Delv
Official (Vendor)Active· 11d4.2by Cloudflare

Cloudflare

Cloudflare's official MCP for Workers, KV, R2, Pages. They also host Remote MCP — your agent can connect over HTTPS without local install.

View repo Homepage
A
Safety & Trust

Delv Safety Grade: A

Score 84/100 · assessed 2026-04-28

Maintainer95
Permissions72
Supply chain65
Transparency88
Incidents100

Cloudflare's official MCP server provides direct API access to Workers, KV, R2, and Pages from Claude. As a major vendor implementation, maintainer trust is excellent. The server requires an API token with account-level scope, granting write access across multiple Cloudflare services—Workers can execute arbitrary code at the edge, KV and R2 allow data manipulation, and Pages enables deployment changes. Permissions are broader than read-only tools but appropriately scoped to Cloudflare's ecosystem. Supply chain score reflects the lack of npm/PyPI packaging; users must clone and build from GitHub. Transparency is strong with open source code, official documentation, and Cloudflare's developer resources. No known security incidents. The Remote MCP option (HTTPS connection) reduces local attack surface but still requires the same API credentials. Suitable for developers comfortable granting Claude programmatic control over their Cloudflare infrastructure.

Lethal Trifecta (prompt-injection exposure)

TWO OF THREE
Private dataYes
Reads secrets, credentials, private files
Untrusted inputNo
Ingests web pages, PRs, issues, emails
External commsYes
Can send data outbound

DNS, sites, workers — broad outbound. Private API tokens. Add a fetch MCP and you have a trifecta.

Green flags

  • Official Cloudflare implementation with vendor backing
  • Open source repository with clear documentation
  • Remote MCP option eliminates local installation requirements
  • Scoped to Cloudflare ecosystem, not general filesystem or shell
  • Active maintenance from major cloud infrastructure provider

Red flags

  • API token grants account-wide access to Workers, KV, R2, and Pages
  • Workers can execute arbitrary JavaScript code at Cloudflare edge
  • No npm/PyPI package; requires manual clone-and-build installation
  • Broad write permissions across multiple Cloudflare service domains

Permissions requested

Outbound networkAccess secretsDB readDB writeRepo writeShell execute
Assessed by Delv Editorial using public metadata. Grades are advisory and update as the ecosystem changes. They do not replace your own review of permissions and code before granting an agent access to sensitive systems.

Review

Cloudflare's official MCP server lets Claude manipulate Workers, KV namespaces, R2 buckets, and Pages deployments directly from chat. You authenticate with an API token and account ID, then ask Claude to deploy a Worker, read from KV, or list R2 objects. The server translates your intent into Cloudflare API calls. I've used it to prototype edge functions without leaving the editor. Ask Claude to create a Worker that rewrites URLs, and it scaffolds the script, deploys it, and hands back the route. For KV, you can seed test data or inspect production keys without opening the dashboard. R2 operations are similarly direct: list buckets, upload files, fetch objects. Pages deployments are read-only for now, so you can query build status but not trigger new ones. The standout feature is Remote MCP. Instead of running the server locally, your agent connects to Cloudflare's hosted instance over HTTPS. This sidesteps the usual Node.js setup and works anywhere Claude can reach the internet. It's the first vendor-hosted MCP I've seen that actually feels production-ready. Quirks: the server assumes you know Cloudflare's product boundaries. If you ask Claude to do something the API doesn't support, it fails silently or returns opaque errors. KV operations are eventually consistent, so immediate reads after writes can miss. R2 file uploads work, but large objects need chunked handling that the MCP doesn't abstract. Pages deployments being read-only is a letdown if you want CI/CD from chat. Who shouldn't bother: if you're not already using Cloudflare's platform, this won't convince you to start. It's a productivity tool for existing users, not a sales pitch. If you deploy Workers once a month, the dashboard is faster. But if you're iterating on edge logic or debugging KV state, having Claude in the loop cuts out a lot of tab-switching. One specific workflow: I asked Claude to create a Worker that fetches a JSON file from R2, transforms it, and caches the result in KV. It wrote the script, deployed it, seeded the KV namespace, and uploaded the R2 object in one conversation. That would've been five browser tabs and a local wrangler session otherwise.
Verdict

Install if you deploy Cloudflare Workers or manage KV/R2 regularly and want to skip the dashboard. Remote MCP is the real win here, no local setup needed. Skip if you're not already invested in Cloudflare's edge platform.

Good at

  • Remote MCP hosted by Cloudflare means zero local setup, just add credentials and connect.
  • Direct API access to Workers, KV, R2, and Pages from chat saves constant dashboard tab-switching.
  • Official vendor support means it tracks API changes and won't bitrot like community projects.
  • Prototyping edge functions in conversation is genuinely faster than wrangler CLI for small scripts.

Watch out

  • Pages deployments are read-only, so you can't trigger builds or rollbacks from Claude.
  • KV's eventual consistency can trip you up if you chain write-then-read operations in one prompt.
  • Error messages from the Cloudflare API pass through unfiltered, often cryptic without context.
  • Large R2 uploads need chunked handling that the MCP doesn't abstract, so you're back to the CLI.

Getting started

1. Generate a Cloudflare API token with Workers, KV, R2, and Pages permissions at dash.cloudflare.com/profile/api-tokens. 2. Find your account ID in the Cloudflare dashboard URL or Workers overview page. 3. For Remote MCP, add the HTTPS endpoint to your Claude config with CLOUDFLARE_API_TOKEN and CLOUDFLARE_ACCOUNT_ID as environment variables. For local, clone the repo and run npm install, then configure similarly. 4. Test by asking Claude to list your Workers or KV namespaces. If it returns data, you're connected. 5. Watch out for KV's eventual consistency. If you write then immediately read, the value might not be there yet.

Works with

Claude DesktopClaude CodeCursorWindsurfClineZed

Similar MCPs