Deploy, publish, and host apps and infrastructure on Cloudflare services.
This appears to be an open-source prompt-only deployment guide that does not itself execute code, access local data, or send network traffic, so overall risk is low. The main caveat is that the README references Wrangler authentication or a Cloudflare API token for real deployments, but that belongs to the external deployment workflow rather than the skill itself.
The metadata says no keys/environment variables are required, but the README explicitly states that deployment may require `wrangler login` or a `CLOUDFLARE_API_TOKEN`. This means the skill itself does not hold credentials, yet the deployment workflow it guides users toward does involve Cloudflare credentials, which should be protected from leakage in terminals, logs, or CI.
The materials and objective checks indicate this is a prompt-only skill with no declared built-in remote endpoints, so the skill itself does not directly exfiltrate user data. The README only describes that Cloudflare deployment commands would later interact with Cloudflare services, but that is external tool behavior rather than network egress by the skill itself.
This is documentation/prompt-style content and does not itself run `wrangler`, `npm`, or other local commands, nor does it declare direct process-spawning capability. The commands and `sandbox_permissions=require_escalated` reference in the README are operational guidance, not evidence that the skill itself has code execution privileges.
There is no indication that the skill can read local files, write project directories, access databases, or use operating system resources; as prompt-only material, its data access surface is essentially limited to providing instructions. Although it discusses deploying applications and infrastructure, the materials do not show that the skill itself has such data access or overbroad permissions.
The source is an open-source GitHub repository under openai/skills with strong community adoption (about 22k stars), which are clear positive signals that materially reduce supply-chain risk. Although the license is undeclared and maintenance status is unknown, there is no evidence of closed-source components, suspicious downloaders, unexplained outbound connections, or other concrete red flags, so overall supply-chain risk is low.
Copy the install command and let the AI configure it · recommended for beginners
Please install the "cloudflare-deploy" skill from askskill: 1. Download https://raw.githubusercontent.com/openai/skills/main/skills/.curated/cloudflare-deploy/SKILL.md 2. Save it as ~/.claude/skills/cloudflare-deploy/SKILL.md 3. Reload skills and tell me it's ready
Consolidated skill for building on the Cloudflare platform. Use decision trees below to find the right product, then load detailed references.
sandbox_permissions=require_escalated.Verify auth before wrangler deploy, wrangler pages deploy, or npm run deploy:
npx wrangler whoami # Shows account if authenticated
Not authenticated? → references/wrangler/auth.md
wrangler login (one-time OAuth)CLOUDFLARE_API_TOKEN env varNeed to run code?
├─ Serverless functions at the edge → workers/
├─ Full-stack web app with Git deploys → pages/
├─ Stateful coordination/real-time → durable-objects/
├─ Long-running multi-step jobs → workflows/
├─ Run containers → containers/
├─ Multi-tenant (customers deploy code) → workers-for-platforms/
├─ Scheduled tasks (cron) → cron-triggers/
├─ Lightweight edge logic (modify HTTP) → snippets/
├─ Process Worker execution events (logs/observability) → tail-workers/
└─ Optimize latency to backend infrastructure → smart-placement/
Need storage?
├─ Key-value (config, sessions, cache) → kv/
├─ Relational SQL → d1/ (SQLite) or hyperdrive/ (existing Postgres/MySQL)
├─ Object/file storage (S3-compatible) → r2/
├─ Message queue (async processing) → queues/
├─ Vector embeddings (AI/semantic search) → vectorize/
├─ Strongly-consistent per-entity state → durable-objects/ (DO storage)
├─ Secrets management → secrets-store/
├─ Streaming ETL to R2 → pipelines/
└─ Persistent cache (long-term retention) → cache-reserve/
Need AI?
├─ Run inference (LLMs, embeddings, images) → workers-ai/
├─ Vector database for RAG/search → vectorize/
├─ Build stateful AI agents → agents-sdk/
├─ Gateway for any AI provider (caching, routing) → ai-gateway/
└─ AI-powered search widget → ai-search/
Need networking?
├─ Expose local service to internet → tunnel/
├─ TCP/UDP proxy (non-HTTP) → spectrum/
├─ WebRTC TURN server → turn/
├─ Private network connectivity → network-interconnect/
├─ Optimize routing → argo-smart-routing/
├─ Optimize latency to backend (not user) → smart-placement/
└─ Real-time video/audio → realtimekit/ or realtime-sfu/
Need security?
├─ Web Application Firewall → waf/
├─ DDoS protection → ddos/
├─ Bot detection/management → bot-management/
├─ API protection → api-shield/
├─ CAPTCHA alternative → turnstile/
└─ Credential leak detection → waf/ (managed ruleset)
Need media?
├─ Image optimization/transformation → images/
├─ Video streaming/encoding → stream/
├─ Browser automation/screenshots → browser-rendering/
└─ Third-party script management → zaraz/
Need IaC? → pulumi/ (Pulumi), terraform/ (Terraform), or api/ (REST API)
| Product | Reference |
|---|---|
| Workers | references/workers/ |
| Pages | references/pages/ |
| Pages Functions | references/pages-functions/ |
| Durable Objects | references/durable-objects/ |
| Workflows | references/workflows/ |
| Containers | references/containers/ |
| Workers for Platforms | references/workers-for-platforms/ |
| Cron Triggers | references/cron-triggers/ |
| Tail Workers | references/tail-workers/ |
| Snippets | references/snippets/ |
| Smart Placement | references/smart-placement/ |
| Product | Reference |
|---|---|
| KV | references/kv/ |
| D1 | references/d1/ |
| R2 | references/r2/ |
| Queues | references/queues/ |
| Hyperdrive | references/hyperdrive/ |
…
Migrate instruction files, skills, agents, and MCP configs into Codex files.
Build, scaffold, refactor, and troubleshoot ChatGPT Apps SDK applications.
Turn vague intentions into concrete, measurable goals and clear success criteria.
Map Figma design components to code components for consistent implementation.
Create a new blank Figma design or FigJam file to start collaborating quickly.
Interact with persistent browsers and Electron apps for fast iterative UI debugging.
Deploy full-stack apps to Cloudflare with databases, auth, and storage using natural language.
Build and deploy verified Cloudflare-native business apps with agent guardrails.
Deploy, publish, and link web projects to Netlify using the CLI.
Deploy apps or websites to Vercel and generate live or preview links.
Analyze codebases and generate Render configs to deploy apps to the cloud.
Deploy OAuth-enabled remote MCP servers on Cloudflare Workers for tool execution.