Skip to content

build(deps-dev): Bump wrangler and @cloudflare/vitest-pool-workers in /worker #8

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
dependabot wants to merge 1 commit into
base: main
Choose a base branch
from
Open

build(deps-dev): Bump wrangler and @cloudflare/vitest-pool-workers in /worker #8

dependabot wants to merge 1 commit into from
+12,186 −3,122

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Jan 21, 2026

Bumps wrangler and @cloudflare/vitest-pool-workers. These dependencies needed to be updated together.
Updates wrangler from 4.45.0 to 4.59.3

Release notes

Sourced from wrangler's releases.

wrangler@4.59.3

Patch Changes

  • #9396 75386b1 Thanks @​gnekich! - Fix wrangler login with custom callback-host/callback-port

    The Cloudflare OAuth API always requires the redirect_uri to be localhost:8976. However, sometimes the Wrangler OAuth server needed to listen on a different host/port, for example when running from inside a container. We were previously incorrectly setting the redirect_uri to the configured callback host/port, but it needs to be up to the user to map localhost:8976 to the Wrangler OAuth server in the container.

    Example:

    You might run Wrangler inside a docker container like this: docker run -p 8989:8976 <image>, which forwards port 8976 on your host to 8989 inside the container.

    Then inside the container, run wrangler login --callback-host=0.0.0.0 --callback-port=8989

    The OAuth link still has a redirect_uri set tolocalhost:8976. For example https://dash.cloudflare.com/oauth2/auth?...&redirect_uri=http%3A%2F%2Flocalhost%3A8976%2Foauth%2Fcallback&...

    However the redirect to localhost:8976 is then forwarded to the Wrangler OAuth server inside your container, allowing the login to complete.

  • #11925 8e4a0e5 Thanks @​dependabot! - chore: update dependencies of "miniflare", "wrangler"

    The following dependency versions have been updated:

    Dependency From To
    workerd 1.20260114.0 1.20260115.0

  • #11942 133bf95 Thanks @​penalosa! - chore: update dependencies of "miniflare", "wrangler"

    The following dependency versions have been updated:

    Dependency From To
    workerd 1.20260115.0 1.20260116.0

  • #11922 93d8d78 Thanks @​dario-piotrowicz! - Improve telemetry errors being sent to Sentry by wrangler init when it delegates to C3 by ensuring that they contain the output of the C3 execution.

  • #11940 69ff962 Thanks @​penalosa! - Show helpful messages for file not found errors (ENOENT)

    When users encounter file not found errors, Wrangler now displays a helpful message with the missing file path and common causes, instead of reporting to Sentry.

  • #11904 22727c2 Thanks @​danielrs! - Fix false positive infinite loop detection for exact path redirects

    Fixed an issue where the redirect validation incorrectly flagged exact path redirects like / /index.html 200 as infinite loops. This was particularly problematic when html_handling is set to "none", where such redirects are valid.

    The fix makes the validation more specific to only block wildcard patterns (like /* /index.html) that would actually cause infinite loops, while allowing exact path matches that are valid in certain configurations.

    Fixes: cloudflare/workers-sdk#11824

  • #11946 fa39a73 Thanks @​MattieTK! - Fix configFileName returning wrong filename for .jsonc config files

    Previously, users with a wrangler.jsonc config file would see error messages and hints referring to wrangler.json instead of wrangler.jsonc. This was because the configFormat function collapsed both .json and .jsonc files into a single "jsonc" value, losing the distinction between them.

... (truncated)

Commits
  • 0c7e1f4 Version Packages (#11937)
  • 75386b1 Always pass a valid redirect_uri callback parameter (localhost:8976) to C...
  • d58fbd1 Wrangler: Make name the positional argument for wrangler delete instead o...
  • 133bf95 Add MessageBuilder support for Email Sending API in local mode (#11942)
  • 4ac7c82 [wrangler] Include version components in command event metrics (#11968)
  • 69ff962 Reduce more Sentry noise (#11940)
  • 029531a Wrangler: cache chosen account in memory to avoid repeated prompts (#11962)
  • bc70bfa Re-enable Media binding e2e tests (#11954)
  • 93d8d78 Ensure that wrangler init includes C3 error details when reporting to Sentr...
  • fa39a73 fix(wrangler): return correct config filename for .jsonc files (#11946)
  • Additional commits viewable in compare view

Updates @cloudflare/vitest-pool-workers from 0.10.0 to 0.12.5

Release notes

Sourced from @​cloudflare/vitest-pool-workers's releases.

