Cloudflare Blog

https://blog.cloudflare.com/

Cloudflare BlogFeb 3, 2026

Improve global upload performance with R2 Local Uploads

Why it matters: Engineers can significantly reduce upload latency for global users without managing complex multi-region replication logic. It provides the performance of a local edge cache with the reliability and strong consistency of centralized object storage.

Cloudflare R2 launched Local Uploads in open beta to improve global write performance by up to 75%.
Data is initially written to a storage location near the client and then asynchronously replicated to the bucket's home region.
The system maintains strong consistency, ensuring objects are immediately accessible for reads after the initial write.
Architecture utilizes R2 Gateway Workers for routing and Durable Objects for distributed metadata management.
Synthetic benchmarks show Time to Last Byte (TTLB) dropping from 2s to 500ms for cross-region 5MB uploads.
The feature is specifically designed for globally distributed workloads like media uploads and telemetry collection.

#dist #data #sre

Read original

Cloudflare BlogJan 30, 2026

Google’s AI advantage: why crawler separation is the only path to a fair Internet

Why it matters: This article highlights the technical and regulatory shifts in web crawling. For engineers, it explains how unified crawler architectures create data monopolies and why mandatory separation is necessary to protect data sovereignty and foster fair competition in AI training.

The UK CMA designated Google with Strategic Market Status, enabling legally enforceable rules on how search data fuels generative AI services.
Google's unified crawler forces publishers into an 'all-or-nothing' choice: allow AI training or lose critical search engine visibility.
Cloudflare data shows Googlebot accesses significantly more unique URLs than competitors, including 1.7x more than GPTBot and 167x more than PerplexityBot.
The lack of crawler separation creates a competitive imbalance, as Google bypasses the content licensing negotiations that other AI developers must face.
Cloudflare advocates for mandatory separation of search and AI crawlers to allow granular opt-outs and restore a fair marketplace for digital content.

#data #mlp

Read original

Cloudflare BlogJan 30, 2026

Building vertical microfrontends on Cloudflare’s platform

Why it matters: Vertical microfrontends solve the monolith bottleneck by giving teams full autonomy over their tech stack and deployment cycles. By routing paths to independent Workers, engineers can ship faster with less risk, while CSS View Transitions maintain a unified, high-performance user experience.

Cloudflare introduced a new Worker template for Vertical Microfrontends (VMFE) to map independent Workers to specific URL paths on a single domain.
Unlike horizontal microfrontends that split components on a page, VMFE allows teams to own the entire stack—including framework choice and CI/CD—for specific routes.
This architecture enables teams to use different technologies, such as Astro for marketing and React for dashboards, within the same user-facing application.
VMFE improves deployment safety by isolating regressions to specific paths, preventing a single team's error from rolling back the entire platform.
CSS View Transitions and document preloading are used to create a seamless, SPA-like experience across different Workers by eliminating white-screen flashes.
Cloudflare uses this pattern internally to integrate products like ZeroTrust into the main dashboard while maintaining separate codebases.

#frontend #dist #culture

Read original

Cloudflare BlogJan 29, 2026

Introducing Moltworker: a self-hosted personal AI agent, minus the minis

Why it matters: Moltworker demonstrates the maturity of Cloudflare's serverless platform for hosting complex AI agents. It shows how improved Node.js compatibility and sandboxing allow engineers to deploy secure, stateful tools globally without the overhead of managing physical hardware.

Moltworker is a Cloudflare-hosted adaptation of Moltbot, allowing users to run a personal AI agent on serverless infrastructure instead of dedicated local hardware.
The project leverages Cloudflare Workers' improved Node.js compatibility, which now supports 98.5% of the top 1,000 NPM packages natively, including node:fs.
The architecture utilizes Cloudflare Sandboxes for isolated code execution and Browser Rendering for headless automation and web interaction.
Persistent data is managed via R2 storage, while the AI Gateway provides centralized logging, cost tracking, and unified billing for LLM providers.
Security is enforced through Cloudflare Access, protecting the entrypoint Worker that acts as a proxy between the user and the isolated agent environment.

#mlp #dist #security

Read original

Cloudflare BlogJan 27, 2026

Building a serverless, post-quantum Matrix homeserver

Why it matters: This proof of concept demonstrates how to transform heavy, stateful communication protocols into serverless architectures. It reduces operational overhead and costs to near zero while future-proofing security with post-quantum encryption at the edge.

Ported the Matrix homeserver protocol to Cloudflare Workers using TypeScript and the Hono framework.
Replaced traditional stateful infrastructure with serverless primitives: D1 for SQL, KV for caching, R2 for media, and Durable Objects for state resolution.
Achieved a scale-to-zero cost model, eliminating the fixed overhead of running dedicated virtual private servers.
Integrated post-quantum cryptography by default using hybrid X25519MLKEM768 key agreement for TLS 1.3 connections.
Leveraged Cloudflare's global edge network to reduce latency by executing homeserver logic in over 300 locations.
Maintained end-to-end encryption (Megolm) while adding a quantum-resistant transport layer for defense-in-depth.

