Why we build on Cloudflare: a boutique studio's infrastructure stack explained
An honest look at why a 2-person software studio runs every project on Cloudflare in 2026 — including the cost math, the trade-offs, and what we'd use instead for specific workloads.
Most boutique software studios pick a tech stack by accident — whatever the founder learned first, whatever the latest big project demanded. We did that for years.
In 2024 we made the choice deliberately. Every active production system we run sits on Cloudflare’s platform. This post explains why, what it costs, and where it doesn’t fit.
The stack, in one paragraph
For client projects in 2026 we use: Astro for the marketing/content layer, React or vanilla TypeScript for application UI, Cloudflare Workers for serverless compute, D1 (SQLite) for relational data, KV for caching, R2 for object storage, and Workers Analytics + Sentry for observability. AI work calls OpenAI, Anthropic, and Google APIs from the Worker layer. Authentication is Auth0 or Clerk depending on requirements. Email is Resend or Postmark.
Everything but the AI providers, Auth0/Clerk, and the email senders is Cloudflare. That’s intentional.
Why Cloudflare won
Three reasons, in order of importance:
1. Pricing that scales gently
Most modern cloud platforms have a pricing model designed to extract maximum revenue from successful applications. Bills can spike 10x overnight if a single config is wrong. AWS is notorious for this; even Vercel can produce unpleasant surprises at scale.
Cloudflare’s pricing is gentle and predictable. Free tier is generous. Paid tier scales linearly. We have client production systems that handle real traffic for $30–$80/month total infrastructure. The same workload on AWS would be $300–$800/month with the same engineering effort.
For a boutique studio handing off self-supporting production systems to small business clients, this matters enormously. We don’t want our clients getting a $1,200 bill in month 9 because traffic doubled.
2. The integrated suite
Cloudflare ships compute, database, object storage, CDN, edge caching, queue, cron, and AI all on one account with one billing relationship and consistent APIs. Want to write to a database from a Worker? Six lines. Want to read from object storage? Five lines. Want to schedule a daily job? Update wrangler.toml.
Compare to the AWS equivalent — compute is Lambda, database is RDS or DynamoDB, storage is S3, CDN is CloudFront, queue is SQS, cron is EventBridge, AI is Bedrock — and each has its own IAM model, billing, and API surface. The integration work alone is half the project.
For a 2-person studio that needs to move fast, fewer integration seams is the actual product.
3. Edge-by-default
Workers run at over 300 edge locations globally. A request from a customer in Sacramento hits the nearest Cloudflare PoP (usually in the Bay Area), executes there, and returns. Cold-start latency is measured in single-digit milliseconds.
The traditional model — origin server in a single region — adds 50–200ms of round-trip time for users far from that region. Multiply that across a few API calls in a single page load and you’ve added a noticeable feeling of slowness.
This used to require expensive CDN configuration. With Workers it’s the default.
The trade-offs we accept
Honest trade-offs. Cloudflare isn’t pareto-optimal for everything.
No traditional Postgres. D1 is SQLite, which is excellent but isn’t Postgres. If your application genuinely needs Postgres-specific features (advanced JSON indexing, full-text search beyond FTS5, complex CTEs, certain replication topologies), you’ll want Neon, Supabase, or a managed Postgres elsewhere. We use Hyperdrive to connect to external Postgres when this is needed.
Limited GPU/heavy ML. If you need to run your own ML inference on big models, Cloudflare’s AI Workers tier helps but doesn’t cover everything. Heavy custom ML still wants AWS Sagemaker, GCP Vertex, or dedicated GPU hosts.
Compliance edge cases. Some federal and healthcare workloads still require specific vendor certifications (FedRAMP High, certain HIPAA configurations) that are more mature on AWS or Azure. For 90% of SMB work, Cloudflare’s enterprise compliance is more than sufficient.
Smaller ecosystem. AWS has 30,000 community blog posts on every conceivable topic. Cloudflare has 3,000. Sometimes you have to read source code. Workable, but real.
What we’d use instead, by workload
For specific workloads where Cloudflare isn’t the right fit:
- Heavy ML model training: AWS Sagemaker or RunPod.
- Real-time video processing: AWS MediaLive or Mux.
- Complex data warehousing: Snowflake or BigQuery.
- Large Postgres workloads: Neon or Supabase, connected via Hyperdrive.
- Specific compliance regimes: AWS GovCloud or Azure Government.
