Skip to content

Bump the npm-minor-patch group across 1 directory with 3 updates#11

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/npm-minor-patch-56863e82fc
Open

Bump the npm-minor-patch group across 1 directory with 3 updates#11
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/npm-minor-patch-56863e82fc

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 1, 2026
edited
Loading

Bumps the npm-minor-patch group with 3 updates in the / directory: vitest, wrangler and @rollup/rollup-linux-x64-gnu.

Updates vitest from 4.1.0 to 4.1.2

Release notes

Sourced from vitest's releases.

v4.1.2

This release bumps Vitest's flatted version and removes version pinning to resolve flatted's CVE related issues (vitest-dev/vitest#9975).

   🐞 Bug Fixes

    View changes on GitHub

v4.1.1

   🚀 Features

   🐞 Bug Fixes

    View changes on GitHub
Commits
  • fc6f482 chore: release v4.1.2
  • 6f97b55 feat: disable colors if agent is detected (#9851)
  • b3c992c fix(coverage): correct coverageConfigDefaults values and types (#9940)
  • 7c06598 fix: ensure sequential mock/unmock resolution (#9830)
  • f54abad chore: add typo-checker skill and fix typos (#9963)
  • 7aa9377 fix: don't resolve setupFiles from parent directory (#9960)
  • 1f2d318 chore: release v4.1.1
  • ebfde79 refactor: rename matchesTagsFilter to matchesTags (#9956)
  • 5611500 feat(experimental): introduce experimental.vcsProvider (#9928)
  • eec53d9 feat(experimental): expose matchesTagsFilter to test if the current filter ...
  • Additional commits viewable in compare view

Updates wrangler from 4.73.0 to 4.79.0

Release notes

Sourced from wrangler's releases.

wrangler@4.79.0

Minor Changes

  • #12868 ffbc268 Thanks @​danielgek! - Add wrangler ai-search command namespace for managing Cloudflare AI Search instances

    Introduces a CLI surface for the Cloudflare AI Search API (open beta), including:

    • Instance management: ai-search list, create, get, update, delete
    • Semantic search: ai-search search with repeatable --filter key=value flags
    • Instance stats: ai-search stats

    The create command uses an interactive wizard to guide configuration. All commands require authentication via wrangler login.

  • #13097 cd0e971 Thanks @​pombosilva! - Add --local flag to Workflows commands for interacting with local dev

    All Workflows CLI commands now support a --local flag that targets a running wrangler dev session instead of the Cloudflare production API. This uses the /cdn-cgi/explorer/api/workflows endpoints served by the local dev server.

    wrangler workflows list --local
wrangler workflows trigger my-workflow '{"key":"value"}' --local
wrangler workflows instances describe my-workflow latest --local
wrangler workflows instances pause my-workflow <id> --local --port 9000

    By default, commands continue to hit remote (production). Pass --local to opt in, and optionally --port to specify a custom dev server port (defaults to 8787).

Patch Changes

  • #13050 ed20a9b Thanks @​dario-piotrowicz! - Add minimum and maximum version checks for frameworks during auto-configuration

    When Wrangler automatically configures a project, it now validates the installed version of the detected framework before proceeding:

    • If the version is below the minimum known-good version, the command exits with an error asking the user to upgrade the framework.
    • If the version is above the maximum known major version, a warning is emitted to let the user know the framework version has not been officially tested with this feature, and the command continues.

  • #13111 f214760 Thanks @​dependabot! - Update dependencies of "miniflare", "wrangler"

    The following dependency versions have been updated:

    Dependency From To
    workerd 1.20260317.1 1.20260329.1

  • #13079 746858a Thanks @​penalosa! - Fix getPlatformProxy and unstable_getMiniflareWorkerOptions crashing when assets is configured without a directory

    getPlatformProxy and unstable_getMiniflareWorkerOptions now skip asset setup when the config has an assets block but no directory — instead of throwing "missing required directory property". This happens when an external tool like @cloudflare/vite-plugin handles asset serving independently.

  • #13112 9aad27f Thanks @​dario-piotrowicz! - Fix autoconfig failing on waku projects that use hono

    Waku has a tight integration with Hono, causing both to be detected simultaneously and triggering a "multiple frameworks found" error. Hono is now filtered out when Waku is also detected.

