# How to integrate Cloudflare api key MCP with Grok Build

```json
{
  "title": "How to integrate Cloudflare api key MCP with Grok Build",
  "toolkit": "Cloudflare api key",
  "toolkit_slug": "cloudflare_api_key",
  "framework": "Grok Build",
  "framework_slug": "grok-build",
  "url": "https://composio.dev/toolkits/cloudflare_api_key/framework/grok-build",
  "markdown_url": "https://composio.dev/toolkits/cloudflare_api_key/framework/grok-build.md",
  "updated_at": "2026-05-12T10:06:43.088Z"
}
```

## Introduction

### How to integrate Cloudflare api key MCP with Grok Build
[Grok Build](https://docs.x.ai/build/overview) is xAI's terminal coding agent. It runs on Grok 4.5, plans its work before it acts, and can run multiple sub-agents in parallel. It also reads Claude Code's MCP configuration, so any server you already have in a .mcp.json is picked up with no changes.
In this guide, I will show you how to connect your Cloudflare api key account to Grok Build through Composio, so it can add new A record to your DNS zone, delete outdated CNAME record from domain, create lockdown rule for admin URLs, and more without leaving the terminal. Composio holds the OAuth tokens for you, and Grok Build only calls the tools you approve.

## Also integrate Cloudflare api key with

- [ChatGPT Work](https://composio.dev/toolkits/cloudflare_api_key/framework/chatgpt)
- [Antigravity](https://composio.dev/toolkits/cloudflare_api_key/framework/antigravity)
- [OpenAI Agents SDK](https://composio.dev/toolkits/cloudflare_api_key/framework/open-ai-agents-sdk)
- [Claude Agent SDK](https://composio.dev/toolkits/cloudflare_api_key/framework/claude-agents-sdk)
- [Claude Code](https://composio.dev/toolkits/cloudflare_api_key/framework/claude-code)
- [Claude Cowork](https://composio.dev/toolkits/cloudflare_api_key/framework/claude-cowork)
- [Codex](https://composio.dev/toolkits/cloudflare_api_key/framework/codex)
- [Kimi Code](https://composio.dev/toolkits/cloudflare_api_key/framework/kimi)
- [Cursor](https://composio.dev/toolkits/cloudflare_api_key/framework/cursor)
- [VS Code](https://composio.dev/toolkits/cloudflare_api_key/framework/vscode)
- [OpenCode](https://composio.dev/toolkits/cloudflare_api_key/framework/opencode)
- [OpenClaw](https://composio.dev/toolkits/cloudflare_api_key/framework/openclaw)
- [Hermes](https://composio.dev/toolkits/cloudflare_api_key/framework/hermes-agent)
- [CLI](https://composio.dev/toolkits/cloudflare_api_key/framework/cli)
- [Google ADK](https://composio.dev/toolkits/cloudflare_api_key/framework/google-adk)
- [LangChain](https://composio.dev/toolkits/cloudflare_api_key/framework/langchain)
- [Vercel AI SDK](https://composio.dev/toolkits/cloudflare_api_key/framework/ai-sdk)
- [Mastra AI](https://composio.dev/toolkits/cloudflare_api_key/framework/mastra-ai)
- [LlamaIndex](https://composio.dev/toolkits/cloudflare_api_key/framework/llama-index)
- [CrewAI](https://composio.dev/toolkits/cloudflare_api_key/framework/crew-ai)

## TL;DR

### Why use Composio over a standalone MCP server?
- Read and write access. Composio's Cloudflare api key integration lets Grok Build take real actions like creating drafts, sending updates, and labeling records, not just reading data.
- 1,000+ SaaS toolkits out of the box. One endpoint gives you a full catalog of pre-built connectors, from Gmail and Slack to Notion, Linear, and Salesforce.
- One MCP server for every app. Wire up a single Composio server instead of maintaining a separate MCP entry for each app.
- Smart, context-aware tool loading. Grok Build caps how many tools it holds in a single request. Composio loads only the tools a task needs, so you do not spend that budget on tools you are not using.
- Cross-app automation. Chain actions across apps in one run. Pull a thread, summarize it in Notion, and post the highlights to Slack from a single prompt.

