Bump the npm_and_yarn group across 2 directories with 7 updates #53

dependabot · 2024-03-16T23:19:25Z

Bumps the npm_and_yarn group with 4 updates in the / directory: axios, vite, follow-redirects and ip.
Bumps the npm_and_yarn group with 2 updates in the /cf-tsdocs-worker directory: ip and wrangler.

Updates axios from 1.6.5 to 1.6.6

Release notes

Sourced from axios's releases.

Release v1.6.6

Release notes:

Bug Fixes

fixed missed dispatchBeforeRedirect argument (#5778) (a1938ff)

wrap errors to improve async stack trace (#5987) (123f354)

Contributors to this release

Ilya Priven

Zao Soula

Changelog

Sourced from axios's changelog.

1.6.6 (2024-01-24)

Bug Fixes

fixed missed dispatchBeforeRedirect argument (#5778) (a1938ff)

wrap errors to improve async stack trace (#5987) (123f354)

Contributors to this release

Ilya Priven

Zao Soula

Commits

104aa3f chore(release): v1.6.6 (#6199)
a1938ff fix: fixed missed dispatchBeforeRedirect argument (#5778)
123f354 fix: wrap errors to improve async stack trace (#5987)
See full diff in compare view

Updates vite from 5.0.10 to 5.0.12

Changelog

Sourced from vite's changelog.

5.0.12 (2024-01-19)

fix: await configResolved hooks of worker plugins (#15597) (#15605) (ef89f80), closes #15597 #15605

fix: fs deny for case insensitive systems (#15653) (91641c4), closes #15653

5.0.11 (2024-01-05)

fix: don't pretransform classic script links (#15361) (19e3c9a), closes #15361

fix: inject __vite__mapDeps code before sourcemap file comment (#15483) (d2aa096), closes #15483

fix(assets): avoid splitting , inside base64 value of srcset attribute (#15422) (8de7bd2), closes #15422

fix(html): handle offset magic-string slice error (#15435) (5ea9edb), closes #15435

chore(deps): update dependency strip-literal to v2 (#15475) (49d21fe), closes #15475

chore(deps): update tj-actions/changed-files action to v41 (#15476) (2a540ee), closes #15476

Commits

ee81e19 release: v5.0.12
91641c4 fix: fs deny for case insensitive systems (#15653)
ef89f80 fix: await configResolved hooks of worker plugins (#15597) (#15605)
b44c493 release: v5.0.11
d2aa096 fix: inject __vite__mapDeps code before sourcemap file comment (#15483)
2a540ee chore(deps): update tj-actions/changed-files action to v41 (#15476)
5ea9edb fix(html): handle offset magic-string slice error (#15435)
49d21fe chore(deps): update dependency strip-literal to v2 (#15475)
8de7bd2 fix(assets): avoid splitting , inside base64 value of srcset attribute (#...
19e3c9a fix: don't pretransform classic script links (#15361)
See full diff in compare view

Updates follow-redirects from 1.15.4 to 1.15.6

Commits

35a517c Release version 1.15.6 of the npm package.
c4f847f Drop Proxy-Authorization across hosts.
8526b4a Use GitHub for disclosure.
b1677ce Release version 1.15.5 of the npm package.
d8914f7 Preserve fragment in responseUrl.
See full diff in compare view

Updates ip from 1.1.8 to 1.1.9

Commits

1ecbf2f 1.1.9
6a3ada9 lib: fixed CVE-2023-42282 and added unit test
See full diff in compare view

Updates ip from 2.0.0 to 2.0.1

Commits

1ecbf2f 1.1.9
6a3ada9 lib: fixed CVE-2023-42282 and added unit test
See full diff in compare view

Updates wrangler from 3.15.0 to 3.19.0

Release notes

Sourced from wrangler's releases.

wrangler@3.19.0

Minor Changes

#4547 86c81ff0 Thanks @mrbbot! - fix: listen on IPv4 loopback only by default on Windows

Due to a known issue, workerd will only listen on the IPv4 loopback address 127.0.0.1 when it's asked to listen on localhost. On Node.js > 17, localhost will resolve to the IPv6 loopback address, meaning requests to workerd would fail. This change switches to using the IPv4 loopback address throughout Wrangler on Windows, while workerd#1408 gets fixed.

#4535 29df8e17 Thanks @mrbbot! - Reintroduces some internal refactorings of wrangler dev servers (including wrangler dev, wrangler dev --remote, and unstable_dev()).

These changes were released in 3.13.0 and reverted in 3.13.1 -- we believe the changes are now more stable and ready for release again.

There are no changes required for developers to opt-in. Improvements include:

fewer 'address in use' errors upon reloads

upon config/source file changes, requests are buffered to guarantee the response is from the new version of the Worker

Patch Changes

#4521 6c5bc704 Thanks @zebp! - fix: init from dash specifying explicit usage model in wrangler.toml for standard users

#4550 63708a94 Thanks @mrbbot! - fix: validate Host and Orgin headers where appropriate

Host and Origin headers are now checked when connecting to the inspector and Miniflare's magic proxy. If these don't match what's expected, the request will fail.

Updated dependencies [71fb0b86, 63708a94]:

miniflare@3.20231030.3

wrangler@3.18.0

Minor Changes

#4532 311ffbd5 Thanks @mrbbot! - fix: change wrangler (pages) dev to listen on localhost by default

Previously, Wrangler listened on all interfaces (*) by default. This change switches wrangler (pages) dev to just listen on local interfaces. Whilst this is technically a breaking change, we've decided the security benefits outweigh the potential disruption caused. If you need to access your dev server from another device on your network, you can use wrangler (pages) dev --ip * to restore the previous behaviour.

Patch Changes

Updated dependencies [1b348782]:

miniflare@3.20231030.2

wrangler@3.17.1

Patch Changes

#4474 382ef8f5 Thanks @mrbbot! - fix: open browser to correct url pressing b in --remote mode

This change ensures Wrangler doesn't try to open http://* when * is used as the dev server's hostname. Instead, Wrangler will now open http://127.0.0.1.

#4488 3bd57238 Thanks @RamIdeas! - Changes the default directory for log files to workaround frameworks that are watching the entire .wrangler directory in the project root for changes

... (truncated)

Changelog

Sourced from wrangler's changelog.

3.19.0

Minor Changes

#4547 86c81ff0 Thanks @mrbbot! - fix: listen on IPv4 loopback only by default on Windows

Due to a known issue, workerd will only listen on the IPv4 loopback address 127.0.0.1 when it's asked to listen on localhost. On Node.js > 17, localhost will resolve to the IPv6 loopback address, meaning requests to workerd would fail. This change switches to using the IPv4 loopback address throughout Wrangler on Windows, while workerd#1408 gets fixed.

#4535 29df8e17 Thanks @mrbbot! - Reintroduces some internal refactorings of wrangler dev servers (including wrangler dev, wrangler dev --remote, and unstable_dev()).

These changes were released in 3.13.0 and reverted in 3.13.1 -- we believe the changes are now more stable and ready for release again.

There are no changes required for developers to opt-in. Improvements include:

fewer 'address in use' errors upon reloads

upon config/source file changes, requests are buffered to guarantee the response is from the new version of the Worker

Patch Changes

#4521 6c5bc704 Thanks @zebp! - fix: init from dash specifying explicit usage model in wrangler.toml for standard users

#4550 63708a94 Thanks @mrbbot! - fix: validate Host and Orgin headers where appropriate

Host and Origin headers are now checked when connecting to the inspector and Miniflare's magic proxy. If these don't match what's expected, the request will fail.

Updated dependencies [71fb0b86, 63708a94]:

miniflare@3.20231030.3

3.18.0

Minor Changes

#4532 311ffbd5 Thanks @mrbbot! - fix: change wrangler (pages) dev to listen on localhost by default

Previously, Wrangler listened on all interfaces (*) by default. This change switches wrangler (pages) dev to just listen on local interfaces. Whilst this is technically a breaking change, we've decided the security benefits outweigh the potential disruption caused. If you need to access your dev server from another device on your network, you can use wrangler (pages) dev --ip * to restore the previous behaviour.

