Skill

cloudflare-coder

Provisions Cloudflare infrastructure using OpenTofu/Terraform for zones, DNS records, WAF rules, SSL settings, Page Rules, and cache configurations.

Terraform

Cloudflare

infrastructure

devops

npx claudepluginhub majesticlabs-dev/majestic-marketplace --plugin majestic-devops

Popularity

Parent stars

Parent forks

Invocation

How this skill is triggered — by the user, by Claude, or both

Slash command

/majestic-devops:cloudflare-coder

User invocable

Model invocable

Inline context

Default effort

Tool Access

This skill is limited to the following tools:

Read Write Edit Grep Glob Bash

Context Preview

The summary Claude sees in its skill listing — used to decide when to auto-load this skill

```hcl

Supporting Files

references/cloudflare-api-permissions.mdreferences/load-balancer.mdreferences/production-zone.mdreferences/waf.md

SKILL.md

344 lines · ~1.8k tokens

Similar Skills

cloudflare-api

785

Hits Cloudflare REST API for bulk/fleet ops: DNS records, custom hostnames, email routing, cache purge, WAF/redirect rules, D1 cross-DB queries, R2/KV bulk, Vectorize/Queues. Outputs curl/scripts.

1 file6 tools

cloudflare

cloudflare-manager

149

Deploys and manages Cloudflare Workers, KV Storage, R2 buckets, Pages projects, DNS records, and routes via API. Validates credentials and extracts deployment URLs for service setup.

1 file

cloudflare-manager

cloudflare-deploy

692

Navigates Cloudflare products for compute (Workers, Pages), storage (KV, D1, R2), AI (Workers AI, Vectorize), networking, security, and IaC (Terraform, Pulumi) via decision trees. Prioritizes docs retrieval.

20 files

cloudflare-skills

Stats

LanguageShell

Parent stars39

Parent forks7

MaintenanceExcellent

Last CommitMar 28, 2026

Actions

View Source View Plugin View on GitHub View README

Help us improve

Share bugs, ideas, or general feedback.

Stats

Actions

Help us improve

Share bugs, ideas, or general feedback.

resource "cloudflare_record" "root" { zone_id = data.cloudflare_zone.main.id name = "@" type = "A" content = var.server_ip ttl = 1 # 1 = automatic proxied = true } resource "cloudflare_record" "www" { zone_id = data.cloudflare_zone.main.id name = "www" type = "CNAME" content = "@" ttl = 1 proxied = true } resource "cloudflare_record" "mx_primary" { zone_id = data.cloudflare_zone.main.id name = "@" type = "MX" content = "mail.example.com" ttl = 3600 priority = 10 proxied = false # MX cannot be proxied }

locals { dns_records = { api = { type = "A" content = var.api_server_ip proxied = true } staging = { type = "A" content = var.staging_server_ip proxied = true } mail = { type = "A" content = var.mail_server_ip proxied = false } } } resource "cloudflare_record" "subdomain" { for_each = local.dns_records zone_id = data.cloudflare_zone.main.id name = each.key type = each.value.type content = each.value.content ttl = 1 proxied = each.value.proxied }

resource "cloudflare_zone_settings_override" "ssl" { zone_id = data.cloudflare_zone.main.id settings { ssl = "strict" min_tls_version = "1.2" always_use_https = "on" automatic_https_rewrites = "on" tls_1_3 = "on" opportunistic_encryption = "on" security_header { enabled = true max_age = 31536000 include_subdomains = true preload = true nosniff = true } } }

resource "cloudflare_origin_ca_certificate" "origin" { csr = tls_cert_request.origin.cert_request_pem hostnames = ["example.com", "*.example.com"] request_type = "origin-rsa" requested_validity = 5475 # 15 years (max) } resource "tls_private_key" "origin" { algorithm = "RSA" rsa_bits = 2048 } resource "tls_cert_request" "origin" { private_key_pem = tls_private_key.origin.private_key_pem subject { common_name = "example.com" organization = "Example Inc" } } output "origin_certificate" { value = cloudflare_origin_ca_certificate.origin.certificate sensitive = true }

resource "cloudflare_ruleset" "cache" { zone_id = data.cloudflare_zone.main.id name = "Cache Rules" description = "Caching configuration" kind = "zone" phase = "http_request_cache_settings" rules { action = "set_cache_settings" action_parameters { cache = true edge_ttl { mode = "override_origin" default = 2592000 # 30 days } browser_ttl { mode = "override_origin" default = 86400 # 1 day } } expression = "(http.request.uri.path.extension in {\"css\" \"js\" \"jpg\" \"jpeg\" \"png\" \"gif\" \"svg\" \"woff\" \"woff2\"})" description = "Cache static assets" enabled = true } rules { action = "set_cache_settings" action_parameters { cache = false } expression = "(starts_with(http.request.uri.path, \"/api/\"))" description = "Bypass cache for API" enabled = true } }

resource "cloudflare_ruleset" "redirects" { zone_id = data.cloudflare_zone.main.id name = "Redirects" description = "URL redirects" kind = "zone" phase = "http_request_dynamic_redirect" rules { action = "redirect" action_parameters { from_value { status_code = 301 target_url { expression = "concat(\"https://example.com\", http.request.uri.path)" } preserve_query_string = true } } expression = "(http.host eq \"www.example.com\")" description = "Redirect www to apex" enabled = true } rules { action = "redirect" action_parameters { from_value { status_code = 301 target_url { value = "https://example.com/new-page" } } } expression = "(http.request.uri.path eq \"/old-page\")" description = "Redirect old page to new" enabled = true } }

resource "cloudflare_zone_settings_override" "performance" { zone_id = data.cloudflare_zone.main.id settings { brotli = "on" early_hints = "on" http2 = "on" http3 = "on" zero_rtt = "on" rocket_loader = "on" minify { css = "on" html = "on" js = "on" } } }

resource "cloudflare_zone_settings_override" "security" { zone_id = data.cloudflare_zone.main.id settings { security_level = "medium" # off, essentially_off, low, medium, high, under_attack challenge_ttl = 1800 browser_check = "on" email_obfuscation = "on" server_side_exclude = "on" hotlink_protection = "on" ip_geolocation = "on" } }

resource "cloudflare_worker_route" "api" { zone_id = data.cloudflare_zone.main.id pattern = "example.com/api/*" script_name = cloudflare_worker_script.api.name } resource "cloudflare_worker_script" "api" { account_id = var.cloudflare_account_id name = "api-worker" content = file("${path.module}/workers/api.js") module = true plain_text_binding { name = "ENVIRONMENT" text = var.environment } secret_text_binding { name = "API_KEY" text = var.api_key } }

cloudflare-coder

Popularity

Invocation

Tool Access

Context Preview

Supporting Files

SKILL.md

Similar Skills

Help us improve

Help us improve

Find plugins for your project

cloudflare-coder

Popularity

Invocation

Tool Access

Context Preview

Supporting Files

SKILL.md

Provider Setup

Authentication

Data Sources

Get Zone by Name

Get Account ID

DNS Records

Basic Records

DNS Records with for_each

SSL/TLS Settings

Zone SSL Settings

Origin Certificates

Cache Rules

Modern Cache Rules (Rulesets)

Redirect Rules

Zone Settings

Performance Settings

Security Settings

Workers Routes

References

Similar Skills

Help us improve

Provider Setup

Authentication

Data Sources

Get Zone by Name

Get Account ID

DNS Records

Basic Records

DNS Records with for_each

SSL/TLS Settings

Zone SSL Settings

Origin Certificates

Cache Rules

Modern Cache Rules (Rulesets)

Redirect Rules

Zone Settings

Performance Settings

Security Settings

Workers Routes

References