFUSED, etc.).
   • response_ttl: Response TTL.

   Learn more about the new Radar DNS insights in our blog post ↗, and check out the new Radar page ↗.

Feb 27, 2025

1. New REST API is in open beta!

   Browser Rendering

   We've released a new REST API for Browser Rendering in open beta, making interacting with browsers easier than ever. This new API provides endpoints for common browser actions, with more to be added in the future.

   With the REST API you can:

   • Capture screenshots – Use /screenshot to take a screenshot of a webpage from provided URL or HTML.
   • Generate PDFs – Use /pdf to convert web pages into PDFs.
   • Extract HTML content – Use /content to retrieve the full HTML from a page. Snapshot (HTML + Screenshot) – Use /snapshot to capture both the page's HTML and a screenshot in one request
   • Scrape Web Elements – Use /scrape to extract specific elements from a page.

   For example, to capture a screenshot:

   Screenshot example

   curl -X POST 'https://api.cloudflare.com/client/v4/accounts/<accountId>/browser-rendering/screenshot' \
     -H 'Authorization: Bearer <apiToken>' \
     -H 'Content-Type: application/json' \
     -d '{
       "html": "Hello World!",
       "screenshotOptions": {
         "type": "webp",
         "omitBackground": true
       }
     }' \
     --output "screenshot.webp"

   Learn more in our documentation.

Feb 26, 2025

1. Introducing Guardrails in AI Gateway

   AI Gateway

   AI Gateway now includes Guardrails, to help you monitor your AI apps for harmful or inappropriate content and deploy safely.

   Within the AI Gateway settings, you can configure:

   • Guardrails: Enable or disable content moderation as needed.
   • Evaluation scope: Select whether to moderate user prompts, model responses, or both.
   • Hazard categories: Specify which categories to monitor and determine whether detected inappropriate content should be blocked or flagged.
   

   Learn more in the blog ↗ or our documentation.

Feb 25, 2025

1. Workers AI now supports structured JSON outputs.

   Workers AI

   Workers AI now supports structured JSON outputs with JSON mode, which allows you to request a structured output response when interacting with AI models.

   This makes it much easier to retrieve structured data from your AI models, and avoids the (error prone!) need to parse large unstructured text responses to extract your data.

   JSON mode in Workers AI is compatible with the OpenAI SDK's structured outputs ↗ response_format API, which can be used directly in a Worker:

   JavaScript

   import { OpenAI } from "openai";
   
   // Define your JSON schema for a calendar event
   const CalendarEventSchema = {
     type: "object",
     properties: {
       name: { type: "string" },
       date: { type: "string" },
       participants: { type: "array", items: { type: "string" } },
     },
     required: ["name", "date", "participants"],
   };
   
   export default {
     async fetch(request, env) {
       const client = new OpenAI({
         apiKey: env.OPENAI_API_KEY,
         // Optional: use AI Gateway to bring logs, evals & caching to your AI requests
         // https://developers.cloudflare.com/ai-gateway/providers/openai/
         // baseUrl: "https://gateway.ai.cloudflare.com/v1/{account_id}/{gateway_id}/openai"
       });
   
       const response = await client.chat.completions.create({
         model: "gpt-4o-2024-08-06",
         messages: [
           { role: "system", content: "Extract the event information." },
           {
             role: "user",
             content: "Alice and Bob are going to a science fair on Friday.",
           },
         ],
         // Use the `response_format` option to request a structured JSON output
         response_format: {
           // Set json_schema and provide ra schema, or json_object and parse it yourself
           type: "json_schema",
           schema: CalendarEventSchema, // provide a schema
         },
       });
   
       // This will be of type CalendarEventSchema
       const event = response.choices[0].message.parsed;
   
       return Response.json({
         calendar_event: event,
       });
     },
   };

   TypeScript

   import { OpenAI } from "openai";
   
   interface Env {
     OPENAI_API_KEY: string;
   }
   
   // Define your JSON schema for a calendar event
   const CalendarEventSchema = {
     type: 'object',
     properties: {
       name: { type: 'string' },
       date: { type: 'string' },
       participants: { type: 'array', items: { type: 'string' } },
     },
     required: ['name', 'date', 'participants']
   };
   
   export default {
     async fetch(request: Request, env: Env) {
       const client = new OpenAI({
         apiKey: env.OPENAI_API_KEY,
         // Optional: use AI Gateway to bring logs, evals & caching to your AI requests
         // https://developers.cloudflare.com/ai-gateway/providers/openai/
         // baseUrl: "https://gateway.ai.cloudflare.com/v1/{account_id}/{gateway_id}/openai"
       });
   
       const response = await client.chat.completions.create({
         model: 'gpt-4o-2024-08-06',
         messages: [
           { role: 'system', content: 'Extract the event information.' },
           { role: 'user', content: 'Alice and Bob are going to a science fair on Friday.' },
         ],
         // Use the `response_format` option to request a structured JSON output
         response_format: {
           // Set json_schema and provide ra schema, or json_object and parse it yourself
           type: 'json_schema',
           schema: CalendarEventSchema, // provide a schema
         },
       });
   
       // This will be of type CalendarEventSchema
       const event = response.choices[0].message.parsed;
   
       return Response.json({
         "calendar_event": event,
       })
     }
   }

   To learn more about JSON mode and structured outputs, visit the Workers AI documentation.

Feb 25, 2025

1. Concurrent Workflow instances limits increased.

   Workflows

   Workflows now supports up to 4,500 concurrent (running) instances, up from the previous limit of 100. This limit will continue to increase during the Workflows open beta. This increase applies to all users on the Workers Paid plan, and takes effect immediately.

   Review the Workflows limits documentation and/or dive into the get started guide to start building on Workflows.

Feb 25, 2025

1. Introducing the agents-sdk

   Agents Workers

   We've released the agents-sdk ↗, a package and set of tools that help you build and ship AI Agents.

