
Security News
PolinRider: North Korea-Linked Supply Chain Campaign Expands Across Open Source Ecosystems
PolinRider expands across npm, Packagist, Go modules, and Chrome extensions, using hidden loaders to target developer environments.
@cloudflare/workers-types
Advanced tools
Note
We now recommend using the Wrangler CLI and the
wrangler typescommand to generate types based on your compatibility date and compatibility flags. You can learn more about this, and how to migrate from @cloudflare/workers-types here in our docs.@cloudflare/workers-types will continue to be published on the same schedule.
npm install -D @cloudflare/workers-types
-- Or
yarn add -D @cloudflare/workers-types
The following is a minimal tsconfig.json for use alongside this package:
tsconfig.json
{
"compilerOptions": {
"target": "esnext",
"module": "esnext",
"lib": ["esnext"],
"types": ["@cloudflare/workers-types"]
}
}
The Cloudflare Workers runtime manages backwards compatibility through the use of Compatibility Dates. The @cloudflare/workers-types package provides a typing environment that corresponds to the latest version of the Cloudflare Workers runtime. The @cloudflare/workers-types/experimental entrypoint is also available for APIs guarded by experimental compatibility flags. Instead of using @cloudflare/workers-types directly, we recommend following the Typescript language documentation for Cloudflare Workers to generate a runtime typing environment that corresponds exactly to your compatibility date and flags.
It's not always possible (or desirable) to modify the tsconfig.json settings for a project to include all the Cloudflare Workers types. For use cases like that, this package provides importable versions of its types, which are usable with no additional tsconfig.json setup. For example:
import type { Request as WorkerRequest, ExecutionContext } from "@cloudflare/workers-types"
export default {
fetch(request: WorkerRequest, env: unknown, ctx: ExecutionContext) {
return new Response("OK")
}
}
It's recommended that you create a type file for any bindings your Worker uses. Create a file named
worker-configuration.d.ts in your src directory.
If you're using Module Workers, it should look like this:
// worker-configuration.d.ts
interface Env {
MY_ENV_VAR: string;
MY_SECRET: string;
myKVNamespace: KVNamespace;
}
For Service Workers, it should augment the global scope:
// worker-configuration.d.ts
declare global {
const MY_ENV_VAR: string;
const MY_SECRET: string;
const myKVNamespace: KVNamespace;
}
export {}
Wrangler can also generate this for you automatically from your wrangler.toml configuration file, using the wrangler types command.
@types/aws-lambda provides TypeScript type definitions for AWS Lambda, another serverless computing platform. While it offers type safety for AWS Lambda functions, it does not cover Cloudflare-specific features.
@types/express provides TypeScript type definitions for Express.js, a web application framework for Node.js. While it helps in building server-side applications, it does not offer the serverless and edge computing capabilities of Cloudflare Workers.
FAQs
TypeScript typings for Cloudflare Workers
The npm package @cloudflare/workers-types receives a total of 5,274,242 weekly downloads. As such, @cloudflare/workers-types popularity was classified as popular.
We found that @cloudflare/workers-types demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 5 open source maintainers collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Security News
PolinRider expands across npm, Packagist, Go modules, and Chrome extensions, using hidden loaders to target developer environments.

Security News
Open source attacks are accelerating as AI coding agents pull in dependencies faster, with less human review.

Research
/Security News
Malicious Chrome and Firefox extensions posed as free VPNs while stealing clipboard data through later extension updates.