## Connect Cloudflare api key to Grok Build

### Prerequisites
- Grok Build installed and signed in. Install with curl -fsSL https://x.ai/cli/install.sh | bash on macOS or Linux, or irm https://x.ai/cli/install.ps1 | iex on Windows PowerShell. On first launch Grok opens a browser to authenticate; for headless or CI use, set an XAI_API_KEY environment variable instead (create the key at [console.x.ai](https://console.x.ai/)).
- Access to the Cloudflare api key account you want to connect.
- The [Composio MCP endpoint](https://dashboard.composio.dev/login?utm_source=toolkits&utm_medium=framework_template&utm_campaign=grok-build&utm_content=composio_connect). Composio's server is remote and hosted, so there is nothing to run locally and no tunnel to set up.
### Step-by-step: Connect Cloudflare api key to Grok Build
### 1. Install and verify Grok Build
Install the CLI, then restart your shell so the grok binary lands on your PATH:

```bash
curl -fsSL https://x.ai/cli/install.sh | bash
which grok
```

## What is the Cloudflare api key MCP server, and what's possible with it?

The Cloudflare api key MCP server is an implementation of the Model Context Protocol that connects your AI agent and assistants like Claude, Cursor, etc directly to your Cloudflare account. It provides structured and secure access to your Cloudflare services, so your agent can create DNS records, manage security rules, delete zones, and automate zone configurations on your behalf.
- Automated DNS record management: Instantly create, update, or delete DNS records—including A, CNAME, TXT, and MX types—across your Cloudflare zones to keep your domains running smoothly.
- Zone lockdown and security automation: Add or remove Zone Lockdown rules to restrict access to specific URLs and IP ranges, helping you enforce security policies without manual intervention.
- Ruleset creation and maintenance: Direct your agent to create new rulesets or modify existing ones, ensuring your web applications remain secure and compliant with evolving access requirements.
- Comprehensive zone administration: Effortlessly delete entire zones or DNSSEC configurations for streamlined domain management and cleanup when needed.
- Versioned ruleset management: Retrieve specific versions of entry point rulesets, giving you granular control and auditability over your security configurations.

