Skip to content

Update dependency wrangler to v4.72.0#71

Merged
admdly merged 1 commit intomainfrom
renovate/wrangler-4.x
Mar 16, 2026
Merged

Update dependency wrangler to v4.72.0#71
admdly merged 1 commit intomainfrom
renovate/wrangler-4.x

Conversation

@renovate
Copy link
Contributor

@renovate renovate bot commented Mar 16, 2026

This PR contains the following updates:

Package Change Age Confidence
wrangler (source) 4.71.04.72.0 age confidence

Release Notes

cloudflare/workers-sdk (wrangler)

v4.72.0

Compare Source

Minor Changes

  • #​12746 211d75d Thanks @​NuroDev! - Add support for inheritable bindings in type generation

    When using wrangler types with multiple environments, bindings from inheritable config properties (like assets) are now correctly inherited from the top-level config in all named environments. Previously, if you defined assets.binding at the top level with named environments, the binding would be marked as optional in the generated Env type because the type generation didn't account for inheritance.

    Example:

    {
	"assets": {
		"binding": "ASSETS",
		"directory": "./public"
	},
	"env": {
		"staging": {},
		"production": {}
	}
}

    Before this change, ASSETS would be typed as ASSETS?: Fetcher (optional). Now, ASSETS is correctly typed as ASSETS: Fetcher (required). This fix currently applies to the assets binding, with an extensible mechanism to support additional inheritable bindings in the future.

  • #​12826 de65c58 Thanks @​gabivlj! - Enable container egress interception in local dev without the experimental compatibility flag

    Container local development now always prepares the egress interceptor sidecar image needed for interceptOutboundHttp(). This makes container-to-Worker interception available by default in Wrangler, Miniflare, and the Cloudflare Vite plugin.

Patch Changes

  • #​12790 5451a7f Thanks @​petebacondarwin! - Bump node-forge to ^1.3.2 to address security vulnerabilities

    node-forge had ASN.1 unbounded recursion, OID integer truncation, and ASN.1 validator desynchronization vulnerabilities. This is a bundled dependency used for local HTTPS certificate handling.

  • #​12795 82cc2a8 Thanks @​dependabot! - Update dependencies of "miniflare", "wrangler"

    The following dependency versions have been updated:

    Dependency From To
    workerd 1.20260301.1 1.20260306.1

  • #​12811 3c67c2a Thanks @​dependabot! - Update dependencies of "miniflare", "wrangler"

    The following dependency versions have been updated:

    Dependency From To
    workerd 1.20260306.1 1.20260307.1

  • #​12827 d645594 Thanks @​dependabot! - Update dependencies of "miniflare", "wrangler"

    The following dependency versions have been updated:

    Dependency From To
    workerd 1.20260307.1 1.20260310.1

  • #​12808 6ed249b Thanks @​MaxwellCalkin! - Fix wrangler d1 execute --json returning "null" (string) instead of null (JSON null) for SQL NULL values

    When using wrangler d1 execute --json with local execution, SQL NULL values were incorrectly serialized as the string "null" instead of JSON null. This produced invalid JSON output that violated RFC 4627. The fix removes the explicit null-to-string conversion so NULL values are preserved as proper JSON null in the output.

  • #​12824 9f93b54 Thanks @​jamesopstad! - Strip query strings from module names before writing to disk

    When bundling modules with query string suffixes (e.g. .wasm?module), the ? character was included in the output filename. Since ? is not a valid filename character on Windows, this caused an ENOENT error during wrangler dev. This was particularly visible when using Prisma Client with the D1 adapter, which imports .wasm?module files.

    The fix strips query strings from module names before writing them to disk, while preserving correct module resolution.

  • #​12771 b8c33f5 Thanks @​penalosa! - Make remote dev exchange_url optional

    The edge-preview API's exchange_url is now treated as optional. When unavailable or when the exchange fails, the initial token from the API response is used directly. The prewarm step and inspector_websocket have been removed from the remote dev flow in favour of tail_url for live logs.

  • Updated dependencies [5451a7f, 82cc2a8, 3c67c2a, d645594, de65c58, cb14820, a7c87d1, e4d9510]:

    • miniflare@​4.20260310.0

Configuration

📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@cloudflare-workers-and-pages
Copy link

cloudflare-workers-and-pages bot commented Mar 16, 2026
edited
Loading

Deploying with  Cloudflare Workers  Cloudflare Workers

The latest updates on your project. Learn more about integrating Git with Workers.

Status Name Latest Commit Preview URL Updated (UTC)
✅ Deployment successful!
View logs		 api-worker 81e05dc Commit Preview URL

Branch Preview URL		 Mar 16 2026, 09:24 AM

@renovate renovate bot force-pushed the renovate/wrangler-4.x branch 2 times, most recently from 9495883 to 542d64c Compare March 16, 2026 05:46
@renovate renovate bot force-pushed the renovate/wrangler-4.x branch from 542d64c to 81e05dc Compare March 16, 2026 09:23
@admdly admdly merged commit d7664c0 into main Mar 16, 2026
8 checks passed
@admdly admdly deleted the renovate/wrangler-4.x branch March 16, 2026 10:53
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@admdly