Summary
- VoidZero team joins Cloudflare
- Vite and tooling remain open-source and vendor-agnostic
- $1M Vite ecosystem fund committed
Links
Resources
Recent
Latest Release Posts
Summary
- Forged AS_PATHs omitted attacker ASN
- First AS enforcement blocks these hijacks
- RFC 7606 treat-as-withdraw not universally applied
Summary
- Stopped UEFI linear probe of network boot interfaces
- Declared boot interface early in PXE stage
- Reduced firmware upgrade time ~4h → ~3min
Summary
- Unified SQL lakehouse with Trino + Iceberg on R2
- Default-closed governance with automated PII scanning
- Skipper: grounded NL→SQL agent built on Workers AI
Summary
- Traffic recovered to ~40% of 2026 peak
- DNS queries and bytes transferred spiked
- IPv6 announcements remain nearly zero
Summary
- Claude Compliance API integration
- Agentless visibility into Claude usage
- Turn CASB findings into Gateway policies
Summary
- V8 isolate sandboxes for massive scale
- Zero-trust outbound proxies & VPC Mesh
- Built-in browser, email, and custom tools
Summary
- Mythos chains primitives into full PoCs
- Model refusals are inconsistent — add safeguards
- Harnessing narrow parallel agents reduces noise
Summary
- Lock contention in query planning (mutex protecting parts) caused the slowdown
- Three fixes: shared lock, shared parts cache (PR #85535), binary-search pruning by namespace
- Result: major latency drop and 50% reduction after binary-search deploy
Summary
- 120 concurrent browsers (4× increase)
- Quick Actions over 50% faster
- State moved from KV to D1+Queues with 100-row batching
Summary
- cwnd stuck at minimum after early loss
- send-time idle-adjustment advanced epoch into the future
- fix: don't advance epoch/recovery into the future
Summary
- >1,100 roles impacted globally
- Internal AI usage up >600% in 3 months
- Severance: base pay through 2026; equity vesting to Aug 15
Summary
- Behavioral detection flagged exploit within minutes
- bpf-lsm mitigated exploit without reboot
- No evidence of exploitation; no customer impact
Summary
- .de published invalid DNSSEC signatures causing widespread SERVFAILs
- Cloudflare marked .de as insecure (NTA-equivalent) at 22:17 UTC to restore reachability
- Serve-stale mitigated impact; EDE propagation bug initially obscured the DNSSEC cause
Summary
- Snapstone enables health‑mediated config rollouts
- Codex enforces safe patterns via AI reviews
- Fail‑stale/open limits blast radius
Summary
- Routes durable runs to per-tenant code
- Single-digit ms dynamic worker boot, low idle cost
- Metadata is a routing hint — do not store secrets
Summary
- Post-quantum IPsec GA
- Interoperable with Cisco & Fortinet
- Hybrid ML-KEM (FIPS 203) implemented
Summary
- Agents can provision Cloudflare accounts
- Agents can buy domains and get API tokens
- Stripe Projects enables zero-to-production automation
Summary
- Nationwide shutdowns in Iran and Uganda
- AWS Middle East data centers struck by drones
- Three Cuban grid collapses disrupted connectivity
Summary
- panic=unwind support in wasm-bindgen
- exception tags to distinguish aborts
- --reset-state-function for library reinit