Merge branch 'cloudflare:production' into production

Author: Thienlta

bin/validate-redirects.ts

@@ -8,7 +8,7 @@ async function main() {
 	let numDuplicateRedirects = 0;
 	let numNonSlashedRedirects = 0;
 
-	const validEndings = ["/", "*", ".xml", ".md", ".json", ".html"];
+	const validEndings = ["/", "*", ".xml", ".md", ".json", ".html", ".pdf"];
 
 	const redirectSourceUrls: string[] = [];
 

public/__redirects

@@ -418,6 +418,7 @@
 /network-interconnect/express-cni/create-interconnects/ /network-interconnect/ 301
 /network-interconnect/express-cni/ /network-interconnect/ 301
 /network-interconnect/pni-and-peering/ /network-interconnect/ 301
+/network-interconnect/static/cni-locations-04-08-2025.pdf /network-interconnect/static/cni-locations-30-10-2025.pdf 301
 
 # Constellation
 /constellation/ /workers-ai/ 301
@@ -520,13 +521,14 @@
 /ddos-protection/managed-rulesets/adjust-rules/ /ddos-protection/managed-rulesets/http/http-overrides/override-examples/ 301
 
 # developer spotlight
-/developer-spotlight/tutorials/ /developer-spotlight/ 301
-/developer-spotlight/tutorials/create-sitemap-from-sanity-cms/ /developer-spotlight/ 301
-/developer-spotlight/tutorials/creating-a-recommendation-api/ /developer-spotlight/ 301
-/developer-spotlight/tutorials/custom-access-control-for-files/ /developer-spotlight/ 301
-/developer-spotlight/tutorials/fullstack-authentication-with-next-js-and-cloudflare-d1/ /developer-spotlight/ 301
-/developer-spotlight/tutorials/handle-form-submission-with-astro-resend/ /developer-spotlight/ 301
-/developer-spotlight/application-guide/ /developer-spotlight/ 301
+/developer-spotlight/tutorials/ /resources/ 301
+/developer-spotlight/tutorials/create-sitemap-from-sanity-cms/ /resources/ 301
+/developer-spotlight/tutorials/creating-a-recommendation-api/ /resources/ 301
+/developer-spotlight/tutorials/custom-access-control-for-files/ /resources/ 301
+/developer-spotlight/tutorials/fullstack-authentication-with-next-js-and-cloudflare-d1/ /resources/ 301
+/developer-spotlight/tutorials/handle-form-submission-with-astro-resend/ /resources/ 301
+/developer-spotlight/application-guide/ /resources/ 301
+/developer-spotlight/ /resources/ 301
 
