chore(deps): update dependency @cloudflare/vite-plugin to v1.31.0

[renovate]

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Change	Age	Confidence
@cloudflare/vite-plugin (source)	1.14.2 → 1.31.0

---

Release Notes

cloudflare/workers-sdk (@​cloudflare/vite-plugin)

v1.31.0

Compare Source

Minor Changes

• #​13011 b9b7e9d Thanks @​ruifigueira! - Add experimental headful browser rendering support for local development

  Experimental: This feature may be removed or changed without notice.

  When developing locally with the Browser Rendering API, you can enable headful (visible) mode via the X_BROWSER_HEADFUL environment variable to see the browser while debugging:

  X_BROWSER_HEADFUL=true wrangler dev
  X_BROWSER_HEADFUL=true vite dev

  Note: when using @cloudflare/playwright, two Chrome windows may appear — the initial blank page and the one created by browser.newPage(). This is expected behavior due to how Playwright handles browser contexts via CDP.

• #​13051 d5bffde Thanks @​dario-piotrowicz! - Update getLocalWorkerdCompatibilityDate to return today's date

  The re-exported getLocalWorkerdCompatibilityDate function from @cloudflare/vite-plugin previously resolved the workerd compatibility date by traversing the local miniflare installation, which was unreliable in some package manager setups. It now simply returns today's date. The function is also marked as deprecated — callers should just use today's date instead, for example like so: new Date().toISOString().slice(0, 10)

Patch Changes

• #​13125 f76652c Thanks @​kayluhb! - Fix SyntaxError when SSR-transformed module ends with a single-line comment

  When module code ends with a // comment (e.g. //# sourceMappingURL=... preserved by vite-plus), the closing } of the async wrapper in runInlinedModule was absorbed into the comment, causing SyntaxError: Unexpected end of input. Adding a newline before the closing brace prevents this.

• #​13188 110002c Thanks @​shulaoda! - Normalize the return value of getAssetsDirectory() with vite.normalizePath() to ensure assets.directory in the output wrangler.json always uses forward slashes

• Updated dependencies [9c4035b, 5d29055, fb67a18, d5bffde, ab44870, 48d83ca, b2f53ea, b9b7e9d, 14e72eb, 4dc94fd, b2f53ea, d5bffde, 48d83ca]:

  • wrangler@​4.80.0
  • miniflare@​4.20260401.0

v1.30.3

Compare Source

Patch Changes

• #​13111 f214760 Thanks @​dependabot! - Add missing connect key to WorkerEntrypoint and DurableObject key lists in the runner worker

  The connect method was added to the WorkerEntrypoint and DurableObject types in workerd 1.20260329.1 but was missing from the WORKER_ENTRYPOINT_KEYS and DURABLE_OBJECT_KEYS arrays used for RPC property access in the Vite plugin runner worker. This caused the compile-time exhaustiveness check to fail with the updated workers-types.

• Updated dependencies [ffbc268, 9eff028, ed20a9b, f214760, 746858a, 9aad27f, 1fc5518, b539dc7, 9282493, a532eea, cd0e971, d4c6158, 2565b1d]:

  • wrangler@​4.79.0
  • miniflare@​4.20260329.0

v1.30.2

Compare Source

Patch Changes

• #​12953 80b093e Thanks @​jamesopstad! - Fix Cannot perform I/O on behalf of a different request errors for deferred dynamic imports

  Concurrent requests that loaded the same dynamic import were previously sharing the same promise to resolve it in a Worker context. We now ensure that all imports execute within a Durable Object's IoContext before the result is returned to the Worker.

• Updated dependencies [eeaa473, 9fcdfca, bc24ec8, 1faff35, 0b4c21a, 535582d, 992f9a3, f4ea4ac, 91b7f73, f6cdab2, 53ed15a, ce65246, 7a5be20, 6b50bfa, 0386553, 9c5ebf5, 53ed15a, 53ed15a]:

  • wrangler@​4.78.0
  • miniflare@​4.20260317.3

v1.30.1

Compare Source

Patch Changes

• #​12851 86a40f0 Thanks @​jamesopstad! - Fix a bug that prevented using subpath imports for additional module types

  You can now use subpath imports for additional module types (.html, .txt, .sql, .bin, .wasm) by defining them in your package.json imports field:

  // package.json
  {
    "imports": {
      "#templates/page": "./src/templates/page.html"
    }
  }

  import page from "#templates/page";
  
  export default {
    fetch() {
      return new Response(page, {
        headers: { "Content-Type": "text/html" },
      });
    },
  } satisfies ExportedHandler;

• Updated dependencies [593c4db, b8f3309, 451dae3, 5aaaab2, 5aaaab2, f8516dd, 9c9fe30, 379f2a2, c2e9163, 6a6449e, 9a1cf29, 875da60]:

  • wrangler@​4.77.0
  • miniflare@​4.20260317.2

v1.30.0

Compare Source

Minor Changes

• #​12848 ce48b77 Thanks @​emily-shen! - Enable local explorer by default

  This ungates the local explorer, a UI that lets you inspect the state of D1, DO and KV resources locally by visiting /cdn-cgi/explorer during local development.

  Note: this feature is still experimental, and can be disabled by setting the env var X_LOCAL_EXPLORER=false.

Patch Changes

• #​12942 4f7fd79 Thanks @​jamesopstad! - Avoid splicing into the middleware stack for Vite versions other than v6

  Previously, the plugin spliced its pre-middleware into the Vite middleware stack relative to viteCachedTransformMiddleware. In Vite 8, this middleware can be omitted in some scenarios, which would cause the splice to fail. The plugin now registers pre-middleware using server.middlewares.use() directly, which places it in the correct position for Vite 7+. For Vite 6, the middleware is moved to the correct position in a post hook.