#dist #security #finops

Read original

Cloudflare BlogJan 26, 2026

Cable cuts, storms, and DNS: a look at Internet disruptions in Q4 2025

Why it matters: Understanding global connectivity disruptions helps engineers build more resilient, multi-homed architectures. It highlights the fragility of physical infrastructure like submarine cables and the impact of BGP routing and government policy on service availability.

Q4 2025 saw over 180 global Internet disruptions caused by government mandates, physical infrastructure damage, and technical failures.
Tanzania implemented a near-total Internet shutdown during its presidential election, resulting in a 90% traffic drop and fluctuations in BGP address space announcements.
Submarine cable cuts, specifically to the PEACE and WACS systems, significantly impacted connectivity in Pakistan and Cameroon.
Infrastructure vulnerabilities in Haiti led to multiple outages for Digicel users due to international fiber optic cuts.
Beyond physical damage, disruptions were linked to hyperscaler cloud platform issues and ongoing military conflicts affecting regional network stability.

#sre #dist #culture

Read original

Cloudflare BlogJan 23, 2026

Route leak incident on January 22, 2026

Why it matters: This incident highlights how minor automation errors in BGP policy configuration can cause global traffic disruptions. It underscores the risks of permissive routing filters and the importance of robust validation in network automation to prevent large-scale route leaks.

An automated routing policy change intended to remove IPv6 prefix advertisements for a Bogotá data center caused a major BGP route leak in Miami.
The removal of specific prefix lists from policy statements resulted in overly permissive terms, unintentionally redistributing peer routes to other providers.
The incident lasted 25 minutes, causing significant congestion on Miami backbone infrastructure and affecting both Cloudflare customers and external parties.
The leak was classified as a mixture of Type 3 and Type 4 route leaks according to RFC7908, violating standard valley-free routing principles.
Impact was limited to IPv6 traffic and was mitigated by manually reverting the configuration and pausing the automation platform.

#sre #dist

Read original

Cloudflare BlogJan 19, 2026

How we mitigated a vulnerability in Cloudflare’s ACME validation logic

Why it matters: This vulnerability highlights the risks of global security bypasses for protocol-specific paths. Engineers must ensure that 'allow-list' logic for automated services like ACME is strictly scoped to prevent unintended access to origin servers without protection.

Security researchers identified a vulnerability in Cloudflare's ACME HTTP-01 challenge validation logic.
The flaw allowed requests to bypass Web Application Firewall (WAF) rules on specific ACME-related paths.
Cloudflare previously disabled WAF features on these paths to prevent interference with automated certificate issuance.
A logic error allowed unauthenticated requests to reach customer origins without WAF protection if tokens weren't managed by Cloudflare.
The mitigation ensures security features are only disabled when a request matches a valid ACME token for the specific hostname.

#security #dist

Read original

Cloudflare BlogJan 16, 2026

Astro is joining Cloudflare

Why it matters: This acquisition secures the long-term future of Astro, a leading framework for content-driven sites. For engineers, it ensures continued investment in performance-first web architecture and Islands Architecture while maintaining the framework's open-source and platform-agnostic nature.

Cloudflare has acquired The Astro Technology Company, the creators of the Astro web framework.
Astro will remain open source under the MIT license with open governance and a public roadmap.
The upcoming Astro 6 release introduces a redesigned development server powered by Vite, currently in public beta.
Astro's Islands Architecture allows for fast, static HTML by default with the ability to hydrate specific components using any UI framework.
The framework remains platform-agnostic, maintaining its commitment to portability across various cloud providers and hosting platforms.
Cloudflare will continue to support the Astro Ecosystem Fund alongside partners like Webflow, Netlify, and Sentry.

#frontend #culture

Read original

Cloudflare BlogJan 15, 2026

Human Native is joining Cloudflare

Why it matters: This acquisition signals a shift from chaotic web scraping to structured, licensed data for AI. For engineers, it introduces new patterns like pub/sub content indexing and machine-to-machine payments (x402), moving away from inefficient crawling toward a sustainable, automated web economy.

Cloudflare has acquired Human Native, a UK-based marketplace that transforms unstructured multimedia content into high-quality, licensed AI training data.
The acquisition aims to address the strain on the internet's economic model caused by skyrocketing crawl-to-referral ratios from AI bots.
Cloudflare is developing an 'AI Index' using a pub/sub model, allowing websites to push structured updates to developers in real time instead of relying on blind crawling.
The integration supports Cloudflare's existing tools like AI Crawl Control and Pay Per Crawl, giving content owners granular control over bot access.
Cloudflare is partnering with Coinbase on the x402 Foundation to establish protocols for machine-to-machine transactions and digital resource payments.

#data #mlp #dist

Read original

Page 5 of 10

Prev 1...3 4 5 6 7...10 Next