 # dns
 /dns/additional-options/cname-flattening/ /dns/cname-flattening/ 301
@@ -667,7 +669,7 @@
 /fundamentals/global-configurations/ /fundamentals/ 301
 /fundamentals/customizations/ /fundamentals/ 301
 /fundamentals/security/cybersafe/ /fundamentals/reference/policies-compliances/cybersafe/ 301
-/fundamentals/security/challenge-passage/ /cloudflare-challenges/challenge-types/challenge-pages/#challenge-passage 301
+/fundamentals/security/challenge-passage/ /cloudflare-challenges/challenge-types/challenge-pages/challenge-passage/ 301
 /fundamentals/glossary/ /fundamentals/reference/glossary/ 301
 /fundamentals/account-and-billing/login/ /fundamentals/user-profiles/login/ 301
 /fundamentals/account-and-billing/account-maintenance/delete-account/ /fundamentals/user-profiles/delete-account/ 301
@@ -782,7 +784,7 @@
 /fundamentals/concepts/the-internet/ https://www.cloudflare.com/learning/network-layer/how-does-the-internet-work/ 301
 /fundamentals/concepts/free-plan/ /billing/ 301
 /fundamentals/setup/manage-domains/connect-your-domain/ /fundamentals/manage-domains/add-site/ 301
-/fundamentals/security/cloudflare-challenges/challenge-passage/ /cloudflare-challenges/challenge-types/challenge-pages/#challenge-passage 301
+/fundamentals/security/cloudflare-challenges/challenge-passage/ /cloudflare-challenges/challenge-types/challenge-pages/challenge-passage/ 301
 /fundamentals/security/cloudflare-challenges/challenge-solve-rate/ /cloudflare-challenges/reference/challenge-solve-rate/ 301
 /fundamentals/security/cloudflare-challenges/challenge-solve-issues/ /cloudflare-challenges/troubleshooting/challenge-solve-issues/ 301
 /fundamentals/security/cloudflare-challenges/ /cloudflare-challenges/ 301
@@ -1676,7 +1678,7 @@
 /waf/analytics/security-events/paid-plans/ /waf/analytics/security-events/ 301
 /waf/analytics/security-events/additional-information/ /waf/tools/validation-checks/ 301
 /waf/reference/cloudflare-challenges/ /cloudflare-challenges/ 301
-/waf/tools/challenge-passage/ /cloudflare-challenges/challenge-types/challenge-pages/#challenge-passage 301
+/waf/tools/challenge-passage/ /cloudflare-challenges/challenge-types/challenge-pages/challenge-passage/ 301
 /waf/reference/migration-guides/ /waf/reference/legacy/ 301
 /waf/reference/migration-guides/old-rate-limiting-deprecation/ /waf/reference/legacy/old-rate-limiting/upgrade/ 301
 /waf/reference/migration-guides/waf-managed-rules-migration/ /waf/reference/legacy/old-waf-managed-rules/upgrade/ 301
@@ -1907,8 +1909,8 @@
 /workers/configuration/bindings/about-service-bindings/ /workers/runtime-apis/bindings/service-bindings/ 301
 /workers/tutorials/localize-a-website/ /pages/tutorials/localize-a-website/ 301
 /workers/tutorials/manage-projects-with-lerna/ /pages/configuration/monorepos/#monorepo-management-tools 301
-/workers/tutorials/create-sitemap-from-sanity-cms/ /developer-spotlight/ 301
-/workers/tutorials/custom-access-control-for-files-in-r2-using-d1-and-workers/ /developer-spotlight/ 301
+/workers/tutorials/create-sitemap-from-sanity-cms/ /resources/ 301
+/workers/tutorials/custom-access-control-for-files-in-r2-using-d1-and-workers/ /resources/ 301
 /workers/tutorials/generate-dynamic-og-images-using-workers/ /workers/tutorials/ 302
 /workers/static-assets/migrate-from-pages/ /workers/static-assets/migration-guides/migrate-from-pages/ 301
 /workers/static-assets/compatibility-matrix/ /workers/static-assets/migration-guides/migrate-from-pages/ 301
@@ -1941,8 +1943,8 @@
 /workers/testing/miniflare/get-started/migrating/ /workers/testing/miniflare/migrations/from-v2/ 301
 /workers/databases/native-integrations/fauna/ /workers/databases/native-integrations/ 301
 /workers/tutorials/store-data-with-fauna/ https://fauna.com/blog/the-future-of-fauna 301
-/workers/tutorials/live-cursors-with-nextjs-rpc-do/ /developer-spotlight/ 301
-/workers/tutorials/automated-analytics-reporting/ /developer-spotlight/ 301
+/workers/tutorials/live-cursors-with-nextjs-rpc-do/ /resources/ 301
+/workers/tutorials/automated-analytics-reporting/ /resources/ 301
 