   You can get up and running with a chat-based AI Agent ↗ (and deploy it to Workers) that uses the agents-sdk, tool calling, and state syncing with a React-based front-end by running the following command:

   npm create cloudflare@latest agents-starter -- --template="cloudflare/agents-starter"
   # open up README.md and follow the instructions

   You can also add an Agent to any existing Workers application by installing the agents-sdk package directly

   npm i agents-sdk

   ... and then define your first Agent:

   import { Agent } from 'agents-sdk';
   
   export class YourAgent extends Agent<Env> {
     // Build it out
     // Access state on this.state or query the Agent's database via this.sql
     // Handle WebSocket events with onConnect and onMessage
     // Run tasks on a schedule with this.schedule
     // Call AI models
     // ... and/or call other Agents.
   }

   Head over to the Agents documentation to learn more about the agents-sdk, the SDK APIs, as well as how to test and deploying agents to production.

Feb 24, 2025

1. Super Slurper now supports migrations from all S3-compatible storage providers

   R2

   Super Slurper can now migrate data from any S3-compatible object storage provider to Cloudflare R2. This includes transfers from services like MinIO, Wasabi, Backblaze B2, and DigitalOcean Spaces.

   

   For more information on Super Slurper and how to migrate data from your existing S3-compatible storage buckets to R2, refer to our documentation.

Feb 24, 2025

1. Bind the Images API to your Worker

   Cloudflare Images

   You can now interact with the Images API directly in your Worker.

   This allows more fine-grained control over transformation request flows and cache behavior. For example, you can resize, manipulate, and overlay images without requiring them to be accessible through a URL.

   The Images binding can be configured in the Cloudflare dashboard for your Worker or in the wrangler.toml file in your project's directory:

   [images]
   binding = "IMAGES" # i.e. available in your Worker on env.IMAGES

   Within your Worker code, you can interact with this binding by using env.IMAGES.

   Here's how you can rotate, resize, and blur an image, then output the image as AVIF:

   ​​const info = await env.IMAGES.info(stream);
   // stream contains a valid image, and width/height is available on the info object
   
   const response = (
   await env.IMAGES.input(stream)
           .transform({ rotate: 90 })
           .transform({ width: 128 })
           .output({ format: "image/avif" })
         ).response();
   
   return response;

   For more information, refer to Images Bindings.

Feb 24, 2025

1. Workers AI larger context windows

   Workers AI

   We've updated the Workers AI text generation models to include context windows and limits definitions and changed our APIs to estimate and validate the number of tokens in the input prompt, not the number of characters.

   This update allows developers to use larger context windows when interacting with Workers AI models, which can lead to better and more accurate results.

   Our catalog page provides more information about each model's supported context window.

Feb 24, 2025

1. Zaraz moves to the “Tag Management” category in the Cloudflare dashboard

   Zaraz

   

   Previously, you could only configure Zaraz by going to each individual zone under your Cloudflare account. Now, if you’d like to get started with Zaraz or manage your existing configuration, you can navigate to the Tag Management ↗ section on the Cloudflare dashboard – this will make it easier to compare and configure the same settings across multiple zones.

   These changes will not alter any existing configuration or entitlements for zones you already have Zaraz enabled on. If you’d like to edit existing configurations, you can go to the Tag Setup ↗ section of the dashboard, and select the zone you'd like to edit.

Feb 20, 2025

1. Autofix Worker name configuration errors at build time

   Workers

   

   Small misconfigurations shouldn’t break your deployments. Cloudflare is introducing automatic error detection and fixes in Workers Builds, identifying common issues in your wrangler.toml or wrangler.jsonc and proactively offering fixes, so you spend less time debugging and more time shipping.

   Here's how it works:

   1. Before running your build, Cloudflare checks your Worker's Wrangler configuration file (wrangler.toml or wrangler.jsonc) for common errors.
   2. Once you submit a build, if Cloudflare finds an error it can fix, it will submit a pull request to your repository that fixes it.
   3. Once you merge this pull request, Cloudflare will run another build.

   We're starting with fixing name mismatches between your Wrangler file and the Cloudflare dashboard, a top cause of build failures.

   This is just the beginning, we want your feedback on what other errors we should catch and fix next. Let us know in the Cloudflare Developers Discord, #workers-and-pages-feature-suggestions ↗.

Feb 20, 2025

1. Workers AI updated pricing

   Workers AI

   We've updated the Workers AI pricing to include the latest models and how model usage maps to Neurons.

   • Each model's core input format(s) (tokens, audio seconds, images, etc) now include mappings to Neurons, making it easier to understand how your included Neuron volume is consumed and how you are charged at scale
   • Per-model pricing, instead of the previous bucket approach, allows us to be more flexible on how models are charged based on their size, performance and capabilities. As we optimize each model, we can then pass on savings for that model.
   • You will still only pay for what you consume: Workers AI inference is serverless, and not billed by the hour.

   Going forward, models will be launched with their associated Neuron costs, and we'll be updating the Workers AI dashboard and API to reflect consumption in both raw units and Neurons. Visit the Workers AI pricing page to learn more about Workers AI pricing.

Feb 14, 2025

1. Build AI Agents with Example Prompts

   Agents Workers Workflows

   We've added an example prompt to help you get started with building AI agents and applications on Cloudflare Workers, including Workflows, Durable Objects, and Workers KV.

   You can use this prompt with your favorite AI model, including Claude 3.5 Sonnet, OpenAI's o3-mini, Gemini 2.0 Flash, or Llama 3.3 on Workers AI. Models with large context windows will allow you to paste the prompt directly: provide your own prompt within the <user_prompt></user_prompt> tags.

