Cloudflare AI Security for Apps Now Generally Available

Cloudflare AI Security for Apps Now Generally Available

Introduction: The Growing Risks of AI-Powered Applications

AI-powered applications are revolutionizing industries, but they also introduce new security vulnerabilities. Unlike traditional apps with predictable workflows, AI systems process natural language and generate dynamic outputs. This complexity creates attack surfaces for prompt injections, data leaks, and unauthorized actions. Cloudflare’s AI Security for Apps addresses these risks head-on, offering a unified solution for discovery, detection, and mitigation.

What AI Security for Apps Does

Cloudflare’s AI Security for Apps acts as a security layer for AI-powered applications, whether you’re using third-party models or hosting your own. It provides three core capabilities:

  • Discovery: Automatically identifies AI endpoints across your web properties.
  • Detection: Analyzes prompts for malicious intent, PII exposure, and toxic content.
  • Mitigation: Blocks threats using Cloudflare’s familiar WAF rule builder.

Free Endpoint Discovery for All Users

Security teams often struggle to track AI deployments as models and providers change rapidly. Cloudflare’s free endpoint discovery feature solves this by scanning web traffic behavior, not just URL patterns. This means even non-chat AI tools like product search engines or recommendation systems are detected.

For Free plan users, discovery starts when you visit the AI Security dashboard. Paid plans get automatic background scans. Discovered endpoints appear under Security → Web Assets labeled as cf-llm.

Advanced Detection Capabilities

The detection system uses multiple modules to analyze every prompt:

  • Prompt Injection: Identifies attempts to manipulate AI behavior.
  • PII Exposure: Flags requests that could extract sensitive data.
  • Toxic Topics: Detects harmful or off-policy content.

Cloudflare leverages its global network (processing ~20% of internet traffic) to identify emerging attack patterns before they reach your apps.

New Features in General Availability

Custom Topics Detection

While built-in detection covers common threats, businesses need tailored rules. The new Custom Topics feature lets you define industry-specific risks:

  • Finance: Detect discussions about specific securities.
  • Healthcare: Flag patient data references.
  • Retail: Monitor competitor product inquiries.

Each prompt receives a relevance score, which you can use to block, log, or handle threats according to your policies.

Custom Prompt Extraction

Different LLM providers structure API requests uniquely. Cloudflare supports standard formats from OpenAI, Anthropic, and others. For custom tools, you’ll soon define JSONPath expressions to pinpoint prompts, reducing false positives from unrelated fields like $.customer_name.

Unified Mitigation with WAF Rules

Once threats are identified, Cloudflare’s WAF engine lets you:

  • Block malicious requests instantly.
  • Log suspicious activity for analysis.
  • Send custom error responses.

The platform combines AI-specific signals with broader security data (IP reputation, browser fingerprints) for smarter threat prioritization.

Partnerships Expanding AI Security

Cloudflare is collaborating with IBM to deliver AI security to IBM Cloud customers. The partnership with Wiz provides a unified view of AI security posture across environments. These integrations highlight the growing need for cross-platform visibility.

Conclusion: Securing the AI Future

As AI agents gain access to critical systems, security must evolve. Cloudflare’s AI Security for Apps offers a proactive solution for discovery, detection, and mitigation. With free endpoint discovery and customizable threat rules, businesses can protect their AI investments without slowing innovation.

Call to Action: Explore Cloudflare’s AI Security for Apps today to secure your AI-powered applications. Visit the Cloudflare dashboard to start discovering endpoints and configuring custom rules.