fix(deps): update all non-major dependencies

[renovate]

Note

Mend has cancelled the proposed renaming of the Renovate GitHub app being renamed to mend[bot].

This notice will be removed on 2025-10-07.

---

This PR contains the following updates:

Package	Change	Age	Confidence
@cloudflare/vite-plugin (source)	^1.13.7 -> ^1.13.10
@eslint/js (source)	^9.36.0 -> ^9.37.0
@remix-run/node-fetch-server (source)	^0.9.0 -> ^0.10.0
@tailwindcss/vite (source)	^4.1.13 -> ^4.1.14
@types/node (source)	^22.18.7 -> ^22.18.8
eslint (source)	^9.36.0 -> ^9.37.0
pnpm (source)	10.17.1 -> 10.18.0
tailwindcss (source)	^4.1.13 -> ^4.1.14
tsdown	^0.15.5 -> ^0.15.6
typescript (source)	^5.9.2 -> ^5.9.3
vite (source)	^7.1.14 -> ^7.1.15
vite (source)	^7.1.7 -> ^7.1.9
wrangler (source)	^4.40.2 -> ^4.42.0

---

Release Notes

cloudflare/workers-sdk (@​cloudflare/vite-plugin)

v1.13.10

Compare Source

Patch Changes

• #​10825 4c509ec Thanks @​penalosa! - Support containers defined for Vite auxiliary Workers

• Updated dependencies [103fbf0, 2594130, 59d5911]:

  • wrangler@​4.42.0
  • @​cloudflare/unenv-preset@​2.7.6

v1.13.9

Compare Source

Patch Changes

• #​10673 bffd2a9 Thanks @​jamesopstad! - Only forward /cdn-cgi/handler/ routes to trigger handlers.

• Updated dependencies [4c06766, 21a0bef, d3aee31, c8d5282, 59e8ef0, 79a6b7d, 7a4d0da, bffd2a9, 62656bd, 886e577, 7f2386e, 8d7f32e, f9d37db, 835d6f7, 79a6b7d]:

  • wrangler@​4.41.0
  • miniflare@​4.20251001.0

v1.13.8

Compare Source

Patch Changes

• #​10593 2ff7e6d Thanks @​BlankParticle! - fix: restore original url before passing request to miniflare in vite dev

• #​10774 ed04ed3 Thanks @​dario-piotrowicz! - fix vite plugin not working when projects are in a path that contains a non-ascii character

• Updated dependencies [ff82d80, 7a6381c, 6ff41a6, 0c208e1, 2432022, d0801b1, 325d22e, 8d07576, 0a554f9, 6244a9e, d09cab3]:

  • wrangler@​4.40.3
  • miniflare@​4.20250927.0
  • @​cloudflare/unenv-preset@​2.7.5

eslint/eslint (@​eslint/js)

v9.37.0

Compare Source

remix-run/remix (@​remix-run/node-fetch-server)

v0.10.0

Compare Source

• Fire close and finish listeners only once (#​10757)

tailwindlabs/tailwindcss (@​tailwindcss/vite)

v4.1.14

Compare Source

Fixed

• Handle ' syntax in ClojureScript when extracting classes (#​18888)
• Handle @variant inside @custom-variant (#​18885)
• Merge suggestions when using @utility (#​18900)
• Ensure that file system watchers created when using the CLI are always cleaned up (#​18905)
• Do not generate grid-column utilities when configuring grid-column-start or grid-column-end (#​18907)
• Do not generate grid-row utilities when configuring grid-row-start or grid-row-end (#​18907)
• Prevent duplicate CSS when overwriting a static utility with a theme key (#​18056)
• Show Lightning CSS warnings (if any) when optimizing/minifying (#​18918)
• Use default export condition for @tailwindcss/vite (#​18948)
• Re-throw errors from PostCSS nodes (#​18373)
• Detect classes in markdown inline directives (#​18967)
• Ensure files with only @theme produce no output when built (#​18979)
• Support Maud templates when extracting classes (#​18988)
• Upgrade: Do not migrate variant = 'outline' during upgrades (#​18922)
• Upgrade: Show version mismatch (if any) when running upgrade tool (#​19028)
• Upgrade: Ensure first class inside className is migrated (#​19031)
• Upgrade: Migrate classes inside *ClassName and *Class attributes (#​19031)

eslint/eslint (eslint)

v9.37.0

Compare Source

pnpm/pnpm (pnpm)

v10.18.0

Compare Source

Minor Changes

• Added network performance monitoring to pnpm by implementing warnings for slow network requests, including both metadata fetches and tarball downloads.

  Added configuration options for warning thresholds: fetchWarnTimeoutMs and fetchMinSpeedKiBps.
  Warning messages are displayed when requests exceed time thresholds or fall below speed minimums

  Related PR: #​10025.

Patch Changes

• Retry filesystem operations on EAGAIN errors #​9959.
• Outdated command respects minimumReleaseAge configuration #​10030.
• Correctly apply the cleanupUnusedCatalogs configuration when removing dependent packages.
• Don't fail with a meaningless error when scriptShell is set to false #​8748.
• pnpm dlx should not fail when minimumReleaseAge is set #​10037.

rolldown/tsdown (tsdown)

v0.15.6

Compare Source

   🐞 Bug Fixes

• watch: Watch relative files  -  by @​sxzz (afeab)

    View changes on GitHub

microsoft/TypeScript (typescript)

v5.9.3

Compare Source

vitejs/rolldown-vite (vite)

v7.1.15

Compare Source

Bug Fixes

• css: improve url escape characters handling (#​20847) (24a61a3)
• deps: update all non-major dependencies (#​20855) (788a183)
• deps: update artichokie to 0.4.2 (#​20864) (e670799)
• dev: skip JS responses for document requests (#​20866) (6bc6c4d)
• glob: fix HMR for array patterns with exclusions (#​20872) (63e040f)
• keep ids for virtual modules as-is (#​20808) (d4eca98)
• oxc: set typescript jsx options (9afe6f6)
• server: drain stdin when not interactive (#​20837) (bb950e9)
• server: improve malformed URL handling in middlewares (#​20830) (d65a983)

Miscellaneous Chores

• deps: update rolldown-related dependencies (#​20854) (4dd06fd)
• update url of create-react-app license (#​20865) (166a178)

vitejs/vite (vite)

v7.1.9

Compare Source

Reverts

• server: drain stdin when not interactive (#​20885) (12d72b0)

v7.1.8

Compare Source

Bug Fixes

• css: improve url escape characters handling (#​20847) (24a61a3)
• deps: update all non-major dependencies (#​20855) (788a183)
• deps: update artichokie to 0.4.2 (#​20864) (e670799)
• dev: skip JS responses for document requests (#​20866) (6bc6c4d)
• glob: fix HMR for array patterns with exclusions (#​20872) (63e040f)
• keep ids for virtual modules as-is (#​20808) (d4eca98)
• server: drain stdin when not interactive (#​20837) (bb950e9)
• server: improve malformed URL handling in middlewares (#​20830) (d65a983)

Documentation

• create-vite: provide deno example (#​20747) (fdb758a)

Miscellaneous Chores

• deps: update rolldown-related dependencies (#​20810) (ea68a88)
• deps: update rolldown-related dependencies (#​20854) (4dd06fd)
• update url of create-react-app license (#​20865) (166a178)

cloudflare/workers-sdk (wrangler)

v4.42.0

Compare Source

Minor Changes

• #​10735 103fbf0 Thanks @​petebacondarwin! - Allow WRANGLER_SEND_ERROR_REPORTS env var to override whether to report Wrangler crashes to Sentry

Patch Changes

• #​10757 59d5911 Thanks @​dario-piotrowicz! - fix console.debug logs not being logged at the info level (as users expect)

• Updated dependencies [2594130]:

  • @​cloudflare/unenv-preset@​2.7.6

v4.41.0

Compare Source

Minor Changes

• #​10507 21a0bef Thanks @​dario-piotrowicz! - Add strict mode for the wrangler deploy command

  Add a new flag: --strict that makes the wrangler deploy command be more strict and not deploy workers when the deployment could be potentially problematic. This "strict mode" currently only affects non-interactive sessions where conflicts with the remote settings for the worker (for example when the worker has been re-deployed via the dashboard) will cause the deployment to fail instead of automatically overriding the remote settings.

• #​10710 7f2386e Thanks @​penalosa! - Add prompt to resource creation flow allowing for newly created resources to be remote.

Patch Changes

• #​10822 4c06766 Thanks @​edmundhung! - fix: skip banner when using --json flag in wrangler pages deployment commands

• #​10838 d3aee31 Thanks @​edmundhung! - fix: skip banner when using --json flag in wrangler queues subscription commands

• #​10829 59e8ef0 Thanks @​edmundhung! - fix: skip banner when using --json flag in wrangler pipelines commands

• #​10764 79a6b7d Thanks @​emily-shen! - containers: default max_instances to 20 instead of 1.

• #​10844 7a4d0da Thanks @​mikenomitch! - Adds new Container instance types, and rename dev to lite and standard to standard-1. The new instance_types are now:

  Instance Type	vCPU	Memory	Disk
  lite (previously dev)	1/16	256 MiB	2 GB
  basic	1/4	1 GiB	4 GB
  standard-1 (previously standard)	1/2	4 GiB	8 GB
  standard-2	1	6 GiB	12 GB
  standard-3	2	8 GiB	16 GB
  standard-4	4	12 GiB	20 GB

• #​10634 62656bd Thanks @​emily-shen! - fix: error if the container image uri has an account id that doesn't match the current account

• #​10761 886e577 Thanks @​petebacondarwin! - switch zone route warning to an info message

• #​10734 8d7f32e Thanks @​penalosa! - Improve formatting of logged errors in some cases

• #​10832 f9d37db Thanks @​petebacondarwin! - retry subdomain requests to be more resilient to flakes

• #​10770 835d6f7 Thanks @​danielrs! - Enabling or disabling workers_dev is often an indication that
  the user is also trying to enable or disable preview_urls. Warn the
  user when these enter mixed state.

• #​10764 79a6b7d Thanks @​emily-shen! - fix: respect the log level set by wrangler when logging using @​cloudflare/cli

• Updated dependencies [c8d5282, bffd2a9]:

  • miniflare@​4.20251001.0

v4.40.3

Compare Source

Patch Changes

• #​10602 ff82d80 Thanks @​tukiminya! - fix: update Secrets Store command status from alpha to open-beta

• #​10623 7a6381c Thanks @​IRCody! - Handle more cases for correctly resolving the full uri for an image when using containers push.

• #​10779 325d22e Thanks @​hoodmane! - Add fallthrough: true for python_modules data rule

• #​10112 8d07576 Thanks @​devin-ai-integration! - fix: allow Workflow bindings when calling getPlatformProxy()

  Workflow bindings are not supported in practice when using getPlatformProxy().
  But their existence in a Wrangler config file should not prevent other bindings from working.
  Previously, calling getPlatformProxy() would crash if there were any Workflow bindings defined.
  Now, instead, you get a warning telling you that these bindings are not available.

• #​10769 0a554f9 Thanks @​penalosa! - Mark more errors as UserError to disable Sentry reporting

• #​10679 6244a9e Thanks @​KianNH! - Fix rendering for nested objects in containers list and containers info [ID]

• #​10785 d09cab3 Thanks @​pombosilva! - Workflows names and instance IDs are now properly validated with production limits.

• Updated dependencies [6ff41a6, 0c208e1, 2432022, d0801b1, 0a554f9]:

  • miniflare@​4.20250927.0
  • @​cloudflare/unenv-preset@​2.7.5

---

Configuration

📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.