  • #13113 1fc5518 Thanks @​dario-piotrowicz! - Skip lock file warning for static projects during autoconfig

... (truncated)

Commits
  • d927ee3 Version Packages (#13096)
  • 958afe7 Remove some of the no-restricted-imports eslint disabling comments (#13140)
  • f214760 Bump the workerd-and-workers-types group with 2 updates (#13111)
  • ed20a9b Add minimum and maximum version checks for frameworks during auto-configurati...
  • b539dc7 [wrangler] skip fetching all deployable versions when user already specified ...
  • a532eea refactor(miniflare): use CorePaths for local explorer routes (#13090)
  • 2565b1d Improve error message when the assets directory path points to a file instead...
  • e200179 Deduplicate codemod logic in C3 and autoconfig by moving it to its own `@clou...
  • cd0e971 [wrangler] Add Workflows local commands (#13097)
  • ffbc268 [wrangler] Add ai search commands (#12868)
  • Additional commits viewable in compare view

Updates @rollup/rollup-linux-x64-gnu from 4.59.0 to 4.60.1

Release notes

Sourced from @​rollup/rollup-linux-x64-gnu's releases.

v4.60.1

4.60.1

2026-03-30

Bug Fixes

  • Resolve a situation where side effect imports could be dropped due to a caching issue (#6286)

Pull Requests

v4.60.0

4.60.0

2026-03-22

Features

  • Support source phase imports as long as they are external (#6279)

Pull Requests

v4.59.1

4.59.1

2026-03-21

Bug Fixes

  • Fix a crash when using lazy dynamic imports with moduleSideEffects:false (#6306)

Pull Requests

... (truncated)

Changelog

Sourced from @​rollup/rollup-linux-x64-gnu's changelog.

4.60.1

2026-03-30

Bug Fixes

  • Resolve a situation where side effect imports could be dropped due to a caching issue (#6286)

Pull Requests

4.60.0

2026-03-22

Features

  • Support source phase imports as long as they are external (#6279)

Pull Requests

4.59.1

2026-03-21

Bug Fixes

  • Fix a crash when using lazy dynamic imports with moduleSideEffects:false (#6306)

Pull Requests

... (truncated)

Commits

@dependabot dependabot Bot added the dependencies Dependency updates and maintenance label Apr 1, 2026
@sampo-s-bot
Copy link
Copy Markdown

sampo-s-bot Bot commented Apr 1, 2026
edited
Loading

⚠️ No changeset detected

No new .sampo/changesets/*.md files were detected in this PR. To add one:

  • run sampo add
  • follow the prompts to pick the affected packages and describe the change
  • commit the generated file to this pull request, and it will be detected automatically

If this PR isn't supposed to introduce any changes (e.g., documentation updates), you can ignore this message.

@github-actions github-actions Bot added the automerge Dependabot PRs eligible for automatic merge after green CI label Apr 1, 2026
@dependabot dependabot Bot changed the title Bump the npm-minor-patch group with 3 updates Bump the npm-minor-patch group across 1 directory with 3 updates Apr 1, 2026
@dependabot
Bump the npm-minor-patch group with 3 updates
34286a4 
Bumps the npm-minor-patch group with 3 updates: [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest), [wrangler](https://github.com/cloudflare/workers-sdk/tree/HEAD/packages/wrangler) and [@rollup/rollup-linux-x64-gnu](https://github.com/rollup/rollup).


Updates `vitest` from 4.1.0 to 4.1.2
- [Release notes](https://github.com/vitest-dev/vitest/releases)
- [Commits](https://github.com/vitest-dev/vitest/commits/v4.1.2/packages/vitest)

Updates `wrangler` from 4.73.0 to 4.79.0
- [Release notes](https://github.com/cloudflare/workers-sdk/releases)
- [Commits](https://github.com/cloudflare/workers-sdk/commits/wrangler@4.79.0/packages/wrangler)

Updates `@rollup/rollup-linux-x64-gnu` from 4.59.0 to 4.60.1
- [Release notes](https://github.com/rollup/rollup/releases)
- [Changelog](https://github.com/rollup/rollup/blob/master/CHANGELOG.md)
- [Commits](rollup/rollup@v4.59.0...v4.60.1)

---
updated-dependencies:
- dependency-name: vitest
  dependency-version: 4.1.2
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: npm-minor-patch
- dependency-name: wrangler
  dependency-version: 4.79.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm-minor-patch
- dependency-name: "@rollup/rollup-linux-x64-gnu"
  dependency-version: 4.60.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: npm-minor-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/npm-minor-patch-56863e82fc branch from 189f718 to 34286a4 Compare April 1, 2026 01:19
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

automerge Dependabot PRs eligible for automatic merge after green CI dependencies Dependency updates and maintenance

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants