InfoQ Homepage Cloudflare Content on InfoQ
-
Cloudflare Launches Public Beta of Secrets Store for Secure Credential Management
During the recent Developer Week 2025, Cloudflare announced the public beta of Cloudflare Secrets Store, a secure way to store API tokens, keys, and credentials. While the long-term goal is to integrate Secrets Store with various Cloudflare products, it currently supports only Cloudflare Workers.
-
Recap of Cloudflare Security Week 2025: From Quantum Cryptography to AI Labyrinth
During the recent Cloudflare Security Week 2025, the cloud provider announced various improvements to its cybersecurity services and multiple reports analyzing trends and challenges in security threats. Additionally, they announced AI Labyrinth, a new version of honeypots against unauthorized crawlers, and Cloudflare for AI, a suite of tools aimed at helping the adoption of secure AI technologies.
-
Cloudflare Enables Remote Hosting for Model Context Protocol (MCP) Servers
Cloudflare revolutionizes AI integration with the launch of remote Model Context Protocol (MCP) servers, enhancing accessibility for developers. This advancement allows seamless AI interactions with external services, offering simplified deployment, built-in OAuth for security, and expanded use cases. Embrace innovative workflows and empower your applications on a global scale.
-
Cloudflare Launches Media Transformations: Optimizing Short-Form Video
Cloudflare’s Media Transformations simplifies video optimization for short-form content, eliminating complex pipelines and allowing users to enhance videos directly from their existing storage. With URL-based parameters for automation, it offers features like format conversion and frame extraction. Currently in beta, it's free until Q3 2025 and aims to streamline workflows across platforms.
-
How a Manual Remediation for a Phishing URL Took down Cloudflare R2
Due to human error in handling a phishing report and insufficient validation safeguards in admin tools, Cloudflare experienced an incident affecting its R2 Gateway service on February 5th. As part of a routine remediation for a phishing URL, the R2 service was inadvertently taken down, leading to the outage or disruption of numerous other Cloudflare services for over an hour.
-
Cloudflare Open Sources Documentation and Adopts Astro for Better Scalability
Cloudflare recently published an article detailing their upgrade of developer documentation by migrating from Hugo to the Astro ecosystem. All Cloudflare documentation is open source on GitHub, with opportunities for community contributions.
-
Cloudflare 2024 Year in Review: Strong Growth for GitHub Copilot and Go Surpasses Node.js
Cloudflare has recently published the fifth edition of its Radar Year in Review, a report analyzing data from the global hyperscaler network. The results reveal a 17.2% increase in global internet traffic, with notable growth in mobile and IPv6 requests. Additionally, Go overtook Node.js as the most popular language for automated API requests and GitHub Copilot saw significant growth.
-
Cloudflare Experiences Major Incident in November, Resulting in Log Loss
Cloudflare has recently confirmed that on November 14th they experienced an incident affecting Cloudflare Logs with 55% of logs during a 3.5-hour period being lost. The incident impacted most customers using the service, with a misconfiguration triggering a cascading series of system failures and exposing weaknesses in handling unexpected spikes in demand.
-
Cloudflare Advocates for Broader Adoption of security.txt Standard for Vulnerability Reporting
To address the issue of unreported security vulnerabilities, Cloudflare recently launched a dashboard to help create and manage a security.txt file for website vulnerability disclosures. The generated file adheres to the RFC9116 standard, offering security research teams a standardized method for reporting vulnerabilities.
-
Cloudflare Introduces Short-Lived SSH Access, Eliminating the Need for SSH Credentials
Cloudflare recently announced Access for Infrastructure SSH, a feature that replaces traditional SSH keys with short-lived certificates. The new option leverages BastionZero’s integration into Cloudflare One and reduces the complexity of managing SSH keys while enhancing security by substituting long-term SSH keys with temporary, ephemeral certificates.
-
Cloudflare Introduces Workflows for Building Scalable Resilient Multi-Step Applications
Cloudflare's "Workflows" is a revolutionary execution engine in open beta, enabling developers to build scalable, multi-step applications that autonomously manage errors and state across failures. With seamless retries and modular components, it streamlines development and enhances resource efficiency. Harness the power of Cloudflare's ecosystem for robust app performance.
-
Cloudflare Overhauls Logging Pipeline with OpenTelemetry
Internet infrastructure and security company Cloudflare has documented how it significantly upgraded its logging pipeline by moving from syslog-ng to OpenTelemetry Collector.
-
Ephemeral IDs: Cloudflare's Latest Tool for Fraud Detection
During its recent Birthday Week, Cloudflare introduced Ephemeral IDs, a new feature for fraud detection. The tool identifies fraudulent activity—whether from bots or humans—by linking behavior to a specific client rather than an IP address.
-
Cloudflare Introduces Automatic SSL/TLS to Secure and Simplify Origin Server Connectivity
Cloudflare recently introduced new Automatic SSL/TLS settings to simplify the provider's encryption modes for communication with origin servers. This feature offers automatic configuration, ensuring security without risking site downtime.
-
Cloudflare Application Security Report Highlights Surge in DDoS Attacks and CVE Exploits
Cloudflare recently released its 2024 Application Security Report, offering recommendations and insights on addressing many raised concerns. A key finding of the report is the increase in malicious traffic, driven by geopolitical events and voting seasons.