   {paste_prompt_here}
   <user_prompt>
   user: Build an AI agent using Cloudflare Workflows. The Workflow should run when a new GitHub issue is opened on a specific project with the label 'help' or 'bug', and attempt to help the user troubleshoot the issue by calling the OpenAI API with the issue title and description, and a clear, structured prompt that asks the model to suggest 1-3 possible solutions to the issue. Any code snippets should be formatted in Markdown code blocks. Documentation and sources should be referenced at the bottom of the response. The agent should then post the response to the GitHub issue. The agent should run as the provided GitHub bot account.
   </user_prompt>

   This prompt is still experimental, but we encourage you to try it out and provide feedback ↗.

Feb 14, 2025

1. Super Slurper now transfers data to R2 up to 5x faster

   R2

   Super Slurper now transfers data from cloud object storage providers like AWS S3 and Google Cloud Storage to Cloudflare R2 up to 5x faster than it did before.

   We moved from a centralized service to a distributed system built on the Cloudflare Developer Platform — using Cloudflare Workers, Durable Objects, and Queues — to both improve performance and increase system concurrency capabilities (and we'll share more details about how we did it soon!)

   

   Time to copy 75,000 objects from AWS S3 to R2 decreased from 15 minutes 30 seconds (old) to 3 minutes 25 seconds (after performance improvements)

   For more information on Super Slurper and how to migrate data from existing object storage to R2, refer to our documentation.

Feb 14, 2025

1. Customize queue message retention periods

   Queues

   You can now customize a queue's message retention period, from a minimum of 60 seconds to a maximum of 14 days. Previously, it was fixed to the default of 4 days.

   

   You can customize the retention period on the settings page for your queue, or using Wrangler:

   Update message retention period

   $ wrangler queues update my-queue --message-retention-period-secs 600

   This feature is available on all new and existing queues. If you haven't used Cloudflare Queues before, get started with the Cloudflare Queues guide.

Feb 14, 2025

1. Rewind, Replay, Resume: Introducing DVR for Stream Live

   Stream

   Previously, all viewers watched "the live edge," or the latest content of the broadcast, synchronously. If a viewer paused for more than a few seconds, the player would automatically "catch up" when playback started again. Seeking through the broadcast was only available once the recording was available after it conluded.

   Starting today, customers can make a small adjustment to the player embed or manifest URL to enable the DVR experience for their viewers. By offering this feature as an opt-in adjustment, our customers are empowered to pick the best experiences for their applications.

   When building a player embed code or manifest URL, just add dvrEnabled=true as a query parameter. There are some things to be aware of when using this option. For more information, refer to DVR for Live.

Feb 14, 2025

1. Upload a certificate bundle with an RSA and ECDSA certificate per custom hostname

   SSL/TLS

   Cloudflare has supported both RSA and ECDSA certificates across our platform for a number of years. Both certificates offer the same security, but ECDSA is more performant due to a smaller key size. However, RSA is more widely adopted and ensures compatibility with legacy clients. Instead of choosing between them, you may want both – that way, ECDSA is used when clients support it, but RSA is available if not.

   Now, you can upload both an RSA and ECDSA certificate on a custom hostname via the API.

   curl -X POST https://api.cloudflare.com/client/v4/zones/$ZONE_ID/custom_hostnames \
       -H 'Content-Type: application/json' \
       -H "X-Auth-Email: $CLOUDFLARE_EMAIL" \
       -H "X-Auth-Key: $CLOUDFLARE_API_KEY" \
       -d '{
       "hostname": "hostname",
       "ssl": {
           "custom_cert_bundle": [
               {
                   "custom_certificate": "RSA Cert",
                   "custom_key": "RSA Key"
               },
               {
                   "custom_certificate": "ECDSA Cert",
                   "custom_key": "ECDSA Key"
               }
           ],
           "bundle_method": "force",
           "wildcard": false,
           "settings": {
               "min_tls_version": "1.0"
           }
       }
   }’

   You can also:

   • Upload an RSA or ECDSA certificate to a custom hostname with an existing ECDSA or RSA certificate, respectively.

   • Replace the RSA or ECDSA certificate with a certificate of its same type.

   • Delete the RSA or ECDSA certificate (if the custom hostname has both an RSA and ECDSA uploaded).

   This feature is available for Business and Enterprise customers who have purchased custom certificates.

Feb 12, 2025

1. Increased Cloudflare Rules limits

   Rules

   We have upgraded and streamlined Cloudflare Rules limits across all plans, simplifying rule management and improving scalability for everyone.

   New limits by product:

   • Bulk Redirects
     • Free: 20 → 10,000 URL redirects across lists
     • Pro: 500 → 25,000 URL redirects across lists
     • Business: 500 → 50,000 URL redirects across lists
     • Enterprise: 10,000 → 1,000,000 URL redirects across lists
   • Cloud Connector
     • Free: 5 → 10 connectors
     • Enterprise: 125 → 300 connectors
   • Custom Errors
     • Pro: 5 → 25 error assets and rules
     • Business: 20 → 50 error assets and rules
     • Enterprise: 50 → 300 error assets and rules
   • Snippets
     • Pro: 10 → 25 code snippets and rules
     • Business: 25 → 50 code snippets and rules
     • Enterprise: 50 → 300 code snippets and rules
   • Cache Rules, Configuration Rules, Compression Rules, Origin Rules, Single Redirects, and Transform Rules
     • Enterprise: 125 → 300 rules

   Gradual rollout

   Limits are updated gradually. Some customers may still see previous limits until the rollout is fully completed in the first half of 2025.

Feb 11, 2025

1. Custom Errors (beta): Stored Assets & Account-level Rules

   Rules

   We're introducing Custom Errors (beta), which builds on our existing Custom Error Responses feature with new asset storage capabilities.

   This update allows you to store externally hosted error pages on Cloudflare and reference them in custom error rules, eliminating the need to supply inline content.

   This brings the following new capabilities:

   • Custom error assets – Fetch and store external error pages at the edge for use in error responses.
   • Account-Level custom errors – Define error handling rules and assets at the account level for consistency across multiple zones. Zone-level rules take precedence over account-level ones, and assets are not shared between levels.

   You can use Cloudflare API to upload your existing assets for use with Custom Errors:

   curl "https://api.cloudflare.com/client/v4/zones/{zone_id}/custom_pages/assets" \
   --header "Authorization: Bearer <API_TOKEN>" \
   --header 'Content-Type: application/json' \
   --data '{
     "name": "maintenance",
     "description": "Maintenance template page",
     "url": "https://example.com/"
   }'

   You can then reference the stored asset in a Custom Error rule:

   curl --request PUT \
   "https://api.cloudflare.com/client/v4/zones/{zone_id}/rulesets/phases/http_custom_errors/entrypoint" \
   --header "Authorization: Bearer <API_TOKEN>" \
   --header 'Content-Type: application/json' \
   --data '{
     "rules": [
       {
         "action": "serve_error",
         "action_parameters": {
           "asset_name": "maintenance",
           "content_type": "text/html",
           "status_code": 503
         },
         "enabled": true,
         "expression": "http.request.uri.path contains \"error\""
       }
     ]
   }'

Feb 07, 2025

1. Create and deploy Workers from Git repositories

   Workers

   

   You can now create a Worker by:

   • Importing a Git repository: Choose an existing Git repo on your GitHub/GitLab account and set up Workers Builds to deploy your Worker.
   • Deploying a template with Git: Choose from a brand new selection of production ready examples ↗ to help you get started with popular frameworks like Astro ↗, Remix ↗ and Next ↗ or build stateful applications with Cloudflare resources like D1 databases, Workers AI or Durable Objects! When you're ready to deploy, Cloudflare will set up your project by cloning the template to your GitHub/GitLab account, provisioning any required resources and deploying your Worker.

   With every push to your chosen branch, Cloudflare will automatically build and deploy your Worker.

   To get started, go to the Workers dashboard ↗.

   These new features are available today in the Cloudflare dashboard to a subset of Cloudflare customers, and will be coming to all customers in the next few weeks. Don't see it in your dashboard, but want early access? Add your Cloudflare Account ID to this form ↗.

Feb 06, 2025

1. Request timeouts and retries with AI Gateway

   AI Gateway

   AI Gateway adds additional ways to handle requests - Request Timeouts and Request Retries, making it easier to keep your applications responsive and reliable.

   Timeouts and retries can be used on both the Universal Endpoint or directly to a supported provider.

   Request timeouts A request timeout allows you to trigger fallbacks or a retry if a provider takes too long to respond.

   To set a request timeout directly to a provider, add a cf-aig-request-timeout header.

   Provider-specific endpoint example

   curl https://gateway.ai.cloudflare.com/v1/{account_id}/{gateway_id}/workers-ai/@cf/meta/llama-3.1-8b-instruct \
    --header 'Authorization: Bearer {cf_api_token}' \
    --header 'Content-Type: application/json' \
    --header 'cf-aig-request-timeout: 5000'
    --data '{"prompt": "What is Cloudflare?"}'

   Request retries A request retry automatically retries failed requests, so you can recover from temporary issues without intervening.

   To set up request retries directly to a provider, add the following headers:

   • cf-aig-max-attempts (number)
   • cf-aig-retry-delay (number)
   • cf-aig-backoff ("constant" | "linear" | "exponential)

Feb 05, 2025

1. AI Gateway adds Cerebras, ElevenLabs, and Cartesia as new providers

   AI Gateway

   AI Gateway has added three new providers: Cartesia, Cerebras, and ElevenLabs, giving you more even more options for providers you can use through AI Gateway. Here's a brief overview of each:

   • Cartesia provides text-to-speech models that produce natural-sounding speech with low latency.
   • Cerebras delivers low-latency AI inference to Meta's Llama 3.1 8B and Llama 3.3 70B models.
   • ElevenLabs offers text-to-speech models with human-like voices in 32 languages.
   

   To get started with AI Gateway, just update the base URL. Here's how you can send a request to Cerebras using cURL:

   Example fetch request

   curl -X POST https://gateway.ai.cloudflare.com/v1/ACCOUNT_TAG/GATEWAY/cerebras/chat/completions \
    --header 'content-type: application/json' \
    --header 'Authorization: Bearer CEREBRAS_TOKEN' \
    --data '{
       "model": "llama-3.3-70b",
       "messages": [
           {
               "role": "user",
               "content": "What is Cloudflare?"
           }
       ]
   }'

Feb 04, 2025

1. Fight CSAM More Easily Than Ever

   Cache / CDN

   You can now implement our child safety tooling, the CSAM Scanning Tool, more easily. Instead of requiring external reporting credentials, you only need a verified email address for notifications to onboard. This change makes the tool more accessible to a wider range of customers.

   How It Works

   When enabled, the tool automatically hashes images for enabled websites as they enter the Cloudflare cache ↗. These hashes are then checked against a database of known abusive images.

   • Potential match detected?
     • The content URL is blocked, and
     • Cloudflare will notify you about the found matches via the provided email address.

   Updated Service-Specific Terms

   We have also made updates to our Service-Specific Terms ↗ to reflect these changes.

Feb 04, 2025

1. Expanded AI insights in Cloudflare Radar

   Radar

   Radar has expanded its AI insights with new API endpoints for Internet services rankings, robots.txt analysis, and AI inference data.

   Internet services ranking

   Radar now provides rankings for Internet services, including Generative AI platforms, based on anonymized 1.1.1.1 resolver data. Previously limited to the annual Year in Review, these insights are now available daily via the API, through the following endpoints:

   • top show service popularity at a specific date.
   • timeseries_groups track ranking trends over time.

   Robots.txt

   Radar now analyzes robots.txt files from the top 10,000 domains, identifying AI bot access rules. AI-focused user agents from ai.robots.txt ↗ are categorized as:

   • Fully allowed/disallowed if directives apply to all paths (*).
   • Partially allowed/disallowed if restrictions apply to specific paths.

