Once you have the domain registered, Cloudflare can securely forward emails sent to the address.
Prerequisities
Domain name is registered (See Domains: Registration )
Cloudflare account
Target Email address
Log in to Cloudflare (cloudflare.com)
Go to Domains, Overview and click on the domain
Click Email, Email Routing
Click Destination Addresses
Type an email address into the input field and click "Add address"
Status should say "Pending"
Check your target email for a message: [Cloudflare]: Verify Email Routing address
Click the link (to dash.cloudflare.com) and Confirm
Return to Cloudflare Email Routing
Click Routing Rules
Click "+ Create routing rule"
Enter the email pattern "username" and select the domain
Change Action to "Send to an email"
Change Destination to your target email address
Next to "Catch-all", "Drop", click "Enable" to ignore email addresses outside of your routing rules.
Create an email address for rule receiving security reports:
admin@domain.xyz
security@domain.xyz
abuse@domain.xyz
After the email addresses have been defined, you may update your Domain Registrar contact to use these emails. Note there are websites keeping records of all previous domain contacts; "The Internet never forgets".
Go to Domain , domain.xyz, Security, Settings.
Scroll to the bottom for "Security.txt". Click the Edit icon to enter Settings.
Contact: mailto:security@domain.xyz
Expires: 5 years from now
Preferred-Languages: en
Optional: Links to site policies
Click Save
Enable Security.txt
Some other Cloudflare security settings: AI Labyrinth, Bot fight mode, Browser integrity check, Challenge passage (1 week), Email Address Obfuscation,