Merge branch 'cloudflare:production' into production

Author: Thienlta

bin/fetch-ai-models.js

@@ -1,6 +1,6 @@
 import fs from "fs";
 
-fetch("https://ai.cloudflare.com/api/models")
+fetch("https://ai-cloudflare-com.pages.dev/api/models")
 	.then((res) => res.json())
 	.then((data) => {
 		data.models.map((model) => {

public/__redirects

@@ -2393,6 +2393,7 @@
 /cloudflare-one/connections/connect-apps/install-and-setup/deployment-guides/* /cloudflare-one/connections/connect-networks/deployment-guides/:splat 301
 /cloudflare-one/connections/connect-networks/deploy-tunnels/deployment-guides/* /cloudflare-one/connections/connect-networks/deployment-guides/:splat 301
 /cloudflare-one/connections/connect-networks/configure-tunnels/local-management/* /cloudflare-one/connections/connect-networks/do-more-with-tunnels/local-management/:splat 301
+/cloudflare-one/networks/connectors/cloudflare-tunnel/install-and-setup/* /cloudflare-one/networks/connectors/cloudflare-tunnel/ 301
 /cloudflare-one/analytics/logs/* /cloudflare-one/insights/logs/:splat 301
 /cloudflare-one/applications/scan-apps/* /cloudflare-one/applications/casb/:splat 301
 /cloudflare-one/connections/connect-apps/use_cases/* /cloudflare-one/connections/connect-networks/use-cases/:splat 301

src/assets/images/ai-crawl-control/ai-crawl-control-crawler-info.png

@@ -3,6 +3,13 @@ import { parse } from "node-html-parser";
 import { Code, Tabs, TabItem } from "@astrojs/starlight/components";
 import TOML from "@iarna/toml";
 import { parse as jsoncParse } from "jsonc-parser";
+import { z } from "astro:schema";
+
+const props = z.object({
+	removeSchema: z.boolean().optional().default(false),
+});
+
+const { removeSchema } = props.parse(Astro.props);
 
 const slot = await Astro.slots.render("default");
 
@@ -12,15 +19,15 @@ const copy = html.querySelector("div.copy > button");
 
 if (!copy) {
 	throw new Error(
-		`[WranglerConfig] Unable to find copy button in rendered code block HTML.`,
+		`[WranglerConfig] Unable to find copy button in rendered code block HTML.`
 	);
 }
 
 let code = copy.attributes["data-code"];
 
 if (!code) {
 	throw new Error(
-		`[WranglerConfig] Unable to find data-code attribute on copy button.`,
+		`[WranglerConfig] Unable to find data-code attribute on copy button.`
 	);
 }
 
@@ -38,10 +45,11 @@ let toml, json;
 
 if (language === "toml") {
 	toml = code;
-	json = JSON.stringify({
-		"$schema": "./node_modules/wrangler/config-schema.json",
-		...TOML.parse(code),
-	}, null, 2);
+	const parsedToml = TOML.parse(code);
+	const jsonObj = removeSchema
+		? parsedToml
+		: { $schema: "./node_modules/wrangler/config-schema.json", ...parsedToml };
+	json = JSON.stringify(jsonObj, null, 2);
 } else {
 	json = code;
 	toml = TOML.stringify(jsoncParse(code));

src/assets/images/ai-crawl-control/ai-crawl-control-status-codes.png

@@ -0,0 +1,36 @@
+---
+title: Crawler drilldowns with extended actions menu
+description: Drill down into individual crawler behavior with status code charts and export data for use in WAF rules, Redirect Rules, and robots.txt files.
+date: 2025-11-10
+---
+
+AI Crawl Control now supports per-crawler drilldowns with an extended actions menu and status code analytics. Drill down into Metrics, Cloudflare Radar, and Security Analytics, or export crawler data for use in [WAF custom rules](/waf/custom-rules/), [Redirect Rules](/rules/url-forwarding/), and robots.txt files.
+
+## What's new
+
+### Status code distribution chart
+
+The **Metrics** tab includes a status code distribution chart showing HTTP response codes (2xx, 3xx, 4xx, 5xx) over time. Filter by individual crawler, category, operator, or time range to analyze how specific crawlers interact with your site.
+
+![AI Crawl Control status code distribution chart](~/assets/images/ai-crawl-control/ai-crawl-control-status-codes.png)
+
+### Extended actions menu
+
+Each crawler row includes a three-dot menu with per-crawler actions:
+
+- **View Metrics** — Filter the AI Crawl Control Metrics page to the selected crawler.
+- **View on Cloudflare Radar** — Access verified crawler details on Cloudflare Radar.
+- **Copy User Agent** — Copy user agent strings for use in WAF custom rules, Redirect Rules, or robots.txt files.
+- **View in Security Analytics** — Filter Security Analytics by detection IDs (Bot Management customers).
+- **Copy Detection ID** — Copy detection IDs for use in WAF custom rules (Bot Management customers).
+
+![AI Crawl Control crawler actions menu](~/assets/images/ai-crawl-control/ai-crawl-control-crawler-info.png)
+
+## Get started
+
+1. Log in to the Cloudflare dashboard, and select your account and domain.
+2. Go to **AI Crawl Control** > **Metrics** to access the status code distribution chart.
+3. Go to **AI Crawl Control** > **Crawlers** and select the three-dot menu for any crawler to access per-crawler actions.
+4. Select multiple crawlers to use bulk copy buttons for user agents or detection IDs.
+
+Learn more about [AI Crawl Control](/ai-crawl-control/).