Patch Changes

Updated dependencies [1b348782]:

miniflare@3.20231030.2

3.17.1

Patch Changes

#4474 382ef8f5 Thanks @mrbbot! - fix: open browser to correct url pressing b in --remote mode

This change ensures Wrangler doesn't try to open http://* when * is used as the dev server's hostname. Instead, Wrangler will now open http://127.0.0.1.

#4488 3bd57238 Thanks @RamIdeas! - Changes the default directory for log files to workaround frameworks that are watching the entire .wrangler directory in the project root for changes

... (truncated)

Commits

5e67ea1 Version Packages (#4536)
63708a9 fix: validate Host/Origin headers in magic proxy and `InspectorProxyWorke...
86c81ff fix: listen on IPv4 loopback only by default on Windows (#4547)
6c5bc70 fix: init from dash using explicit usage model for standard accounts (#4521)
29df8e1 Revert "Revert "startDevWorker - Milestone 1 (#4497)" (#4531)" (#4535)
97727de Version Packages (#4495)
311ffbd [wrangler] fix: change wrangler (pages) dev to listen on localhost by def...
310281a Revert "startDevWorker - Milestone 1 (#4497)" (#4531)
01eda78 startDevWorker - Milestone 1 (#4497)
961c8ea remove unused npx-import dependency (#4477)
Additional commits viewable in compare view

Updates miniflare from 3.20231025.0 to 3.20231030.3

Release notes

Sourced from miniflare's releases.

miniflare@3.20231030.3

Patch Changes

#4466 71fb0b86 Thanks @mrbbot! - fix: ensure unused KV and Cache blobs cleaned up

When storing data in KV, Cache and R2, Miniflare uses both an SQL database and separate blob store. When writing a key/value pair, a blob is created for the new value and the old blob for the previous value (if any) is deleted. A few months ago, we introduced a change that prevented old blobs being deleted for KV and Cache. R2 was unaffected. This shouldn't have caused any problems, but could lead to persistence directories growing unnecessarily as they filled up with garbage blobs. This change ensures garbage blobs are deleted.

Note existing garbage will not be cleaned up. If you'd like to do this, download this Node script (https://gist.github.com/mrbbot/68787e19dcde511bd99aa94997b39076). If you're using the default Wrangler persistence directory, run node gc.mjs kv .wrangler/state/v3/kv <namespace_id_1> <namespace_id_2> ... and node gc.mjs cache .wrangler/state/v3/cache default named:<cache_name_1> named:<cache_name_2> ... with each of your KV namespace IDs (not binding names) and named caches.

#4550 63708a94 Thanks @mrbbot! - fix: validate Host and Orgin headers where appropriate

Host and Origin headers are now checked when connecting to the inspector and Miniflare's magic proxy. If these don't match what's expected, the request will fail.

miniflare@3.20231030.2

Patch Changes

#4505 1b348782 Thanks @mrbbot! - fix: remove __STATIC_CONTENT_MANIFEST from module worker env

When using Workers Sites with a module worker, the asset manifest must be imported from the __STATIC_CONTENT_MANIFEST virtual module. Miniflare provided this module, but also erroneously added __STATIC_CONTENT_MANIFEST to the env object too. Whilst this didn't break anything locally, it could cause users to develop Workers that ran locally, but not when deployed. This change ensures env doesn't contain __STATIC_CONTENT_MANIFEST.

Changelog

Sourced from miniflare's changelog.

3.20231030.3

Patch Changes

#4466 71fb0b86 Thanks @mrbbot! - fix: ensure unused KV and Cache blobs cleaned up

When storing data in KV, Cache and R2, Miniflare uses both an SQL database and separate blob store. When writing a key/value pair, a blob is created for the new value and the old blob for the previous value (if any) is deleted. A few months ago, we introduced a change that prevented old blobs being deleted for KV and Cache. R2 was unaffected. This shouldn't have caused any problems, but could lead to persistence directories growing unnecessarily as they filled up with garbage blobs. This change ensures garbage blobs are deleted.