   These insights are now available weekly via the API, through the following endpoints:

   • top/user_agents/directive to get the top AI user agents by directive.
   • top/domain_categories to get the top domain categories by robots.txt files.

   Workers AI

   Radar now provides insights into public AI inference models from Workers AI, tracking usage trends across models and tasks. These insights are now available via the API, through the following endpoints:

   • summary to view aggregated model and task popularity.
   • timeseries_groups to track changes over time for model or task.

   Learn more about the new Radar AI insights in our blog post ↗.

Feb 03, 2025

1. Revamped Workers Metrics

   Workers

   We've revamped the Workers Metrics dashboard ↗.

   

   Now you can easily compare metrics across Worker versions, understand the current state of a gradual deployment, and review key Workers metrics in a single view. This new interface enables you to:

   • Drag-and-select using a graphical timepicker for precise metric selection.
   
   • Use histograms to visualize cumulative metrics, allowing you to bucket and compare rates over time.
   • Focus on Worker versions by directly interacting with the version numbers in the legend.
   
   • Monitor and compare active gradual deployments.
   • Track error rates across versions with grouping both by version and by invocation status.
   • Measure how Smart Placement improves request duration.

   Learn more about metrics.

Feb 03, 2025

1. Terraform v5 Provider is now generally available

   Cloudflare Fundamentals

   

   Cloudflare's v5 Terraform Provider is now generally available. With this release, Terraform resources are now automatically generated based on OpenAPI Schemas. This change brings alignment across our SDKs, API documentation, and now Terraform Provider. The new provider boosts coverage by increasing support for API properties to 100%, adding 25% more resources, and more than 200 additional data sources. Going forward, this will also reduce the barriers to bringing more resources into Terraform across the broader Cloudflare API. This is a small, but important step to making more of our platform manageable through GitOps, making it easier for you to manage Cloudflare just like you do your other infrastructure.

   The Cloudflare Terraform Provider v5 is a ground-up rewrite of the provider and introduces breaking changes for some resource types. Please refer to the upgrade guide ↗ for best practices, or the blog post on automatically generating Cloudflare's Terraform Provider ↗ for more information about the approach.

   For more info

   • Terraform provider ↗
   • Documentation on using Terraform with Cloudflare ↗

Jan 31, 2025

1. Workers for Platforms now supports Static Assets

   Workers for Platforms

   Workers for Platforms customers can now attach static assets (HTML, CSS, JavaScript, images) directly to User Workers, removing the need to host separate infrastructure to serve the assets.

   This allows your platform to serve entire front-end applications from Cloudflare's global edge, utilizing caching for fast load times, while supporting dynamic logic within the same Worker. Cloudflare automatically scales its infrastructure to handle high traffic volumes, enabling you to focus on building features without managing servers.

   What you can build

   Static Sites: Host and serve HTML, CSS, JavaScript, and media files directly from Cloudflare's network, ensuring fast loading times worldwide. This is ideal for blogs, landing pages, and documentation sites because static assets can be efficiently cached and delivered closer to the user, reducing latency and enhancing the overall user experience.

   Full-Stack Applications: Combine asset hosting with Cloudflare Workers to power dynamic, interactive applications. If you're an e-commerce platform, you can serve your customers' product pages and run inventory checks from within the same Worker.

   JavaScript

   index.js

   export default {
     async fetch(request, env) {
       const url = new URL(request.url);
   
       // Check real-time inventory
       if (url.pathname === "/api/inventory/check") {
         const product = url.searchParams.get("product");
         const inventory = await env.INVENTORY_KV.get(product);
         return new Response(inventory);
       }
   
       // Serve static assets (HTML, CSS, images)
       return env.ASSETS.fetch(request);
     },
   };

   TypeScript

   index.ts

   export default {
     async fetch(request, env) {
       const url = new URL(request.url);
   
       // Check real-time inventory
       if (url.pathname === '/api/inventory/check') {
         const product = url.searchParams.get('product');
         const inventory = await env.INVENTORY_KV.get(product);
         return new Response(inventory);
       }
   
       // Serve static assets (HTML, CSS, images)
       return env.ASSETS.fetch(request);
     }
   };

   Get Started: Upload static assets using the Workers for Platforms API or Wrangler. For more information, visit our Workers for Platforms documentation. ↗

Jan 31, 2025

1. Transform HTML quickly with streaming content

   Workers

   You can now transform HTML elements with streamed content using HTMLRewriter.

   Methods like replace, append, and prepend now accept Response and ReadableStream values as Content.

   This can be helpful in a variety of situations. For instance, you may have a Worker in front of an origin, and want to replace an element with content from a different source. Prior to this change, you would have to load all of the content from the upstream URL and convert it into a string before replacing the element. This slowed down overall response times.

   Now, you can pass the Response object directly into the replace method, and HTMLRewriter will immediately start replacing the content as it is streamed in. This makes responses faster.

   JavaScript

   index.js

   class ElementRewriter {
     async element(element) {
       // able to replace elements while streaming content
       // the fetched body is not buffered into memory as part
       // of the replace
       let res = await fetch("https://upstream-content-provider.example");
       element.replace(res);
     }
   }
   
   export default {
     async fetch(request, env, ctx) {
       let response = await fetch("https://site-to-replace.com");
       return new HTMLRewriter()
         .on("[data-to-replace]", new ElementRewriter())
         .transform(response);
     },
   };

   TypeScript

   index.ts

   class ElementRewriter {
     async element(element: any) {
       // able to replace elements while streaming content
       // the fetched body is not buffered into memory as part
       // of the replace
       let res = await fetch('https://upstream-content-provider.example');
       element.replace(res);
     }
   }
   
   export default {
     async fetch(request, env, ctx): Promise<Response> {
       let response = await fetch('https://site-to-replace.com');
       return new HTMLRewriter().on('[data-to-replace]', new ElementRewriter()).transform(response);
     },
   } satisfies ExportedHandler<Env>;

   For more information, see the HTMLRewriter documentation.