src/assets/images/realtime/realtimekit/peer-lifecycle.svg

@@ -0,0 +1,66 @@
+---
+title: "WAF Release - 2025-11-10"
+description: Cloudflare WAF managed rulesets 2025-11-10 release
+date: 2025-11-10
+---
+
+import { RuleID } from "~/components";
+
+This week’s release introduces new detections for Prototype Pollution across three common vectors: URI, Body, and Header/Form.
+
+**Key Findings**
+
+- These attacks can affect both API and web applications by altering normal behavior or bypassing security controls.
+
+**Impact**
+
+Exploitation may allow attackers to change internal logic or cause unexpected behavior in applications using JavaScript or Node.js frameworks. Developers should sanitize input keys and avoid merging untrusted data structures.
+
+<table style="width: 100%">
+	<thead>
+		<tr>
+			<th>Ruleset</th>
+			<th>Rule ID</th>
+			<th>Legacy Rule ID</th>
+			<th>Description</th>
+			<th>Previous Action</th>
+			<th>New Action</th>
+			<th>Comments</th>
+		</tr>
+	</thead>
+	<tbody>
+		<tr>
+			<td>Cloudflare Managed Ruleset</td>
+			<td>
+				<RuleID id="32405a50728746dd8caa057b606285e6" />
+			</td>
+			<td>N/A</td>
+			<td>Generic Rules - Prototype Pollution - URI</td>
+			<td>Log</td>
+			<td>Disabled</td>
+			<td>This is a new detection</td>
+		</tr>    
+		<tr>
+			<td>Cloudflare Managed Ruleset</td>
+			<td>
+				<RuleID id="a7da00c63c4243d2a72456fe4f59ff26" />
+			</td>
+			<td>N/A</td>
+			<td>Generic Rules - Prototype Pollution - Body</td>
+			<td>Log</td>
+			<td>Disabled</td>
+			<td>This is a new detection</td>
+		</tr>
+		<tr>
+			<td>Cloudflare Managed Ruleset</td>
+			<td>
+				<RuleID id="833078bdcfa04bb7aa7b8fb67efbeb39" />
+			</td>
+			<td>N/A</td>
+			<td>Generic Rules - Prototype Pollution - Header - Form</td>
+			<td>Log</td>
+			<td>Disabled</td>
+			<td>This is a new detection</td>
+		</tr>        
+	</tbody>
+</table>

src/assets/images/realtime/realtimekit/permission-token-section.png

@@ -1,68 +1,35 @@
 ---
-title: WAF Release - Scheduled changes for 2025-11-10
-description: WAF managed ruleset changes scheduled for 2025-11-10
-date: 2025-11-03
+title: WAF Release - Scheduled changes for 2025-11-17
+description: WAF managed ruleset changes scheduled for 2025-11-17
+date: 2025-11-10
 scheduled: true
 ---
 
 import { RuleID } from "~/components";
 
 <table style="width: 100%">
-	<thead>
-	<tr>
-		<th>Announcement Date</th>
-		<th>Release Date</th>
-		<th>Release Behavior</th>
-		<th>Legacy Rule ID</th>
-		<th>Rule ID</th>
-		<th>Description</th>
-		<th>Comments</th>
-	</tr>
-	</thead>
-	<tbody>
-	<tr>
-		<td>2025-10-27</td>
-		<td>2025-11-10</td>
-		<td>Log</td>
-		<td>N/A</td>
-		<td>
-			<RuleID id="32405a50728746dd8caa057b606285e6" />
-		</td>
-		<td>Generic Rules - Prototype Pollution - URI</td>
-		<td>This is a new detection</td>
-	</tr>
-	<tr>
-		<td>2025-10-27</td>
-		<td>2025-11-10</td>
-		<td>Log</td>
-		<td>N/A</td>
-		<td>
-			<RuleID id="a7da00c63c4243d2a72456fe4f59ff26" />
-		</td>
-		<td>Generic Rules - Prototype Pollution - Body</td>
-		<td>This is a new detection</td>
-	</tr>
-	<tr>
-		<td>2025-10-27</td>
-		<td>2025-11-10</td>
-		<td>Log</td>
-		<td>N/A</td>
-		<td>
-			<RuleID id="833078bdcfa04bb7aa7b8fb67efbeb39" />
-		</td>
-		<td>Generic Rules - Prototype Pollution - Header - Form</td>
-		<td>This is a new detection</td>
-	</tr>
-	<tr>
-		<td>2025-10-27</td>
-		<td>2025-11-10</td>
-		<td>Log</td>
-		<td>N/A</td>
-		<td>
-			<RuleID id="818d92d370654c3d8f1adc7c9029cd61" />
-		</td>
-		<td>HTTP Truncated Beta</td>
-		<td>This is a beta detection and will replace the action on original detection (ID: <RuleID id="646bccf7e9dc46918a4150d6c22b51d3" />)  </td>
-	</tr>
-	</tbody>
+  <thead>
+    <tr>
+      <th>Announcement Date</th>
+      <th>Release Date</th>
+      <th>Release Behavior</th>
+      <th>Legacy Rule ID</th>
+      <th>Rule ID</th>
+      <th>Description</th>
+      <th>Comments</th>
+    </tr>
+  </thead>
+  <tbody>
+   <tr>
+      <td>2025-11-10</td>
+      <td>2025-11-17</td>
+      <td>Log</td>
+      <td>N/A</td>
+      <td>
+        <RuleID id="ec1e2aa190e64e7cb468e16dd256f4bc" />
+      </td>
+      <td>DELMIA Apriso - Auth Bypass - CVE:CVE-2025-6205</td>
+      <td>This is a new detection</td>
+   </tr>
+  </tbody>
 </table>