Cloudflare
@mccormick/cloudflarev2026.06.09.1
01README
Cloudflare One / Zero Trust Access discovery for swamp.
The @mccormick/cloudflare/zerotrust model inventories, per account: Access applications and their policies (rule sets normalized into conditional-access factors), configured identity providers, service tokens, and mTLS certificates. The scan method fans out across every configured account; a per-account or per-app failure is recorded in the scan summary's notes and never aborts the run.
Read-only: the model only reads the Cloudflare API — nothing is created, changed, or deleted. No credential material is written to swamp data, only configuration metadata. The API token is supplied through a vault. Built on the official cloudflare TypeScript SDK.
02Models
zerotrust.tsv2026.06.09.1
Global Arguments
| Argument | Type | Description |
|---|---|---|
| accountIds | array | Cloudflare account IDs to scan |
| cloudflareToken | string | Cloudflare API token; supply via |
| apiBaseUrl | string | Cloudflare API v4 base URL |
fn scan()
Fan-out scan of Cloudflare One Access applications, policies,
Resources
access_app— A Cloudflare Access application
access_policy— A Cloudflare Access policy (conditional-access ruleset)
identity_provider— A configured Cloudflare Access identity provider
service_token— A Cloudflare Access service token (machine credential)
mtls_cert— A Cloudflare Access mTLS CA certificate
03Previous Versions
2026.05.21.1May 21, 2026
04Stats
A
100 / 100
Downloads
4
Archive size
240.2 KB
- Has README or module doc2/2earned
- README has a code example1/1earned
- README is substantive1/1earned
- Most symbols documented1/1earned
- No slow types (deprecated)1/1earned
- Dependencies pass trust audit2/2earned
- Has description1/1earned
- Platform support declared (or universal)2/2earned
- License declared1/1earned
- Verified public repository2/2earned
05Platforms
06Labels