Bài viết gắn tag Cloudflare Developer.https://cloudsecop.net/https://cloudsecop.net/blog/migration-aws-to-cloudflare/https://cloudsecop.net/blog/migration-aws-to-cloudflare/Playbook migrate production từ AWS (Lambda, DynamoDB, RDS, S3, SQS, ElastiCache) sang Cloudflare: mapping primitive, 3 chiến lược, data migration, cutover, rollback, 10 pitfall.Thu, 01 Jan 2026 00:00:00 GMTCloudflareCloudflare DeveloperMigrationAWSServerlessKhaVanhttps://cloudsecop.net/blog/cost-model-production/https://cloudsecop.net/blog/cost-model-production/Pricing từng primitive Cloudflare (Workers, D1, KV, R2, Queues, DOs, Vectorize, Workers AI), breakpoint, so sánh AWS, 3 scenario: blog, SaaS 10k user, app 100M req/tháng.Wed, 24 Dec 2025 00:00:00 GMTCloudflareCloudflare DeveloperCostAWSPricingKhaVanhttps://cloudsecop.net/blog/secrets-csp-bot-management/https://cloudsecop.net/blog/secrets-csp-bot-management/Defense-in-depth cho Cloudflare Worker: WAF + Bot Management, Turnstile, Access JWT, secret management, CSP/HSTS, 4 pattern auth, validation Zod, và anti-pattern cần tránh.Wed, 17 Dec 2025 00:00:00 GMTCloudflareCloudflare DeveloperSecurityCSPBot ManagementKhaVanhttps://cloudsecop.net/blog/logs-analytics-tail-workers/https://cloudsecop.net/blog/logs-analytics-tail-workers/4 tầng observability Cloudflare: Workers Logs (retention 3 ngày), Tail Workers (realtime), Logpush (batch tới R2/SIEM), Analytics Engine. Structured logging, alert, debug prod.Tue, 09 Dec 2025 00:00:00 GMTCloudflareCloudflare DeveloperObservabilityLogsAnalytics EngineKhaVanhttps://cloudsecop.net/blog/stream-images-media/https://cloudsecop.net/blog/stream-images-media/3 cách xử lý media của Cloudflare: Stream cho video (HLS/DASH), Images cho upload-transform-deliver, Image Resizing / cf.image. Pipeline, giá, responsive, OG động.Mon, 01 Dec 2025 00:00:00 GMTCloudflareCloudflare DeveloperStreamImagesMediaKhaVanhttps://cloudsecop.net/blog/durable-objects-realtime/https://cloudsecop.net/blog/durable-objects-realtime/Durable Object là single-writer coordination của Cloudflare: 1 roomId = 1 instance, WebSocket hibernation, storage persistent. 6 pattern, API cốt lõi, và khi nào DO là quá mức.Mon, 24 Nov 2025 00:00:00 GMTCloudflareCloudflare DeveloperDurable ObjectsWebSocketRealtimeKhaVanhttps://cloudsecop.net/blog/vectorize-rag-pattern/https://cloudsecop.net/blog/vectorize-rag-pattern/Vectorize là vector DB native của Cloudflare, kết hợp Workers AI bge-m3 cho RAG trọn edge. Pipeline ingest + query, chunking, lọc metadata, hybrid search D1, reranking.Sun, 16 Nov 2025 00:00:00 GMTCloudflareCloudflare DeveloperVectorizeRAGAIKhaVanhttps://cloudsecop.net/blog/workers-ai-model-catalog/https://cloudsecop.net/blog/workers-ai-model-catalog/Workers AI chạy inference trên edge GPU, AI Gateway proxy OpenAI/Anthropic/Bedrock/Google với cache + rate limit. Catalog, giá, khi nào chọn cái nào, retry/fallback production.Sat, 08 Nov 2025 00:00:00 GMTCloudflareCloudflare DeveloperWorkers AIAI GatewayLLMKhaVanhttps://cloudsecop.net/blog/ci-cd-wrangler-github-actions/https://cloudsecop.net/blog/ci-cd-wrangler-github-actions/Pipeline 4 bước: test → build → deploy → smoke. Scoped API token, smoke test 19 assertion, concurrent lock, preview env, rollback 10 giây. Full workflow file từ blog này.Sat, 01 Nov 2025 00:00:00 GMTCloudflareCloudflare DeveloperCI/CDGitHub ActionsWranglerKhaVanhttps://cloudsecop.net/blog/astro-remix-sveltekit-workers/https://cloudsecop.net/blog/astro-remix-sveltekit-workers/3 framework full-stack trên Workers khác nhau về render, JS client, adapter và bindings. Thiết lập thực tế từng cái, SSG vs SSR vs hybrid, và vì sao blog này chọn Astro.Fri, 24 Oct 2025 00:00:00 GMTCloudflareCloudflare DeveloperAstroRemixSvelteKitKhaVanhttps://cloudsecop.net/blog/orm-d1-drizzle-prisma/https://cloudsecop.net/blog/orm-d1-drizzle-prisma/3 lựa chọn: SQL thô (0KB), Drizzle (10KB, TS-first), Prisma (500KB WASM). Quy trình, pattern query phức tạp, migration, type safety, và khi nào ORM hại nhiều hơn lợi.Thu, 16 Oct 2025 