[Security Center] Update frequency and opt-in status

[davejbax]

Frequencies have been increased, and the service is no longer opt-in - it's opt-out (enabled by default).

Summary

We've made several changes to Security Center, including changing the scanning frequencies and switching the service from opt-in for some accounts to opt-out for everyone.

Screenshots (optional)

Documentation checklist

• Is there a changelog entry (guidelines)? If you don't add one for something awesome and new (however small) — how will our customers find out? Changelogs are automatically posted to RSS feeds, the Discord, and X.
• The change adheres to the documentation style guide.
• If a larger change - such as adding a new page- an issue has been opened in relation to any incorrect or out of date information that this PR fixes.

[cloudflare-docs-bot]

Review

✅ No style-guide issues found in full PR diff.

Commands

Only codeowners can run commands. Post a comment with the command to trigger it.

Command	Description
/review	Runs a review now. Incremental if a prior review exists, full if not.
/full-review	Re-reviews the entire PR diff from scratch, ignoring incremental history. Useful after a rebase, when you want a fresh review, or if the bot gets out of sync and reports issues that no longer exist.

[zrkn]

LGTM

[davejbax]

/bonk

[ask-bonk]

PR Thread Summary: #31137 — [Security Center] Update frequency and opt-in status

Author: davejbax
Status: Open, awaiting merge
Commits: 1 commit (ab0f1c9)

What changed

This PR updates Security Center documentation to reflect two product changes:

1. Scan frequencies increased — Free plans now scanned every 7 days (was less frequent), Pro/Business every 3 days, Enterprise daily.
2. Switched from opt-in to opt-out — Security Insights scans are now enabled by default for all accounts and zones. Users no longer need to manually enable scanning; instead, they can disable it if desired. On-demand scans are now available on all plans.

Files changed (8 files, +29/-20)

• Changelog added: 2026-05-29-security-insights-default-scans.mdx announcing the new frequencies and default scanning behavior.
• get-started.mdx — Streamlined setup instructions and removed "Enable or disable" heading (kept as "Enable or disable Security Insights" for now, but bot flagged this).
• scan-frequency.mdx (partial) — Updated table: Free every 7 days, Pro/Business every 3 days, Enterprise daily. Added note that on-demand scans are available on all plans.
• setup.mdx (partial) — Changed language from "enable scans" to "enabled by default" and added instructions to disable or restart scans.
• infrastructure/index.mdx — Rewrote sentence to avoid passive voice ("scans populate Infrastructure data").
• security-insights/how-it-works.mdx — Minor update to align with new default scan behavior.
• security-insights/review-insights.mdx — Minor update.
• directory/infrastructure-attack-surface.yaml — Minor wording fix.

Bot review (cloudflare-docs-bot)

The automated docs review flagged 1 warning and 1 suggestion:

• ⚠️ Warning: In get-started.mdx line 20, heading ## Enable or disable Security Insights violates the style guide (should use "Turn on / Turn off" for toggles).
• 💡 Suggestion: In infrastructure/index.mdx line 17, rewrite passive voice sentence in active voice.

Human review

• zrkn approved with "LGTM" at 2026-05-29 15:18 UTC.

Open items

The PR is technically ready for merge but the author may want to address the bot's style-guide warning about "Enable or disable" before merging.

github run

[davejbax]

/full-review