Jan 30, 2025

1. AI Gateway Introduces New Worker Binding Methods

   AI Gateway

   We have released new Workers bindings API methods, allowing you to connect Workers applications to AI Gateway directly. These methods simplify how Workers calls AI services behind your AI Gateway configurations, removing the need to use the REST API and manually authenticate.

   To add an AI binding to your Worker, include the following in your Wrangler configuration file:

   

   With the new AI Gateway binding methods, you can now:

   • Send feedback and update metadata with patchLog.
   • Retrieve detailed log information using getLog.
   • Execute universal requests to any AI Gateway provider with run.

   For example, to send feedback and update metadata using patchLog:

   

Jan 30, 2025

1. Increased Browser Rendering limits!

   Workers Browser Rendering

   Browser Rendering now supports 10 concurrent browser instances per account and 10 new instances per minute, up from the previous limits of 2.

   This allows you to launch more browser tasks from Cloudflare Workers.

   To manage concurrent browser sessions, you can use Queues or Workflows:

   JavaScript

   index.js

   export default {
     async queue(batch, env) {
       for (const message of batch.messages) {
         const browser = await puppeteer.launch(env.BROWSER);
         const page = await browser.newPage();
   
         try {
           await page.goto(message.url, {
             waitUntil: message.waitUntil,
           });
           // Process page...
         } finally {
           await browser.close();
         }
       }
     },
   };

   TypeScript

   index.ts

   interface QueueMessage {
     url: string;
     waitUntil: number;
   }
   
   export interface Env {
     BROWSER_QUEUE: Queue<QueueMessage>;
     BROWSER: Fetcher;
   }
   
   export default {
     async queue(batch: MessageBatch<QueueMessage>, env: Env): Promise<void> {
       for (const message of batch.messages) {
         const browser = await puppeteer.launch(env.BROWSER);
         const page = await browser.newPage();
   
         try {
           await page.goto(message.url, {
             waitUntil: message.waitUntil
           });
           // Process page...
         } finally {
           await browser.close();
         }
       }
     }
   };

Jan 30, 2025

1. Expanded language support for Stream AI Generated Captions

   Stream

   Stream's generated captions leverage Workers AI to automatically transcribe audio and provide captions to the player experience. We have added support for these languages:

   • cs - Czech
   • nl - Dutch
   • fr - French
   • de - German
   • it - Italian
   • ja - Japanese
   • ko - Korean
   • pl - Polish
   • pt - Portuguese
   • ru - Russian
   • es - Spanish

   For more information, learn about adding captions to videos.

Jan 29, 2025

1. New Snippets Code Editor

   Rules

   The new Snippets code editor lets you edit Snippet code and rule in one place, making it easier to test and deploy changes without switching between pages.

   

   What’s new:

   • Single-page editing for code and rule – No need to jump between screens.
   • Auto-complete & syntax highlighting – Get suggestions and avoid mistakes.
   • Code formatting & refactoring – Write cleaner, more readable code.

   Try it now in Rules > Snippets ↗.

Jan 28, 2025

1. Automatic configuration for private databases on Hyperdrive

   Hyperdrive

   Hyperdrive now automatically configures your Cloudflare Tunnel to connect to your private database.

   

   When creating a Hyperdrive configuration for a private database, you only need to provide your database credentials and set up a Cloudflare Tunnel within the private network where your database is accessible. Hyperdrive will automatically create the Cloudflare Access, Service Token, and Policies needed to secure and restrict your Cloudflare Tunnel to the Hyperdrive configuration.

   To create a Hyperdrive for a private database, you can follow the Hyperdrive documentation. You can still manually create the Cloudflare Access, Service Token, and Policies if you prefer.

   This feature is available from the Cloudflare dashboard.

Jan 28, 2025

1. Workers KV namespace limits increased to 1000

   KV

   You can now have up to 1000 Workers KV namespaces per account.

   Workers KV namespace limits were increased from 200 to 1000 for all accounts. Higher limits for Workers KV namespaces enable better organization of key-value data, such as by category, tenant, or environment.

   Consult the Workers KV limits documentation for the rest of the limits. This increased limit is available for both the Free and Paid Workers plans.

Jan 28, 2025

1. Support for Node.js DNS, Net, and Timer APIs in Workers

   Workers

   When using a Worker with the nodejs_compat compatibility flag enabled, you can now use the following Node.js APIs:

   • node:net
   • node:dns
   • node:timers

   node:net

   You can use node:net ↗ to create a direct connection to servers via a TCP sockets with net.Socket ↗.

   JavaScript

   index.js

   import net from "node:net";
   
   const exampleIP = "127.0.0.1";
   
   export default {
     async fetch(req) {
       const socket = new net.Socket();
       socket.connect(4000, exampleIP, function () {
         console.log("Connected");
       });
   
       socket.write("Hello, Server!");
       socket.end();
   
       return new Response("Wrote to server", { status: 200 });
     },
   };

   TypeScript

   index.ts

   import net from "node:net";
   
   const exampleIP = "127.0.0.1";
   
   export default {
     async fetch(req): Promise<Response> {
       const socket = new net.Socket();
       socket.connect(4000, exampleIP, function () {
         console.log("Connected");
       });
   
       socket.write("Hello, Server!");
       socket.end();
   
       return new Response("Wrote to server", { status: 200 });
     },
   } satisfies ExportedHandler;

   Additionally, you can now use other APIs incliding net.BlockList ↗ and net.SocketAddress ↗.

   Note that net.Server ↗ is not supported.

   node:dns

   You can use node:dns ↗ for name resolution via DNS over HTTPS using Cloudflare DNS ↗ at 1.1.1.1.

   JavaScript

   index.js

   import dns from "node:dns";
   
   let responese = await dns.promises.resolve4("cloudflare.com", "NS");

   TypeScript

   index.ts

   import dns from 'node:dns';
   
   let responese = await dns.promises.resolve4('cloudflare.com', 'NS');

   All node:dns functions are available, except lookup, lookupService, and resolve which throw "Not implemented" errors when called.

   node:timers

   You can use node:timers ↗ to schedule functions to be called at some future period of time.

   This includes setTimeout ↗ for calling a function after a delay, setInterval ↗ for calling a function repeatedly, and setImmediate ↗ for calling a function in the next iteration of the event loop.

   JavaScript

   index.js

   import timers from "node:timers";
   
   console.log("first");
   timers.setTimeout(() => {
     console.log("last");
   }, 10);
   
   timers.setTimeout(() => {
     console.log("next");
   });

   TypeScript

   index.ts

   import timers from "node:timers";
   
   console.log("first");
   timers.setTimeout(() => {
     console.log("last");
   }, 10);
   
   timers.setTimeout(() => {
     console.log("next");
   });

Jan 15, 2025

1. Increased Workflows limits and improved instance queueing.

   Workflows

   Workflows (beta) now allows you to define up to 1024 steps. sleep steps do not count against this limit.

   We've also added:

   • instanceId as property to the WorkflowEvent type, allowing you to retrieve the current instance ID from within a running Workflow instance
   • Improved queueing logic for Workflow instances beyond the current maximum concurrent instances, reducing the cases where instances are stuck in the queued state.
   • Support for pause and resume for Workflow instances in a queued state.

   We're continuing to work on increases to the number of concurrent Workflow instances, steps, and support for a new waitForEvent API over the coming weeks.

Jan 09, 2025

1. New Rules Overview Interface

   Rules

   Rules Overview gives you a single page to manage all your Cloudflare Rules.

   

   What you can do:

   • See all your rules in one place – No more clicking around.
   • Find rules faster – Search by name.
   • Understand execution order – See how rules run in sequence.
   • Debug easily – Use Trace without switching tabs.

   Check it out in Rules > Overview ↗.

Jan 07, 2025

1. 40-60% Faster D1 Worker API Requests

   D1

   Users making D1 requests via the Workers API can see up to a 60% end-to-end latency improvement due to the removal of redundant network round trips needed for each request to a D1 database.

   

   p50, p90, and p95 request latency aggregated across entire D1 service. These latencies are a reference point and should not be viewed as your exact workload improvement.

   This performance improvement benefits all D1 Worker API traffic, especially cross-region requests where network latency is an outsized latency factor. For example, a user in Europe talking to a database in North America. D1 location hints can be used to influence the geographic location of a database.

   For more details on how D1 removed redundant round trips, see the D1 specific release note entry.

Jan 02, 2025

1. AI Gateway adds DeepSeek as a Provider

   AI Gateway

   AI Gateway now supports DeepSeek, including their cutting-edge DeepSeek-V3 model. With this addition, you have even more flexibility to manage and optimize your AI workloads using AI Gateway. Whether you're leveraging DeepSeek or other providers, like OpenAI, Anthropic, or Workers AI, AI Gateway empowers you to:

   • Monitor: Gain actionable insights with analytics and logs.
   • Control: Implement caching, rate limiting, and fallbacks.
   • Optimize: Improve performance with feedback and evaluations.
   

   To get started, simply update the base URL of your DeepSeek API calls to route through AI Gateway. Here's how you can send a request using cURL:

   Example fetch request

   curl https://gateway.ai.cloudflare.com/v1/{account_id}/{gateway_id}/deepseek/chat/completions \
    --header 'content-type: application/json' \
    --header 'Authorization: Bearer DEEPSEEK_TOKEN' \
    --data '{
       "model": "deepseek-chat",
       "messages": [
           {
               "role": "user",
               "content": "What is Cloudflare?"
           }
       ]
   }'

   For detailed setup instructions, see our DeepSeek provider documentation.

Dec 29, 2024

1. Faster Workers Builds with Build Caching and Watch Paths

   Workers

   

   Workers Builds, the integrated CI/CD system for Workers (currently in beta), now lets you cache artifacts across builds, speeding up build jobs by eliminating repeated work, such as downloading dependencies at the start of each build.

   • Build Caching: Cache dependencies and build outputs between builds with a shared project-wide cache, ensuring faster builds for the entire team.

   • Build Watch Paths: Define paths to include or exclude from the build process, ideal for monorepos to target only the files that need to be rebuilt per Workers project.

   To get started, select your Worker on the Cloudflare dashboard ↗ then go to Settings > Builds, and connect a GitHub or GitLab repository. Once connected, you'll see options to configure Build Caching and Build Watch Paths.

Dec 11, 2024

1. Up to 10x faster cached queries for Hyperdrive

   Hyperdrive

   Hyperdrive now caches queries in all Cloudflare locations, decreasing cache hit latency by up to 90%.

   When you make a query to your database and Hyperdrive has cached the query results, Hyperdrive will now return the results from the nearest cache. By caching data closer to your users, the latency for cache hits reduces by up to 90%.

   This reduction in cache hit latency is reflected in a reduction of the session duration for all queries (cached and uncached) from Cloudflare Workers to Hyperdrive, as illustrated below.

   

   P50, P75, and P90 Hyperdrive session latency for all client connection sessions (both cached and uncached queries) for Hyperdrive configurations with caching enabled during the rollout period.

   This performance improvement is applied to all new and existing Hyperdrive configurations that have caching enabled.

   For more details on how Hyperdrive performs query caching, refer to the Hyperdrive documentation.

Dec 11, 2024

1. Terraform Support for Snippets

   Rules

   Now, you can manage Cloudflare Snippets with Terraform. Use infrastructure-as-code to deploy and update Snippet code and rules without manual changes in the dashboard.