00:00:00 GMTCloudflareCloudflare DeveloperD1ORMDrizzlePrismaKhaVanhttps://cloudsecop.net/blog/cloudflare-agents-production-patterns/https://cloudsecop.net/blog/cloudflare-agents-production-patterns/Cloudflare Agents framework dùng Durable Objects cho long-running state. Hibernation, tool calling, multi-agent WebSocket, schedule(). Cost ~$0.04/agent/tháng.Wed, 15 Oct 2025 00:00:00 GMTCloudflareWorkersDurable ObjectsAI AgentsCloudflare DeveloperKhaVanhttps://cloudsecop.net/blog/router-choice-hono-itty/https://cloudsecop.net/blog/router-choice-hono-itty/3 lựa chọn: vanilla fetch (0 bundle), Itty (3KB), Hono (13KB). Cú pháp, chuỗi middleware, validate Zod, khi nào chọn cái nào, và vì sao blog này dùng vanilla dù có 40 route.Wed, 08 Oct 2025 00:00:00 GMTCloudflareCloudflare DeveloperWorkersRoutingKhaVanhttps://cloudsecop.net/blog/queues-durable-objects/https://cloudsecop.net/blog/queues-durable-objects/2 primitive khó nhất khi Worker cần state. Queues cho fire-and-forget job với retry và DLQ. Durable Objects cho single-writer coordination. Khi nào dùng cái nào, pattern và gotcha.Wed, 01 Oct 2025 00:00:00 GMTCloudflareCloudflare DeveloperQueuesDurable ObjectsStorageKhaVanhttps://cloudsecop.net/blog/r2-object-storage/https://cloudsecop.net/blog/r2-object-storage/R2 là object storage S3-compatible của Cloudflare, không phí egress. So sánh R2 vs S3, 4 pattern phục vụ object, migration từ S3, gotcha về consistency, metadata, lifecycle.Tue, 23 Sep 2025 00:00:00 GMTCloudflareCloudflare DeveloperR2StorageKhaVanhttps://cloudsecop.net/blog/d1-production-patterns/https://cloudsecop.net/blog/d1-production-patterns/D1 là SQLite ở edge với primary region và read replica: kiến trúc, 5 query method, Sessions API cho read replica, prepared statement cache, migration, và 7 gotcha production.Mon, 15 Sep 2025 00:00:00 GMTCloudflareCloudflare DeveloperD1StorageSQLKhaVanhttps://cloudsecop.net/blog/kv-deep-dive/https://cloudsecop.net/blog/kv-deep-dive/Cloudflare KV là eventually-consistent KV store với cache tại từng PoP. Consistency model thực tế, giới hạn, 5 pattern đúng, 3 anti-pattern phổ biến, và gotcha thực tế.Mon, 08 Sep 2025 00:00:00 GMTCloudflareCloudflare DeveloperKVStorageKhaVanhttps://cloudsecop.net/blog/wrangler-miniflare-dev-loop/https://cloudsecop.net/blog/wrangler-miniflare-dev-loop/Dev loop thực tế của Workers: wrangler init, dev local với Miniflare, vitest, D1 migration, secret, triển khai 300+ PoP trong 30 giây. Vòng đời từ file trống đến production.Sun, 31 Aug 2025 00:00:00 GMTCloudflareCloudflare DeveloperWorkersDevOpsKhaVanhttps://cloudsecop.net/blog/mental-model-3-binding/https://cloudsecop.net/blog/mental-model-3-binding/Khung tư duy chung cho mọi Worker: Request là cửa vào, Identity là ai đang gọi, Storage là đọc ghi đâu. Áp dụng vào Worker đang chạy blog này và cách chọn storage primitive đúng.Tue, 19 Aug 2025 00:00:00 GMTCloudflareCloudflare DeveloperWorkersArchitectureKhaVanhttps://cloudsecop.net/blog/workers-runtime-mental-model/https://cloudsecop.net/blog/workers-runtime-mental-model/fetch handler, ExecutionContext, waitUntil, giới hạn subrequest, CPU vs wall time, cold start thực tế. 6 ngộ nhận khi dev từ Node/Lambda sang Workers. Code mẫu từ blog này.Sat, 16 Aug 2025 00:00:00 GMTCloudflareCloudflare DeveloperWorkersRuntimeKhaVanhttps://cloudsecop.net/blog/cloudflare-developer-platform-la-gi/https://cloudsecop.net/blog/cloudflare-developer-platform-la-gi/Cloudflare không còn chỉ là CDN. Workers, D1, R2, KV, Queues, DOs, Workers AI, Vectorize tạo thành nền tảng edge-native. Mental model đầu tiên, so sánh với Lambda.Fri, 08 Aug 2025 00:00:00 GMTCloudflareCloudflare DeveloperWorkersEdge ComputingKhaVanhttps://cloudsecop.net/blog/lol-html-streaming-rewriter/https://cloudsecop.net/blog/lol-html-streaming-rewriter/CSS-selector streaming HTML rewriter trên Cloudflare Workers. 3 pattern production: CSP nonce per request, rewrite analytics URL, A/B variant inject.Wed, 09 Apr 2025 00:00:00 GMTCloudflareWorkersCloudflare DeveloperPerformanceEdgeKhaVan