Note existing garbage will not be cleaned up. If you'd like to do this, download this Node script (https://gist.github.com/mrbbot/68787e19dcde511bd99aa94997b39076). If you're using the default Wrangler persistence directory, run node gc.mjs kv .wrangler/state/v3/kv <namespace_id_1> <namespace_id_2> ... and node gc.mjs cache .wrangler/state/v3/cache default named:<cache_name_1> named:<cache_name_2> ... with each of your KV namespace IDs (not binding names) and named caches.

#4550 63708a94 Thanks @mrbbot! - fix: validate Host and Orgin headers where appropriate

Host and Origin headers are now checked when connecting to the inspector and Miniflare's magic proxy. If these don't match what's expected, the request will fail.

3.20231030.2

Patch Changes

#4505 1b348782 Thanks @mrbbot! - fix: remove __STATIC_CONTENT_MANIFEST from module worker env

When using Workers Sites with a module worker, the asset manifest must be imported from the __STATIC_CONTENT_MANIFEST virtual module. Miniflare provided this module, but also erroneously added __STATIC_CONTENT_MANIFEST to the env object too. Whilst this didn't break anything locally, it could cause users to develop Workers that ran locally, but not when deployed. This change ensures env doesn't contain __STATIC_CONTENT_MANIFEST.

3.20231030.1

Minor Changes

#4348 be2b9cf5 Thanks @mrbbot! - feat: add support for wrapped bindings

This change adds a new wrappedBindings worker option for configuring workerd's wrapped bindings. These allow custom bindings to be written as JavaScript functions accepting an env parameter of "inner bindings" and returning the value to bind. For more details, refer to the API docs.

#4341 d9908743 Thanks @RamIdeas! - Added a handleRuntimeStdio which enables wrangler (or any other direct use of Miniflare) to handle the stdout and stderr streams from the workerd child process. By default, if this option is not provided, the previous behaviour is retained which splits the streams into lines and calls console.log/console.error.

3.20231030.0

Minor Changes

#4324 16cc2e92 Thanks @penalosa! - Update to latest workerd@1.20231030.0

#4322 8a25b7fb Thanks @dario-piotrowicz! - add unsafeEvalBinding option

Add option to leverage the newly introduced UnsafeEval workerd binding API, such API is used to evaluate javascript code at runtime via the provided eval and newFunction methods.

The API, for security reasons (as per the workers docs), is not to be use in production but it is intended for local purposes only such as local testing.

To use the binding you need to specify a string value for the unsafeEvalBinding, such will be the name of the UnsafeEval bindings that will be made available in the workerd runtime.

... (truncated)

Commits

5e67ea1 Version Packages (#4536)
63708a9 fix: validate Host/Origin headers in magic proxy and `InspectorProxyWorke...
71fb0b8 fix: ensure unused KV and Cache blobs cleaned up (#4466)
97727de Version Packages (#4495)
311ffbd [wrangler] fix: change wrangler (pages) dev to listen on localhost by def...
1b34878 fix: remove __STATIC_CONTENT_MANIFEST from module worker env (#4505)
f728503 Version Packages (#4463)
be2b9cf feat: add support for wrapped bindings (#4348)
d990874 Intercept workerd logs + write all debug logs to a hidden file (#4341)
08615aa Version Packages (#4291)
Additional commits viewable in compare view

Updates undici from 5.27.0 to 5.28.3

Release notes

Sourced from undici's releases.

v5.28.3

⚠️ Security Release ⚠️

Fixes:

CVE-2024-24758 Proxy-Authorization header not cleared on cross-origin redirect in fetch

