On May 18, 2026, Cloudflare and Stripe launches a protocol via Stripe Projects (open beta) that automates account

On May 18, 2026, Cloudflare and Stripe launched a protocol via Stripe Projects (open beta) that automates account creation, identity, and payments so coding agents can wire accounts, purchase domains, and deploy apps without manual dashboard steps;

On May 18, 2026, Cloudflare and Stripe published a coordinated protocol and reference integration, delivered through Stripe Projects (open beta), that lets automated coding agents complete the account — creation, payment and deployment steps required to move software from build to live hosting. The integration removes manual dashboard visits, API-token copying and card-entry from the developer deployment path, enabling an agent to handle provisioning and deployment in a single end-to-end flow.

Technically, the protocol is built from three components. A Discovery REST API returns a JSON catalog of available services so an orchestrator can see what can be provisioned. An Authorization path uses Stripe as the identity provider, triggering OAuth for existing accounts or automatic account provisioning where needed. Payment is handled via Stripe tokenization so raw card details are never exposed to agents.

Cloudflare and Stripe describe a simple developer sequence: after logging into Stripe and running stripe projects init, an agent can build the app, provision a Cloudflare account if required, obtain API tokens, purchase a domain and deploy the application. Cloudflare frames the protocol as an extension of delegated — access patterns like OAuth, making account creation and payments first — class capabilities for agents. The design is presented as open: any platform with signed — in users can act as an "Orchestrator" to call Cloudflare APIs and receive tokens for deployments.

The announcement says no other major cloud provider currently offers comparable agent — driven account provisioning at this level of automation. The rollout explicitly enforces human — controlled trust boundaries. A person must perform the initial Stripe authentication, accept terms of service, set up billing if no payment method is on file, and resolve account — merge decisions. By contrast, the agent handles technical tasks — credential wiring, DNS configuration and SSL certificate issuance — once those human gates are cleared. Stripe also applies a default spending cap of $100 per month per provider, and its tokenization prevents agents from accessing raw card data.

The collaboration promises faster end-to-end deployments for builders but surfaces concrete operational risks. Developer Patrick Hughes warned of failure modes such as agents purchasing incorrect domains or entering retry loops that generate unexpected metered charges. A demonstration mismatch in which an agent selected superseal.cc instead of the intended superseal.club was flagged by commenters, underscoring how fuzzy specifications and flaky APIs can translate directly into financial and naming errors for teams.