For everything else — typical web apps, customer SaaS, internal tools, content sites, e-commerce, document-processing AI workflows — Cloudflare is what we reach for.
A representative cost breakdown
A real client production system we run, anonymized:
- Traffic: ~50,000 page views/month, ~200,000 API calls/month.
- Data: ~3 GB in D1 across ~80 tables, ~12 GB in R2.
- AI: ~$80/month in OpenAI calls for document extraction.
- Other: Sentry $26/month, Resend $20/month, Cloudflare Workers Paid $5/month, D1 + R2 + KV at usage tier ~$8/month.
Total infrastructure: ~$140/month.
The equivalent on AWS, configured for similar performance and availability, would be in the $400–$900/month range and require 2-3x the engineering time to maintain.
Why this matters for clients
For our clients — small businesses in Sacramento, Roseville, Auburn, and beyond — Cloudflare’s economics mean their custom software has a low ongoing burden. The system can sit and run for years at low cost without needing a quarterly cloud-architecture review.
That’s the actual product. A small business doesn’t want to think about infrastructure. They want software that works, costs predictable money, and doesn’t surprise them. Cloudflare delivers that more reliably than any other platform we’ve used.
When we’d recommend against it
If your in-house team is deeply AWS-native and has no appetite to learn a new platform, stay on AWS. The cognitive cost of platform migration usually outweighs the infrastructure savings.
If you’re building a product that depends on a specific AWS-only service (deep Sagemaker integration, MediaLive, IoT Core), don’t fight it.
If your project’s success depends on hiring engineers who happen to know your stack, AWS and Vercel have larger talent pools than Cloudflare.
For everyone else — and that’s most boutique software work — Cloudflare is what we use and what we recommend.
If you want to talk through what stack makes sense for your specific project, we’re happy to. We’re always glad to recommend you stay on what you’re already running if the math doesn’t justify a move.
FAQ
Frequently asked questions.
The questions clients ask most after reading this.
- Is Cloudflare actually production-ready for serious applications in 2026?
- Yes. Cloudflare Workers, D1, R2, KV, and Durable Objects have run real production traffic for years. We host every active client production system on Cloudflare. The boundary is at the edges — very heavy ML inference, GPU workloads, and certain enterprise compliance requirements still belong elsewhere — but for typical web/SaaS workloads, Cloudflare is production-grade.
- Why pick Cloudflare over AWS or Vercel?
- Cloudflare wins on three axes for boutique work: 1) Pricing scales gently — there's no surprise $10k bill from misconfigured services. 2) The global edge model means low latency without configuration. 3) The integrated suite (compute, DB, object storage, CDN, queue) reduces vendor sprawl. AWS wins for very large scale and ML-heavy workloads. Vercel wins for teams that live in Next.js.
- What's Cloudflare D1 and is it production-ready?
- D1 is Cloudflare's serverless SQL database (SQLite under the hood). As of 2026 it's production-ready for typical web app workloads — we run client production systems on it. Limitations: not ideal for very large datasets (10M+ rows), no native full-text search beyond FTS5, no JSON path indexing as flexible as Postgres. For 90% of small business application data, D1 is enough.
- What if we want to switch off Cloudflare later?
- Our standard practice: write Worker code as plain JavaScript/TypeScript with thin Cloudflare-specific adapters. Switching to Vercel, Deno Deploy, or AWS Lambda is a 2-week project, not a 2-month one. Database is more involved — D1 → Postgres is a real migration but well-trodden.
- Is this the right stack for our project specifically?
- If you're building a typical web application, customer-facing SaaS, internal tool, or content site — yes, almost certainly. If you're doing heavy real-time video, GPU-accelerated ML, or have specific enterprise vendor requirements (FedRAMP, certain government contracts), other stacks may fit better. We're happy to talk through the specific tradeoffs.
More development reading
Related from the lab.
-
Development
Native macOS apps for small business: when desktop beats web
Most small business software belongs on the web. Some specific jobs are dramatically better as native macOS or iOS apps. A practical breakdown of when to choose each, with real examples.
5 min
-
Development
Building Trade Sentries: lessons from shipping an AI-powered contractor AMS
What we learned building a custom agency management system for contractor-focused insurance — including the technical choices, the missteps, and what we'd do differently next time.
6 min
-
Development
Modern web stack 2026: Astro, Tailwind v4, Cloudflare Workers
An opinionated walkthrough of the stack we use for fast, accessible, low-cost marketing sites and small business web applications in 2026 — and why each piece earned its place.
5 min