Full Changelog: nodejs/undici@v5.28.2...v5.28.3

v5.28.2

What's Changed

fix: remove optional chainning for compatible with Nodejs12 and below by @bugb in nodejs/undici#2470

fix: remove node: prefix by @tsctx in nodejs/undici#2471

perf: avoid Headers initialization by @tsctx in nodejs/undici#2468

fix: handle SharedArrayBuffer correctly by @tsctx in nodejs/undici#2466

fix: Add null type to signal in RequestInit by @gebsh in nodejs/undici#2455

fix: correctly handle data URL with hashes. by @tsctx in nodejs/undici#2475

fix: check response for timinginfo allow flag by @ToshB in nodejs/undici#2477

Make call to onBodySent conditional in RetryHandler by @MzUgM in nodejs/undici#2478

refactor: better integrity check by @tsctx in nodejs/undici#2462

fix: Added support for inline URL username:password proxy auth by @matt-way in nodejs/undici#2473

build(deps-dev): bump jsdom from 22.1.0 to 23.0.0 by @dependabot in nodejs/undici#2472

build(deps-dev): bump sinon from 16.1.3 to 17.0.1 by @dependabot in nodejs/undici#2405

build(deps): bump ossf/scorecard-action from 2.2.0 to 2.3.1 by @dependabot in nodejs/undici#2396

build(deps): bump actions/setup-node from 3.8.1 to 4.0.0 by @dependabot in nodejs/undici#2395

build(deps): bump step-security/harden-runner from 2.5.0 to 2.6.0 by @dependabot in nodejs/undici#2392

build(deps-dev): bump formdata-node from 4.4.1 to 6.0.3 by @dependabot in nodejs/undici#2389

build(deps): bump actions/upload-artifact from 3.1.2 to 3.1.3 by @dependabot in nodejs/undici#2302

New Contributors

@bugb made their first contribution in nodejs/undici#2470

@gebsh made their first contribution in nodejs/undici#2455

@ToshB made their first contribution in nodejs/undici#2477

@MzUgM made their first contribution in nodejs/undici#2478

@matt-way made their first contribution in nodejs/undici#2473

Full Changelog: nodejs/undici@v5.28.1...v5.28.2

v5.28.1

What's Changed

perf: Improve normalizeMethod by @tsctx in nodejs/undici#2456

fix: dispatch error handling by @ronag in nodejs/undici#2459

perf(request): optimize if headers are given by @tsctx in nodejs/undici#2454

Full Changelog: nodejs/undici@v5.28.0...v5.28.1

v5.28.0

What's Changed

fix(parseHeaders): util.parseHeaders handle correctly array of buffer… by @mdoria12 in nodejs/undici#2398

... (truncated)

