Over 90 days, Cloudflare shipped a major push toward agentic and edge-compute infrastructure, expanding AI capabilities while building out connectivity and security layers that span from the network to application code.

AI Search matured into a production platform with hybrid search, REST APIs, custom metadata filtering, and UI components for embedding search into websites. Workers AI added frontier-scale models (Kimi K2.5, GLM-4.7-Flash, Gemma 4) with extended context windows and multi-turn tool calling—the infrastructure for agents to reason and act at scale. Browser Run (formerly Browser Rendering) shipped Live View, Human in the Loop, session recordings, and WebMCP support, positioning browser automation as a first-class agent interface. Artifacts entered private beta as Git-compatible versioned storage, solving the core problem of how agents exchange and iterate on code.

On the foundational side, Dynamic Workers graduated from beta, enabling Workers to spawn other Workers at runtime for secure code execution—essential for Code Mode and agentic patterns. Agents SDK hit v0.8.0 with readable state, idempotent schedules, and full TypeScript inference. Sandboxes and Containers went GA with Docker-in-Docker, custom egress policies, credential injection, and regional placement constraints. Real-time transcription in RealtimeKit expanded to 10 languages. Workers limits doubled (subrequests, Workflows steps, Browser concurrency).

Security and observability hardened significantly: Audit Logs v2 hit GA with ~95% product coverage and standardized format. Risk Scoring now ingests Gateway DNS to flag users visiting malicious domains. Access gained independent MFA, managed OAuth for CLI and SDK clients, and policies for bookmark applications. WAF released weekly detections for emerging CVEs. Markdown for Agents shipped as automatic content conversion on the edge—AI systems can request text/markdown and get it on-the-fly from any Cloudflare-protected zone.

Networking infrastructure expanded: Cloudflare Mesh entered GA with post-quantum encryption and private IPs for every device. Cloudflare One Appliance added LACP, post-quantum IPsec, and Anycast IP visibility. VPC Networks graduated to public beta, allowing Workers to reach any service on a tunnel or Mesh node without pre-registering ports. Gateway gained OIDC Claims filtering and new protocol detection (IMAP, SMTP, LDAP, MySQL, NTP).

Cross-platform tooling matured: wrangler tunnel brought tunnel lifecycle management to CLI. Wrangler now auto-configures frameworks without a config file. Pywrangler landed on Windows. R2 added Local Uploads (open beta) for 75% latency reduction on global uploads. Pipelines dashboard added dropped event metrics and typed bindings. Logpush expanded to BigQuery and gained millisecond/nanosecond timestamps.

The throughline: Cloudflare moved from scattered point products toward an integrated platform where agents, code, data, and connectivity converge—Workers execute code, Agents SDK orchestrate them, Dynamic Workers sandbox untrusted logic, Mesh connects private infrastructure, and AI models run natively. The ~40 releases reflect a shift in direction: less incremental feature work, more systemic capability for building agentic applications at the edge.