   Example Terraform configuration:

   resource "cloudflare_snippet" "my_snippet" {
     zone_id  = "<ZONE_ID>"
     name = "my_test_snippet_1"
     main_module = "file1.js"
     files {
       name = "file1.js"
       content = file("file1.js")
     }
   }
   
   resource "cloudflare_snippet_rules" "cookie_snippet_rule" {
     zone_id  = "<ZONE_ID>"
     rules {
       enabled = true
       expression = "http.cookie eq \"a=b\""
       description = "Trigger snippet on specific cookie"
       snippet_name = "my_test_snippet_1"
     }
     depends_on = [cloudflare_snippet.my_snippet]
   }

   Learn more in the Configure Snippets using Terraform documentation.

Nov 22, 2024

1. Cloud Connector Now Supports R2

   Rules

   Now, you can use Cloud Connector to route traffic to your R2 buckets based on URLs, headers, geolocation, and more.

   Example setup:

   curl --request PUT \
   "https://api.cloudflare.com/client/v4/zones/{zone_id}/cloud_connector/rules" \
   --header "Authorization: Bearer <API_TOKEN>" \
   --header "Content-Type: application/json" \
   --data '[
     {
       "expression": "http.request.uri.path wildcard \"/images/*\"",
       "provider": "cloudflare_r2",
       "description": "Connect to R2 bucket containing images",
       "parameters": {
         "host": "mybucketcustomdomain.example.com"
       }
     }
   ]'

   Get started using Cloud Connector documentation.

Nov 11, 2024

1. Bypass caching for subrequests made from Cloudflare Workers, with Request.cache

   Workers

   You can now use the cache property of the Request interface to bypass Cloudflare's cache when making subrequests from Cloudflare Workers, by setting its value to no-store.

   JavaScript

   index.js

   export default {
     async fetch(req, env, ctx) {
       const request = new Request("https://cloudflare.com", {
         cache: "no-store",
       });
       const response = await fetch(request);
       return response;
     },
   };

   TypeScript

   index.ts

   export default {
     async fetch(req, env, ctx): Promise<Response> {
       const request = new Request("https://cloudflare.com", { cache: 'no-store'});
       const response = await fetch(request);
       return response;
     }
   } satisfies ExportedHandler<Environment>

   When you set the value to no-store on a subrequest made from a Worker, the Cloudflare Workers runtime will not check whether a match exists in the cache, and not add the response to the cache, even if the response includes directives in the Cache-Control HTTP header that otherwise indicate that the response is cacheable.

   This increases compatibility with NPM packages and JavaScript frameworks that rely on setting the cache property, which is a cross-platform standard part of the Request interface. Previously, if you set the cache property on Request, the Workers runtime threw an exception.

   If you've tried to use @planetscale/database, redis-js, stytch-node, supabase, axiom-js or have seen the error message The cache field on RequestInitializerDict is not implemented in fetch — you should try again, making sure that the Compatibility Date of your Worker is set to on or after 2024-11-11, or the cache_option_enabled compatibility flag is enabled for your Worker.

   • Learn how the Cache works with Cloudflare Workers
   • Enable Node.js compatibility for your Cloudflare Worker
   • Explore Runtime APIs and Bindings available in Cloudflare Workers

Oct 24, 2024

1. Workflows is now in open beta

   Workers Workflows

   Workflows is now in open beta, and available to any developer a free or paid Workers plan.

   Workflows allow you to build multi-step applications that can automatically retry, persist state and run for minutes, hours, days, or weeks. Workflows introduces a programming model that makes it easier to build reliable, long-running tasks, observe as they progress, and programatically trigger instances based on events across your services.

   Get started

   You can get started with Workflows by following our get started guide and/or using npm create cloudflare to pull down the starter project:

   npm create cloudflare@latest workflows-starter -- --template "cloudflare/workflows-starter"

   You can open the src/index.ts file, extend it, and use wrangler deploy to deploy your first Workflow. From there, you can:

   • Learn the Workflows API
   • Trigger Workflows via your Workers apps.
   • Understand the Rules of Workflows and how to adopt best practices

Oct 23, 2024

1. Simplified UI for URL Rewrites

   Rules

   It’s now easy to create wildcard-based URL Rewrites. No need for complex functions—just define your patterns and go.

   

   What’s improved:

   • Full wildcard support – Create rewrite patterns using intuitive interface.
   • Simplified rule creation – No need for complex functions.

   Try it via creating a Rewrite URL rule in the dashboard.

Sep 05, 2024

1. New Rules Templates for One-Click Rule Creation

   Rules

   Now, you can create common rule configurations in just one click using Rules Templates.

   

   What you can do:

   • Pick a pre-built rule – Choose from a library of templates.
   • One-click setup – Deploy best practices instantly.
   • Customize as needed – Adjust templates to fit your setup.

   Template cards are now also available directly in the rule builder for each product.

   Need more ideas? Check out the Examples gallery in our documentation.

Feb 26, 2024

1. Easily Exclude EU Visitors from RUM

   Cloudflare Web Analytics

   You can now easily enable Real User Monitoring (RUM) monitoring for your hostnames, while safely dropping requests from visitors in the European Union to comply with GDPR and CCPA.

   

   Our Web Analytics product has always been centered on giving you insights into your users' experience that you need to provide the best quality experience, without sacrificing user privacy in the process.

   To help with that aim, you can now selectively enable RUM monitoring for your hostname and exclude EU visitor data in a single click. If you opt for this option, we will drop all metrics collected by our EU data centeres automatically.

   You can learn more about what metrics are reported by Web Analytics and how it is collected in the Web Analytics documentation. You can enable Web Analytics on any hostname by going to the Web Analytics ↗ section of the dashboard, selecting "Manage Site" for the hostname you want to monitor, and choosing the appropriate enablement option.

Load more items