Workers in HKG should be opt in, not default massive security hole.
I just discovered today working with Anthropic’s models that cloudflare uses workers in HKG (Hong Kong) by default unless you pay for an enterprise plan and filter out the region. This is a massive security risk for companies operating in the AIPAC region trying to avoid touching Chinese servers. You might as well route traffic through Beijing at that point. Even if you use a WAF and geo block HK / China that doesn’t stop your worker from running on a server in HKG.
So is there a way to ensure my workers never run in a HKG/Macau data center without my consent? A feature provided in Vercel’s free tier?
0 Replies