cloudflare/mcp-server-cloudflare

[email protected] scope: cloudflare-casb-mcp-server Breaking

This release includes 3 breaking changes for platform teams planning a safe upgrade.

Published 1d MCP Developer Tools

View tool

✓ No known CVEs patched

Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Affected surfaces

auth

ReleasePort's take

Moderate signal

editorial:auto 1d

The release removes the `accounts_list` and `set_active_account` tools.

Why it matters: Removal of accounts_list and set_active_account impacts integrations that rely on these tooling APIs; affected code must be updated before upgrading.

Summary

AI summary

Updates Patch Changes, Minor Changes, and f625075 across a mixed release.

Changes in this release

Type	Severity	Summary	CVE
Breaking	High	Removes `accounts_list` and `set_active_account` tools. Removes `accounts_list` and `set_active_account` tools. Source: llm_adapter@2026-06-02 Confidence: high	—
Feature
Feature	Low	Introduces `AccountManager` for automatic Cloudflare account resolution. Introduces `AccountManager` for automatic Cloudflare account resolution. Source: granite4.1:30b@2026-06-02-audit Confidence: low	—
Feature	Low	Adds `server.accountTool()` registration to centralize account scoping logic. Adds `server.accountTool()` registration to centralize account scoping logic. Source: granite4.1:30b@2026-06-02-audit Confidence: low	—
Feature	Low	Prioritizes auth-pinned account, `cf-account-id` header, and optional `account_id` argument for multi‑account tokens. Prioritizes auth-pinned account, `cf-account-id` header, and optional `account_id` argument for multi‑account tokens. Source: granite4.1:30b@2026-06-02-audit Confidence: low	—
Dependency	Low	Upgrades `@cloudflare/workers-oauth-provider` from 0.4.0 to 0.7.0. Upgrades `@cloudflare/workers-oauth-provider` from 0.4.0 to 0.7.0. Source: llm_adapter@2026-06-02 Confidence: high	—
Dependency	Low	Upgrades `agents` from 0.2.19 to 0.13.3, `@modelcontextprotocol/sdk` from 1.20.2 to 1.29.0, `zod` from 3 to 4, and `ai` from 4 to 6. Upgrades `agents` from 0.2.19 to 0.13.3, `@modelcontextprotocol/sdk` from 1.20.2 to 1.29.0, `zod` from 3 to 4, and `ai` from 4 to 6. Source: llm_adapter@2026-06-02 Confidence: high	—
Bugfix	Low	Tool error responses now set `isError: true` to distinguish failures. Tool error responses now set `isError: true` to distinguish failures. Source: granite4.1:30b@2026-06-02-audit Confidence: low	—

Full changelog

Minor Changes

f625075: Centralize Cloudflare account resolution and remove the account-management tools.

The accounts_list and set_active_account tools are removed. Account scoping is now
resolved automatically by an AccountManager (via the new server.accountTool()
registration), in priority order:
1. Auth-pinned account — an account-scoped API token's account, or an OAuth token with a
  single account, is used automatically (no account_id parameter is exposed).
2. cf-account-id request header — for tokens that can access multiple accounts, set this
  header in your MCP client config to pick an account.
3. account_id tool argument — for multi-account tokens, account-scoped tools expose an
  optional account_id parameter; when omitted (and no header is set) the tool returns an
  error listing the accounts you can use. Multi-account credentials also list their accounts
  in the server's initialize instructions.
All tool error responses now set isError: true so clients can distinguish failures.

Patch Changes

a358e69: Upgrade @cloudflare/workers-oauth-provider 0.4.0 → 0.7.0.

No tool or behavior changes. The only API change affecting this repo is that
TokenExchangeCallbackOptions now carries a required grantId field, which only
touched a test fixture (the provider supplies it at runtime).
f625075: Upgrade core dependencies: agents 0.2.19 → 0.13.3, @modelcontextprotocol/sdk 1.20.2 →
1.29.0, zod 3 → 4, and ai 4 → 6.

No user-facing tool or behavior changes. Internal adjustments for the new versions:
- zod 4: z.record(...) now takes an explicit key schema; z.string().ip() replaced with
  z.ipv4()/z.ipv6() validation; dropped the removed objectOutputType helper.
- agents 0.13: McpAgent env generic is constrained to Cloudflare.Env.
- MCP SDK 1.29: tool annotations hints must be flat ({ title, readOnlyHint, ... }) — fixes a
  latent bug where nested hints were silently ignored.
- ai 6: eval tooling updated (LanguageModel, inputSchema, stopWhen/stepCountIs, tool-call input).

Breaking Changes

Removed `accounts_list` and `set_active_account` tools; account scoping now resolved automatically via Auth‑pinned token, `cf-account-id` header, or optional `account_id` parameter.
Upgraded dependencies: agents 0.2.19 → 0.13.3 (McpAgent env generic constrained to Cloudflare.Env), @modelcontextprotocol/sdk 1.20.2 → 1.29.0 (annotations must be flat), zod 3 → 4 (z.record requires explicit key schema, string.ip replaced with ipv4/ipv6 validators, objectOutputType removed), ai 4 → 6 (eval tooling updates).
Upgraded `@cloudflare/workers-oauth-provider` 0.4.0 → 0.7.0; `TokenExchangeCallbackOptions` now requires a `grantId` field.

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track cloudflare/mcp-server-cloudflare

Get notified when new releases ship.

About cloudflare/mcp-server-cloudflare

Integration with Cloudflare services including Workers, KV, R2, and D1

All releases →

Related context

Related tools

Earlier breaking changes

[email protected] Adds delete-class migration for UserDetails Durable Object in graphql server.
[email protected] Removes `accounts_list` and `set_active_account` tools.
[email protected] Removes `accounts_list` and `set_active_account` tools.
[email protected] Removes `accounts_list` and `set_active_account` tools.
[email protected] Removes `accounts_list` and `set_active_account` tools.