 # workers ai
 /workers-ai/models/llm/ /workers-ai/models/#text-generation 301
@@ -1959,11 +1961,11 @@
 /workers-ai/configuration/function-calling/ /workers-ai/features/function-calling/ 301
 /workers-ai/platform/storage-options/ /workers/platform/storage-options/ 301
 /workers-ai/configuration/workers-ai-sdk/ /workers-ai/configuration/bindings/ 301
-/workers-ai/tutorials/creating-a-recommendation-api/ /developer-spotlight/ 301
+/workers-ai/tutorials/creating-a-recommendation-api/ /resources/ 301
 /workers/observability/baselime-integration/ /workers/observability/integrations/baselime-integration/ 301
 /workers-ai/tutorials/image-generator-flux/ /workers-ai/tutorials/image-generation-playground/ 301
-/workers-ai/guides/tutorials/build-a-voice-notes-app-with-auto-transcription/ /developer-spotlight/ 301
-/workers-ai/tutorials/build-ai-interview-practice-tool/ /developer-spotlight/ 301
+/workers-ai/guides/tutorials/build-a-voice-notes-app-with-auto-transcription/ /resources/ 301
+/workers-ai/tutorials/build-ai-interview-practice-tool/ /resources/ 301
 
 # Function calling
 /workers-ai/function-calling/ /workers-ai/features/function-calling/ 301
@@ -2298,6 +2300,7 @@
 /cloudflare-one/policies/gateway/block-page/ /cloudflare-one/reusable-components/custom-pages/gateway-block-page/ 301
 /cloudflare-one/team-and-resources/devices/warp/user-side-certificates/ /cloudflare-one/team-and-resources/devices/user-side-certificates/ 301
 /cloudflare-one/traffic-policies/lists/ /cloudflare-one/reusable-components/lists/ 301
+/cloudflare-one/traffic-policies/ids/ /cloudflare-one/traffic-policies/enable-ids/ 301
 
 # Email Security new revamp (statics)
 /cloudflare-one/email-security/auto-moves/ /cloudflare-one/email-security/settings/auto-moves/ 301

public/network-interconnect/static/cni-locations-04-08-2025.pdf

@@ -1,16 +1,34 @@
 ---
 import { Code } from "@astrojs/starlight/components";
-import Routes from "~/content/dash-routes/index.json";
+import AnchorHeading from "./AnchorHeading.astro";
+import CoreRoutes from "~/content/dash-routes/core.json";
+import ZeroTrustRoutes from "~/content/dash-routes/zero-trust.json";
 ---
 
-<ul>
-	{
-		Routes.map((route) => (
-			<li>
-				<strong>{(route.parent ?? []).concat(route.name).join(" > ")}</strong>
-				<br />
-				<Code lang="mdx" code={`<DashButton url="${route.deeplink}" />`} />
-			</li>
-		))
-	}
-</ul>
+<div>
+	<AnchorHeading depth={3} title="Core Routes" />
+	<ul>
+		{
+			CoreRoutes.map((route) => (
+				<li>
+					<strong>{(route.parent ?? []).concat(route.name).join(" > ")}</strong>
+					<br />
+					<Code lang="mdx" code={`<DashButton url="${route.deeplink}" />`} />
+				</li>
+			))
+		}
+	</ul>
+
+	<AnchorHeading depth={3} title="Zero Trust Routes" />
+	<ul>
+		{
+			ZeroTrustRoutes.map((route) => (
+				<li>
+					<strong>{route.name}</strong>
+					<br />
+					<Code lang="mdx" code={`<DashButton url="${route.deeplink}" />`} />
+				</li>
+			))
+		}
+	</ul>
+</div>

public/network-interconnect/static/cni-locations-30-10-2025.pdf

@@ -1,25 +1,33 @@
 ---
 import { z } from "astro:schema";
 import { LinkButton } from "@astrojs/starlight/components";
-import Routes from "~/content/dash-routes/index.json";
+import CoreRoutes from "~/content/dash-routes/core.json";
+import ZeroTrustRoutes from "~/content/dash-routes/zero-trust.json";
 
 const props = z
 	.object({
 		url: z.string(),
+		zeroTrust: z.boolean().optional().default(false),
+		buttonName: z.string().optional(),
 	})
 	.strict();
 
-const { url } = props.parse(Astro.props);
+const { url, zeroTrust, buttonName } = props.parse(Astro.props);
 
-const route = Routes.find((route) => route.deeplink === url);
+const routes = zeroTrust ? ZeroTrustRoutes : CoreRoutes;
+
+const route = routes.find((route) => route.deeplink === url);
 
 if (!route) {
 	throw new Error(`[DashButton] No route found for ${url}`);
 }
 
-const { name } = route;
+const name = buttonName ?? route.name;
+const baseUrl = zeroTrust
+	? "https://one.dash.cloudflare.com"
+	: "https://dash.cloudflare.com";
 
-const { href } = new URL(route.deeplink, "https://dash.cloudflare.com");
+let { href } = new URL(route.deeplink, baseUrl);
 ---
 
 <LinkButton href={href} icon="external" target="_blank"

src/assets/images/changelog/workers/builds-preview-button.png

@@ -0,0 +1,26 @@
+---
+title: New TCP-based fields available in Rulesets
+description: Cloudflare Rulesets now support evaluating TCP connections and TCP RTT as part of request logic.
+date: 2025-10-30
+---
+
+## Build rules based on TCP transport and latency
+
+Cloudflare now provides two new request fields in the Ruleset engine that let you make decisions based on whether a request used TCP and the measured TCP round-trip time between the client and Cloudflare. These fields help you understand protocol usage across your traffic and build policies that respond to network performance. For example, you can distinguish TCP from QUIC traffic or route high latency requests to alternative origins when needed.
+
+---
+
+### New fields
+
+| Field | Type | Description |
+| --- | --- | --- |
+| `cf.edge.client_tcp` | Boolean | Indicates whether the request used TCP. A value of true means the client connected using TCP instead of QUIC. |
+| `cf.timings.client_tcp_rtt_msec` | Number | Reports the smoothed TCP round-trip time between the client and Cloudflare in milliseconds. For example, a value of 20 indicates roughly twenty milliseconds of RTT. |
+
+Example filter expression:
+
+```
+cf.edge.client_tcp && cf.timings.client_tcp_rtt_msec < 100
+```
+
+More information can be found in the Rules language [fields reference](/ruleset-engine/rules-language/fields/reference/).

src/components/AvailableDashRoutes.astro

@@ -0,0 +1,17 @@
+---
+title: Access Workers preview URLs from the Build details page
+description: You can now access Preview URLs directly from the build details page
+products:
+  - workers
+date: 2025-10-30
+---
+
+You can now access [preview URLs](/workers/configuration/previews/) directly from the build details page, making it easier to test your changes when reviewing builds in the dashboard.
+
+![preview button](src/assets/images/changelog/workers/builds-preview-button.png)
+
+
+**What's new**
+* A **Preview** button now appears in the top-right corner of the build details page for successful builds
+* Click it to instantly open the latest preview URL
+* Matches the same experience you're familiar with from Pages

src/components/DashButton.astro

@@ -0,0 +1,17 @@
+---
+title: Increased Workflows instance and concurrency limits
+description: Higher concurrency and creation limits for Workflow instances now available
+products:
+  - workflows
+  - workers
+date: 2025-10-31
+---
+
+We've raised the [Cloudflare Workflows](/workflows/) account-level limits for all accounts on the [Workers paid plan](/workers/platform/pricing/):
+
+* **Instance creation rate** increased from 100 workflow instances per 10 seconds to 100 instances per second
+* **Concurrency limit** increased from 4,500 to 10,000 workflow instances per account
+
+These increases mean you can create new instances up to 10x faster, and have more workflow instances concurrently executing. To learn more and get started with Workflows, refer to [the getting started guide](/workflows/get-started/guide/). 
+
+If your application requires a higher limit, fill out the [Limit Increase Request Form](/workers/platform/limits/) or contact your account team. Please refer to [Workflows pricing](/workflows/reference/pricing/) for more information.