Commits

e71cb4c Bumped v5.28.3
20c65b8 Fix tests for Node.js v20.11.0 (#2618)
8ec52cd Fix tests for Node.js v21 (#2609)
d3aa574 Merge pull request from GHSA-3787-6prv-h9w3
9a14e5f Bumped v5.28.2
fcdfe87 build(deps): bump actions/upload-artifact from 3.1.2 to 3.1.3 (#2302)
169c157 build(deps-dev): bump formdata-node from 4.4.1 to 6.0.3 (#2389)
9788177 build(deps): bump step-security/harden-runner from 2.5.0 to 2.6.0 (#2392)
1f6d159 build(deps): bump actions/setup-node from 3.8.1 to 4.0.0 (#2395)
a393a86 build(deps): bump ossf/scorecard-action from 2.2.0 to 2.3.1 (#2396)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps the npm_and_yarn group with 4 updates in the / directory: [axios](https://github.com/axios/axios), [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite), [follow-redirects](https://github.com/follow-redirects/follow-redirects) and [ip](https://github.com/indutny/node-ip). Bumps the npm_and_yarn group with 2 updates in the /cf-tsdocs-worker directory: [ip](https://github.com/indutny/node-ip) and [wrangler](https://github.com/cloudflare/workers-sdk/tree/HEAD/packages/wrangler). Updates `axios` from 1.6.5 to 1.6.6 - [Release notes](https://github.com/axios/axios/releases) - [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md) - [Commits](axios/axios@v1.6.5...v1.6.6) Updates `vite` from 5.0.10 to 5.0.12 - [Release notes](https://github.com/vitejs/vite/releases) - [Changelog](https://github.com/vitejs/vite/blob/v5.0.12/packages/vite/CHANGELOG.md) - [Commits](https://github.com/vitejs/vite/commits/v5.0.12/packages/vite) Updates `follow-redirects` from 1.15.4 to 1.15.6 - [Release notes](https://github.com/follow-redirects/follow-redirects/releases) - [Commits](follow-redirects/follow-redirects@v1.15.4...v1.15.6) Updates `ip` from 1.1.8 to 1.1.9 - [Commits](indutny/node-ip@v1.1.8...v1.1.9) Updates `ip` from 2.0.0 to 2.0.1 - [Commits](indutny/node-ip@v1.1.8...v1.1.9) Updates `wrangler` from 3.15.0 to 3.19.0 - [Release notes](https://github.com/cloudflare/workers-sdk/releases) - [Changelog](https://github.com/cloudflare/workers-sdk/blob/main/packages/wrangler/CHANGELOG.md) - [Commits](https://github.com/cloudflare/workers-sdk/commits/wrangler@3.19.0/packages/wrangler) Updates `miniflare` from 3.20231025.0 to 3.20231030.3 - [Release notes](https://github.com/cloudflare/workers-sdk/releases) - [Changelog](https://github.com/cloudflare/workers-sdk/blob/main/packages/miniflare/CHANGELOG.md) - [Commits](https://github.com/cloudflare/workers-sdk/commits/miniflare@3.20231030.3/packages/miniflare) Updates `undici` from 5.27.0 to 5.28.3 - [Release notes](https://github.com/nodejs/undici/releases) - [Commits](nodejs/undici@v5.27.0...v5.28.3) --- updated-dependencies: - dependency-name: axios dependency-type: direct:production dependency-group: npm_and_yarn-security-group - dependency-name: vite dependency-type: direct:production dependency-group: npm_and_yarn-security-group - dependency-name: follow-redirects dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: ip dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: ip dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: wrangler dependency-type: direct:development dependency-group: npm_and_yarn-security-group - dependency-name: miniflare dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: undici dependency-type: indirect dependency-group: npm_and_yarn-security-group ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot · 2024-04-03T17:01:30Z

Superseded by #54.

dependabot bot added the dependencies Pull requests that update a dependency file label Mar 16, 2024

dependabot bot mentioned this pull request Mar 16, 2024

Bump the npm_and_yarn group across 2 directories with 6 updates #51

Closed

dependabot bot closed this Apr 3, 2024

dependabot bot deleted the dependabot/npm_and_yarn/npm_and_yarn-security-group-9b68ab88d9 branch April 3, 2024 17:01

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the npm_and_yarn group across 2 directories with 7 updates #53

Bump the npm_and_yarn group across 2 directories with 7 updates #53

dependabot bot commented on behalf of github Mar 16, 2024

dependabot bot commented on behalf of github Apr 3, 2024

Bump the npm_and_yarn group across 2 directories with 7 updates #53

Bump the npm_and_yarn group across 2 directories with 7 updates #53

Conversation

dependabot bot commented on behalf of github Mar 16, 2024

Release v1.6.6

Release notes:

Bug Fixes

Contributors to this release

1.6.6 (2024-01-24)

Bug Fixes

Contributors to this release

5.0.12 (2024-01-19)

5.0.11 (2024-01-05)

wrangler@3.19.0

Minor Changes

Patch Changes

wrangler@3.18.0

Minor Changes

Patch Changes

wrangler@3.17.1

Patch Changes

3.19.0

Minor Changes

Patch Changes

3.18.0

Minor Changes

Patch Changes

3.17.1

Patch Changes

miniflare@3.20231030.3

Patch Changes

miniflare@3.20231030.2

Patch Changes

3.20231030.3

Patch Changes

3.20231030.2

Patch Changes

3.20231030.1

Minor Changes

3.20231030.0

Minor Changes

v5.28.3

⚠️ Security Release ⚠️

v5.28.2

What's Changed

New Contributors

v5.28.1

What's Changed

v5.28.0

What's Changed

dependabot bot commented on behalf of github Apr 3, 2024