## Supported Tools

| Tool slug | Name | Description |
|---|---|---|
| `CLOUDFLARE_API_KEY_CREATE_DNS_RECORD` | Create DNS Record | Tool to create a new DNS record in a Cloudflare zone. Use when you need to add a record (A, CNAME, TXT, MX, etc.) to a specified zone. |
| `CLOUDFLARE_API_KEY_CREATE_LOCKDOWN_RULE` | Create Zone Lockdown Rule | Tool to create a Zone Lockdown rule. Use when you need to restrict access to specific URL patterns to defined IPs/CIDR ranges. Use after confirming zone_id. |
| `CLOUDFLARE_API_KEY_CREATE_RULE_IN_RULESET` | Create Rule in Ruleset | Tool to add a rule to an existing ruleset. Use when you need to append or insert a new rule in a Cloudflare ruleset. |
| `CLOUDFLARE_API_KEY_CREATE_RULESET` | Create Ruleset | Creates a new Cloudflare ruleset at account or zone scope. Rulesets contain rules that control traffic behavior (firewall, rate limiting, redirects, etc.). First use List Zones to get a zone_id, then specify the phase (e.g., 'http_request_firewall_custom' for WAF rules). |
| `CLOUDFLARE_API_KEY_DELETE_DNS_RECORD` | Delete DNS Record | Tool to delete a DNS record. Use when you need to remove a specific DNS record from a zone after confirming both zone and record IDs. |
| `CLOUDFLARE_API_KEY_DELETE_DNSSEC` | Delete DNSSEC | Tool to delete DNSSEC records for a zone. Use after disabling DNSSEC at the registrar to remove DNSSEC configuration. |
| `CLOUDFLARE_API_KEY_DELETE_RULE_FROM_RULESET` | Delete Rule from Ruleset | Tool to delete a specific rule from a ruleset. Use when you need to remove an outdated or incorrect rule from an account or zone ruleset after confirming IDs. |
| `CLOUDFLARE_API_KEY_DELETE_RULESET` | Delete Ruleset | Tool to delete all versions of a ruleset. Use when you need to remove a ruleset from an account or zone after confirming no references exist. |
| `CLOUDFLARE_API_KEY_DELETE_ZONE` | Delete a zone | Tool to delete an existing zone. Use after confirming the zone_id to permanently remove the zone. |
| `CLOUDFLARE_API_KEY_GET_CLOUDFLARE_IP_ADDRESSES` | Get Cloudflare IP Addresses | Tool to retrieve IP addresses used on the Cloudflare or JD Cloud network. Use when you need to obtain the list of IPv4 and IPv6 CIDR blocks used by Cloudflare's infrastructure or JD Cloud data centers. |
| `CLOUDFLARE_API_KEY_GET_ENTRYPOINT_RULESET_VERSION` | Get Entrypoint Ruleset Version | Retrieves a specific historical version of an entry point ruleset from Cloudflare. Entry point rulesets are phase-specific and define the rules that execute during a particular phase of request/response processing. This tool fetches a specific version, allowing you to view rules as they existed at a particular point in time. Use cases: - Audit historical rule configurations - Compare rule changes between versions - Rollback analysis (view what rules looked like before a change) - Debug issues by examining past ruleset states Prerequisites: - Requires a valid account_id or zone_id (use List Zones to get zone IDs) - Requires knowing the ruleset phase (e.g., 'http_request_firewall_custom') - Requires knowing the version number to fetch |
| `CLOUDFLARE_API_KEY_GET_LOCKDOWN_RULE` | Get Lockdown Rule | Tool to get a Zone Lockdown rule. Use when you need to fetch details of a specific lockdown rule by its ID within a Cloudflare zone. |
| `CLOUDFLARE_API_KEY_GET_REGIONAL_TIERED_CACHE` | Get Regional Tiered Cache | Tool to get the regional tiered cache setting for a zone. Use when you need to verify if regional tiered cache is enabled for performance optimization after zone activation. |
| `CLOUDFLARE_API_KEY_GET_RULESET` | Get Ruleset | Tool to fetch the latest version of a ruleset by ID. Use after you have the ruleset scope and ID. |
| `CLOUDFLARE_API_KEY_GET_ZONE_DETAILS` | Get Zone Details | Tool to get details for a specific zone. Use when you need detailed zone metadata by ID. |
| `CLOUDFLARE_API_KEY_LIST_DNS_RECORDS` | List DNS Records | List, search, sort, and filter DNS records for a Cloudflare zone. Use this tool to retrieve DNS records (A, AAAA, CNAME, TXT, MX, etc.) for a zone. Supports filtering by record type, name, content, and proxy status. Results are paginated; use page and per_page parameters for large record sets. Requires a valid zone_id which can be obtained from the List Zones action. |
| `CLOUDFLARE_API_KEY_LIST_ZONES` | List Cloudflare Zones | Tool to list, search, sort, and filter Cloudflare zones. Use when you need to retrieve a paginated list of zones available to the authenticated user. |
| `CLOUDFLARE_API_KEY_OVERWRITE_DNS_RECORD` | Overwrite DNS Record | Tool to completely overwrite a DNS record. Use when you need to replace all record details after confirming record type and name. |
| `CLOUDFLARE_API_KEY_RERUN_ZONE_ACTIVATION_CHECK` | Rerun Zone Activation Check | Triggers a new activation check for a zone with 'pending' status. Use this after creating a zone or updating nameservers to verify that DNS propagation is complete and the zone can be activated. Rate limits apply: once every 5 minutes for paid plans (paygo/Enterprise) or once per hour for Free plans. |
| `CLOUDFLARE_API_KEY_UPDATE_DNSSEC_STATUS` | Update DNSSEC Status | Tool to update DNSSEC configuration for a zone. Use when you need to enable or disable DNSSEC or adjust DNSSEC options after confirming the zone ID. |
| `CLOUDFLARE_API_KEY_UPDATE_LOCKDOWN_RULE` | Update Lockdown Rule | Tool to update a zone lockdown rule. Use when you need to modify the IP or URL settings of an existing Zone Lockdown rule after confirming the rule exists. |
| `CLOUDFLARE_API_KEY_UPDATE_RULE_IN_RULESET` | Update Rule in Ruleset | Tool to update a specific rule in a ruleset. Use when you need to modify a rule's configuration or reorder it after reviewing its current settings. |
| `CLOUDFLARE_API_KEY_UPDATE_RULESET` | Update Ruleset | Update a Cloudflare ruleset, creating a new version. Use this to modify ruleset description, name, or rules. IMPORTANT: When updating rules, you must include ALL rules you want to keep - any rules not included will be removed. Cannot modify managed rulesets directly - use overrides instead. |
| `CLOUDFLARE_API_KEY_UPDATE_ZONE` | Update Cloudflare Zone | Tool to edit a Cloudflare zone. Use when you need to update a single zone property at a time. Ensure only one of paused, type, or vanity_name_servers is provided per call. |
| `CLOUDFLARE_API_KEY_UPLOAD_FILE_TO_S3` | Upload File to S3 | Tool to upload arbitrary file content to temporary storage. Use when you need to stage files for actions requiring FileUploadable. |

## Supported Triggers

None listed.

## Creating MCP Server - Stand-alone vs Composio SDK

Once connected, Grok Build can access the Cloudflare api key MCP server via Composio to run the app actions you authorize, directly from your terminal.

## Complete Code

None listed.

## How to build Cloudflare api key MCP Agent with another framework

- [ChatGPT Work](https://composio.dev/toolkits/cloudflare_api_key/framework/chatgpt)
- [Antigravity](https://composio.dev/toolkits/cloudflare_api_key/framework/antigravity)
- [OpenAI Agents SDK](https://composio.dev/toolkits/cloudflare_api_key/framework/open-ai-agents-sdk)
- [Claude Agent SDK](https://composio.dev/toolkits/cloudflare_api_key/framework/claude-agents-sdk)
- [Claude Code](https://composio.dev/toolkits/cloudflare_api_key/framework/claude-code)
- [Claude Cowork](https://composio.dev/toolkits/cloudflare_api_key/framework/claude-cowork)
- [Codex](https://composio.dev/toolkits/cloudflare_api_key/framework/codex)
- [Kimi Code](https://composio.dev/toolkits/cloudflare_api_key/framework/kimi)
- [Cursor](https://composio.dev/toolkits/cloudflare_api_key/framework/cursor)
- [VS Code](https://composio.dev/toolkits/cloudflare_api_key/framework/vscode)
- [OpenCode](https://composio.dev/toolkits/cloudflare_api_key/framework/opencode)
- [OpenClaw](https://composio.dev/toolkits/cloudflare_api_key/framework/openclaw)
- [Hermes](https://composio.dev/toolkits/cloudflare_api_key/framework/hermes-agent)
- [CLI](https://composio.dev/toolkits/cloudflare_api_key/framework/cli)
- [Google ADK](https://composio.dev/toolkits/cloudflare_api_key/framework/google-adk)
- [LangChain](https://composio.dev/toolkits/cloudflare_api_key/framework/langchain)
- [Vercel AI SDK](https://composio.dev/toolkits/cloudflare_api_key/framework/ai-sdk)
- [Mastra AI](https://composio.dev/toolkits/cloudflare_api_key/framework/mastra-ai)
- [LlamaIndex](https://composio.dev/toolkits/cloudflare_api_key/framework/llama-index)
- [CrewAI](https://composio.dev/toolkits/cloudflare_api_key/framework/crew-ai)

## Related Toolkits

- [Supabase](https://composio.dev/toolkits/supabase) - Supabase is an open-source backend platform offering scalable Postgres databases, authentication, storage, and real-time APIs. It lets developers build modern apps without managing infrastructure.
- [Codeinterpreter](https://composio.dev/toolkits/codeinterpreter) - Codeinterpreter is a Python-based coding environment with built-in data analysis and visualization. It lets you instantly run scripts, plot results, and prototype solutions inside supported platforms.
- [GitHub](https://composio.dev/toolkits/github) - GitHub is a code hosting platform for version control and collaborative software development. It streamlines project management, code review, and team workflows in one place.
- [1password](https://composio.dev/toolkits/_1password) - 1Password is a password manager and digital vault for storing logins, secrets, notes, and secure documents. It helps individuals and teams protect credentials, share access safely, and reduce password risk.
- [Ably](https://composio.dev/toolkits/ably) - Ably is a real-time messaging platform for live chat and data sync in modern apps. It offers global scale and rock-solid reliability for seamless, instant experiences.
- [Abuselpdb](https://composio.dev/toolkits/abuselpdb) - Abuselpdb is a central database for reporting and checking IPs linked to malicious online activity. Use it to quickly identify and report suspicious or abusive IP addresses.
- [Alchemy](https://composio.dev/toolkits/alchemy) - Alchemy is a blockchain development platform offering APIs and tools for Ethereum apps. It simplifies building and scaling Web3 projects with robust infrastructure.
- [Algolia](https://composio.dev/toolkits/algolia) - Algolia is a hosted search API that powers lightning-fast, relevant search experiences for web and mobile apps. It helps developers deliver instant, typo-tolerant, and scalable search without complex infrastructure.
- [Anchor browser](https://composio.dev/toolkits/anchor_browser) - Anchor browser is a developer platform for AI-powered web automation. It transforms complex browser actions into easy API endpoints for streamlined web interaction.
- [Apiflash](https://composio.dev/toolkits/apiflash) - Apiflash is a website screenshot API for programmatically capturing web pages. It delivers high-quality screenshots on demand for automation, monitoring, or reporting.
- [Apiverve](https://composio.dev/toolkits/apiverve) - Apiverve delivers a suite of powerful APIs that simplify integration for developers. It's designed for reliability and scalability so you can build faster, smarter applications without the integration headache.
- [Appcircle](https://composio.dev/toolkits/appcircle) - Appcircle is an enterprise-grade mobile CI/CD platform for building, testing, and publishing mobile apps. It streamlines mobile DevOps so teams ship faster and with more confidence.
- [Appdrag](https://composio.dev/toolkits/appdrag) - Appdrag is a cloud platform for building websites, APIs, and databases with drag-and-drop tools and code editing. It accelerates development and iteration by combining hosting, database management, and low-code features in one place.
- [Appveyor](https://composio.dev/toolkits/appveyor) - AppVeyor is a cloud-based continuous integration service for building, testing, and deploying applications. It helps developers automate and streamline their software delivery pipelines.
- [Backendless](https://composio.dev/toolkits/backendless) - Backendless is a backend-as-a-service platform for mobile and web apps, offering database, file storage, user authentication, and APIs. It helps developers ship scalable applications faster without managing server infrastructure.
- [Baserow](https://composio.dev/toolkits/baserow) - Baserow is an open-source no-code database platform for building collaborative data apps. It makes it easy for teams to organize data and automate workflows without writing code.
- [Bench](https://composio.dev/toolkits/bench) - Bench is a benchmarking tool for automated performance measurement and analysis. It helps you quickly evaluate, compare, and track your systems or workflows.
- [Better stack](https://composio.dev/toolkits/better_stack) - Better Stack is a monitoring, logging, and incident management solution for apps and services. It helps teams ensure application reliability and performance with real-time insights.
- [Bitbucket](https://composio.dev/toolkits/bitbucket) - Bitbucket is a Git-based code hosting and collaboration platform for teams. It enables secure repository management and streamlined code reviews.
- [Blazemeter](https://composio.dev/toolkits/blazemeter) - Blazemeter is a continuous testing platform for web and mobile app performance. It empowers teams to automate and analyze large-scale tests with ease.

## Frequently Asked Questions

### What is the difference between the Composio Tool Router and a standalone Cloudflare api key MCP server?

A standalone Cloudflare api key MCP server gives Grok Build a fixed set of Cloudflare api key tools tied to that one server. The Composio Tool Router lets Grok Build load tools from Cloudflare api key and many other apps on demand, based on the task, all through a single endpoint.

### Does Grok Build support MCP?

Yes. Grok Build ships with native MCP support. Add a server with the grok mcp add command, from the in-session /mcps modal, or by editing ~/.grok/config.toml. It also reads Claude Code-style .mcp.json files, so Grok Build discovers the tools automatically.

### Can I reuse the same MCP config I already use with Claude Code?

Yes. Grok Build has zero-migration compatibility with Claude Code's configuration, so the same Composio server entry works in both without edits.

### How safe is my Cloudflare api key data with Composio?

Tokens, keys, and configuration are encrypted at rest and in transit. Composio is SOC 2 Type 2 compliant, so your Cloudflare api key data and credentials are handled to that standard.

---
[See all toolkits](https://composio.dev/toolkits) · [Composio docs](https://docs.composio.dev/llms.txt)