@​cloudflare/vitest-pool-workers@​0.12.5

Patch Changes

@​cloudflare/vitest-pool-workers@​0.12.4

Patch Changes

  • #11898 c17e971 Thanks @​petebacondarwin! - Bundle more third-party dependencies to reduce supply chain risk

    Previously, several small utility packages were listed as runtime dependencies and installed separately. These are now bundled directly into the published packages, reducing the number of external dependencies users need to trust.

    Bundled dependencies:

    • miniflare: acorn, acorn-walk, exit-hook, glob-to-regexp, stoppable
    • kv-asset-handler: mime
    • vite-plugin-cloudflare: @remix-run/node-fetch-server, defu, get-port, picocolors, tinyglobby
    • vitest-pool-workers: birpc, devalue, get-port, semver

  • Updated dependencies [e78186d, fe4faa3, 4714ca1, c17e971, 695b043]:

    • miniflare@4.20260114.0
    • wrangler@4.59.2

@​cloudflare/vitest-pool-workers@​0.12.3

Patch Changes

  • Updated dependencies [99b1f32]:
    • wrangler@4.59.1

@​cloudflare/vitest-pool-workers@​0.12.2

Patch Changes

... (truncated)

Changelog

Sourced from @​cloudflare/vitest-pool-workers's changelog.

0.12.5

Patch Changes

0.12.4

Patch Changes

  • #11898 c17e971 Thanks @​petebacondarwin! - Bundle more third-party dependencies to reduce supply chain risk

    Previously, several small utility packages were listed as runtime dependencies and installed separately. These are now bundled directly into the published packages, reducing the number of external dependencies users need to trust.

    Bundled dependencies:

    • miniflare: acorn, acorn-walk, exit-hook, glob-to-regexp, stoppable
    • kv-asset-handler: mime
    • vite-plugin-cloudflare: @remix-run/node-fetch-server, defu, get-port, picocolors, tinyglobby
    • vitest-pool-workers: birpc, devalue, get-port, semver

  • Updated dependencies [e78186d, fe4faa3, 4714ca1, c17e971, 695b043]:

    • miniflare@4.20260114.0
    • wrangler@4.59.2

0.12.3

Patch Changes

  • Updated dependencies [99b1f32]:
    • wrangler@4.59.1

0.12.2

Patch Changes

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
build(deps-dev): Bump wrangler and @cloudflare/vitest-pool-workers
18c755b 
Bumps [wrangler](https://github.com/cloudflare/workers-sdk/tree/HEAD/packages/wrangler) and [@cloudflare/vitest-pool-workers](https://github.com/cloudflare/workers-sdk/tree/HEAD/packages/vitest-pool-workers). These dependencies needed to be updated together.

Updates `wrangler` from 4.45.0 to 4.59.3
- [Release notes](https://github.com/cloudflare/workers-sdk/releases)
- [Commits](https://github.com/cloudflare/workers-sdk/commits/wrangler@4.59.3/packages/wrangler)

Updates `@cloudflare/vitest-pool-workers` from 0.10.0 to 0.12.5
- [Release notes](https://github.com/cloudflare/workers-sdk/releases)
- [Changelog](https://github.com/cloudflare/workers-sdk/blob/main/packages/vitest-pool-workers/CHANGELOG.md)
- [Commits](https://github.com/cloudflare/workers-sdk/commits/@cloudflare/vitest-pool-workers@0.12.5/packages/vitest-pool-workers)

---
updated-dependencies:
- dependency-name: wrangler
  dependency-version: 4.59.3
  dependency-type: direct:development
- dependency-name: "@cloudflare/vitest-pool-workers"
  dependency-version: 0.12.5
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jan 21, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant