@cloudflare/wrangler - npm Package Versions

Maintenance

• Add deprecation badge to Cargo.toml - caass, pull/2332

• Add deprecation message on install Wrangler1 - JacobMGEvans, pull/2315 [pull/2314]

  Additional efforts in deprecation of Wrangler 1

• Mark as deprecated and redirect to Workers SDK in README - mrbbot, pull/2348

• Suggest Wrangler 2 if wrangler -V fails - mrbbot, pull/2342

• Update path-slash to v0.2.1 - rhysd, pull/2311

• Update README.md - rozenmd, pull/2306

• Update URLs for Wrangler v1/v2 GitHub repos - penalosa, pull/2347

• Upgrade minimatch - penalosa, pull/2349

  Resolve npm audit for https://github.com/advisories/GHSA-f8q6-p94x-37v3. Closes https://github.com/cloudflare/wrangler-legacy/issues/2326

Maintenance

• chore: remove reporter - JacobMGEvans, pull/2316

  As part of the deprecation efforts, removed reporter as we will no longer be supporting Wrangler 1

Fixes

Update openssl-src - [imhunterand], pull/2302

Bump openssl-src to patch vulnerability

Maintenance

• Add deprecation warning - caass, pull/2273

• chore: add a banner on the readme with a link to wrangler2 - threepointone, pull/2252

  This also autoformatted the README, which is fine.

• Disable dependabot. - lrapoport-cf, pull/2303

  Disable automatic version updates via dependabot.

• Update stale links in README.md - n0vad3v, pull/2253

Fixes

• Improve version checking for --openssl-legacy-provider - EatonZ, pull/2241

  Node v18 came out yesterday and I noticed that the issue I reported last year returned. I quickly identified the problem ... truncated

Fixes

• revert sites expiry stuff - caass, pull/2228

  After discussion with @threepointone and @petebacondarwin we've decided simply to revert back to the old behavior for workers-sites where we delete old assets, rather than marking them for expiration. See #2224 for our reasoning for this change.

Fixes

• hotfix for expiring unused sites assets - caass, pull/2226

closes https://github.com/cloudflare/wrangler-legacy/issues/2224

Fixes

• Expire unused assets on site upload - caass, pull/2221

  Instead of deleting unused assets when uploading a new workers-sites project, mark the old assets for expiration in 5 minutes to prevent 404 errors before the new worker is propgated

• Revert #2096 - [sites] Don't delete unused assets - threepointone, pull/2214

  This reverts the changes made in #2096 that would preserve already uploaded assets with [site], even if they weren't being used. This leads to longer upload times for sites with rapidly changing assets, and a burgeoning kv store

• Updating an invalid URL for "additional instructions" Windows install. - [Scrumpyy], [pull/2208]

  The previous URL specified ( https://developers.cloudflare.com/workers/tooling/wrangler/install/ ) leads to a 404 page that was presumably intended to display the manual install instructions for Windows ( https://developers.cloudflare.com/workers/cli-wrangler/install-update/#manual-install ) [scrumpyy]: https://github.com/Scrumpyy [pull/2208]: https://github.com/cloudflare/wrangler-legacy/pull/2208

Features

• r2 bindings and subcommands - taylorlee, pull/2146

  Added r2 sub-commands to create/delete/list r2 bucket

Fixes

• Check for updates in the foreground, not the background - jyn514, pull/2166

  This avoids creating a new OpenSSL context while the main thread exits the process.

• fix cli help typo - saikatdas0790, pull/2160

• Improve heuristic for --openssl-legacy-provider (#2155) - eagleflo, pull/2172

  Improve the heuristic for detecting whether we need --openssl-legacy-provider added in #2116 by also checking whether the Node.js was actually built against OpenSSL 3 and has that option available.

• Revert "Don't look for background updates unless Wrangler finished successfully" - jyn514, pull/2165

Features

• Add wrangler1 as an alias - TehShrike, pull/2139

  So that when @cloudflare/wrangler is installed along wrangler2, they can each be referenced in npm run scripts.

  See https://github.com/cloudflare/workers-sdk/pull/40

Fixes

• Don't look for background updates unless Wrangler finished successfully - jyn514, pull/2150

  This works around a segfault due to OpenSSL's exit handlers not being thread-safe.

  See https://github.com/cloudflare/wrangler-legacy/issues/1464#issuecomment-988245785 for an explanation and alternatives.

• fix: incomplete binary with npm installation - 12f23eddde, pull/2149

  Closes #2148. This PR modifies binary-install.js (reference) to make sure the file stream is complete before the program finishes. I'm not a ... truncated

• Get https websockets working - jyn514, pull/2153

  It turns out websocket upgrades with HTTP/2 require an HTTP extension, which Cloudflare doesn't currently support: https://datatracker.ietf.org/doc/html/rfc8441

  To avoid this, enable HTTP/1 for the remote client.

  This required an upd ... truncated

• Get the audit CI job passing - jyn514, pull/2151

  Note that I didn't say "fix the vulnerabilities" - this just ignores the chrono and time vulnerabilities because they're both very hard to fix and not very common in practice.

  This uncovered a tokio vulnerability, which I've fixed by ... truncated

• Proxy websocket connections when using authenticated (realish) preview - jyn514, pull/2135

  Previously, Wrangler would return a "101 Switching Protocols" response and then immediately close the TCP connection. This changes it to instead continue proxying the connection to the remote worker.

  This is simpler than `wrangler dev ... truncated

Maintenance

• Update Rust toolchain to 1.57 - taylorlee, pull/2145

  I originally updated my toolchain to 1.56.1 on a local branch, since afaict rust-analyzer wasn't able to work with derived StructOpt proc-macros in 1.54. Since 1.57 was released today, I figured I'd update it all the way in this pr.

  foll ... truncated