cloudflare/cloudflare-typescript v6.5.0

v6.5.0

Repository: cloudflare/cloudflare-typescript

Tag: v6.5.0

Published: 2026-06-23T18:24:31Z

Prerelease: no

Release notes:

6.5.0 (2026-06-23)

Full Changelog: v6.4.0...v6.5.0

Features

New Resources

• email-auth: add Email Authentication resource -- dmarcReports (edit/get) and spf.inspect (get) for zone-level email auth management (acef35c)
• moq: add Media over QUIC resource -- relays (create/update/list/delete/get) and relays.tokens (rotate) (b7dd253)
• tenants: add Tenants resource -- get tenant details, accountTypes (list), accounts (list), entitlements (get), memberships (list) (68ab468)

New Sub-Resources

• ai-gateway: add customProviders sub-resource -- create, list, delete, get custom AI Gateway providers (f458e02)
• email-security: add investigate.bulk sub-resource -- create, list, delete, get bulk investigation jobs with cancel and messages sub-resources (ea717c6)
• logs: add logExplorer sub-resource -- query.sql for SQL-based log queries, datasets CRUD with available.list for dataset discovery (4b79b45)
• magic-transit: add cf1Sites sub-resource -- create, update, list, delete, get CF1 sites with ramps sub-resource (create/list/delete/get) (9538aec)
• user: add tenants sub-resource -- list tenants for the current user (6f1cd17)
• zones: add ct.alerting sub-resource -- edit and get Certificate Transparency alerting settings (9571fea)

New Methods

• magic-transit: add ipsecTunnels.pskSet method -- set pre-shared key for IPsec tunnels via POST /accounts/{account_id}/magic/ipsec_tunnels/psk (9538aec)

New Fields and Parameters

• origin-tls-compliance-modes: add update, delete, edit, get methods and corresponding response types (OriginTLSComplianceModeUpdateResponse, OriginTLSComplianceModeDeleteResponse, OriginTLSComplianceModeEditResponse, OriginTLSComplianceModeGetResponse) -- resource now fully functional with CRUD operations (5a17f45)

Breaking Changes

• email-routing: rules.list method removed -- the GET /zones/{zone_id}/email/routing/rules endpoint is no longer available in this resource (75e9aad)
• ssl: recommendations.get method and RecommendationGetResponse/RecommendationGetParams types removed -- SSL/TLS Recommender has been decommissioned in favor of Automatic SSL/TLS (3395404)
• zero-trust: ApplicationSCIMConfig shared type removed from access.applications -- SCIM config is now inlined as per-application-type SCIMConfig interfaces (e.g. SelfHostedApplication.SCIMConfig, SaaSApplication.SCIMConfig). Update imports accordingly. (fe4c286)
• zero-trust: UserPolicyCheckGeo type removed from access.applications.userPolicyChecks (fe4c286)
• zero-trust: devices.ipProfiles.list return type changed from IPProfilesSinglePage to IPProfilesV4PagePaginationArray -- iteration behavior is unchanged but type assertions may need updating (fe4c286)

Chores

• accounts: token permission-groups type updates (e708464)
• aisearch: instance and namespace type refactoring (1db0c95)
• cloudforce-one: threat-events dataset, tag, and event type updates (5abcfcb)
• custom-hostnames: additional fields on custom hostname types (31f3072)
• radar: type updates across AI, AS112, attack, BGP, bot, DNS, email, HTTP, and other radar sub-resources (f25fb49)
• rulesets: rule type expansion (d47ed95)
• zero-trust: updates across access, devices, DEX, and organizations sub-resources (fe4c286)
• sync codegen shared files (.stats.yml, api.md, src/index.ts, src/resources/index.ts) (c9df776)