• Updated dependencies [782df44, 3c988e2, 62545c9, d028ffb, cb71403, 71ab981, 3a1c149, 7c3c6c6, ce48b77, 8729f3d]:

  • wrangler@​4.76.0
  • miniflare@​4.20260317.1
  • @​cloudflare/unenv-preset@​2.16.0

v1.29.1

Compare Source

Patch Changes

• #​12936 cff91ff Thanks @​jamesopstad! - Select the appropriate vite/module-runner implementation during dev based on the user's Vite version

  The plugin now builds against Vite 8 and ships two bundled copies of vite/module-runner: one from Vite 8 and one from Vite 7.1.12 (the last version before a breaking change to the module runner in Vite 7.2.0). At dev server startup, the correct implementation is selected based on the user's installed Vite version. This is Vite 8's module runner for users on Vite >= 7.2.0, and the legacy module runner for users on older versions.

• Updated dependencies [c9b3184, 13df6c7, df0d112, 81ee98e, c600ce0, f509d13, 3b81fc6, 0a7fef9]:

  • wrangler@​4.75.0
  • miniflare@​4.20260317.0

v1.29.0

Compare Source

Minor Changes

• #​12885 12505c9 Thanks @​edmundhung! - Add Vite 8 to the supported peer dependency range

  The package now lists Vite 8 in its peer dependency range, so installs with Vite 8 no longer show a peer dependency warning.

Patch Changes

• #​12859 876108a Thanks @​dario-piotrowicz! - Fix crash when plugins send HMR events before runner initialization

  Previously, if another Vite plugin (such as vite-plugin-vue-devtools) sent HMR events during configureServer before the Cloudflare plugin had initialized its runner, the dev server would crash with AssertionError: The WebSocket is undefined. The environment's WebSocket send operations are now deferred until the runner is fully initialized, allowing early HMR events to be handled gracefully.

• Updated dependencies [ade0aed, 2b9a186, 65f1092, 7b0d8f5, 351e1e1, 2b9a186]:

  • miniflare@​4.20260312.1
  • wrangler@​4.74.0

v1.28.0

Compare Source

Minor Changes

• #​12855 c2b76bc Thanks @​jamesopstad! - Support local explorer /cdn-cgi/ routes

  The local explorer UI can now be accessed at /cdn-cgi/explorer.

Patch Changes

• #​12834 64edac7 Thanks @​jamesopstad! - Warn when the assets field is provided for auxiliary Workers

  Auxiliary Workers do not support static assets. Previously, the assets field was silently ignored but we now warn if it is used.

• #​12794 b980af6 Thanks @​aron-cf! - Fix Sandbox SDK preview URL WebSocket routing

  When using Sandbox SDK preview URLs, WebSocket requests using the vite-hmr protocol could be dropped before they reached the worker, causing HMR to fail. The plugin now forwards Sandbox WebSocket traffic and preserves the original request origin/host so worker proxy logic receives the correct URL.

• Updated dependencies [f7de0fd, ff543e3, 8e89e85, e63539d, 8d1e130, 6ee18e1, ecc7f79, 1dda1c8, 4bb61b9]:

  • miniflare@​4.20260312.0
  • wrangler@​4.73.0

v1.27.0

Compare Source

Minor Changes

• #​12826 de65c58 Thanks @​gabivlj! - Enable container egress interception in local dev without the experimental compatibility flag

  Container local development now always prepares the egress interceptor sidecar image needed for interceptOutboundHttp(). This makes container-to-Worker interception available by default in Wrangler, Miniflare, and the Cloudflare Vite plugin.

Patch Changes

• Updated dependencies [5451a7f, 5451a7f, 82cc2a8, 3c67c2a, d645594, 211d75d, 6ed249b, 9f93b54, de65c58, cb14820, a7c87d1, b8c33f5, e4d9510]:
  • miniflare@​4.20260310.0
  • wrangler@​4.72.0

v1.26.1

Compare Source

Patch Changes

• Updated dependencies [5cc8fcf, ec2459e]:
  • @​cloudflare/unenv-preset@​2.15.0
  • wrangler@​4.71.0
  • miniflare@​4.20260301.1

v1.26.0

Compare Source

Minor Changes

• #​12649 35b2c56 Thanks @​gabivlj! - Add experimental support for containers to workers communication with interceptOutboundHttp

  This feature is experimental and requires adding the "experimental" compatibility flag to your Wrangler configuration.

• #​12701 23a365a Thanks @​jamesopstad! - Add local dev validation for the experimental secrets configuration property

  When the new secrets property is defined, wrangler dev and vite dev now validate secrets declared in secrets.required. When required secrets are missing from .dev.vars or .env/process.env, a warning is logged listing the missing secret names.

  When secrets is defined, only the keys listed in secrets.required are loaded. Additional keys in .dev.vars or .env are excluded. If you are not using .dev.vars, keys listed in secrets.required are loaded from process.env as well as .env. The CLOUDFLARE_INCLUDE_PROCESS_ENV environment variable is therefore not needed when using this feature.

  When secrets is not defined, the existing behavior is unchanged.

  // wrangler.jsonc
  {
  	"secrets": {
  		"required": ["API_KEY", "DB_PASSWORD"],
  	},
  }

Patch Changes

• Updated dependencies [6a8aa5f, d672e2e, 35b2c56, 5f7aaf2, 209b396, 23a365a, 596b8a0, 00e729e, 0769056, 150ef7b, bf9cb3d]:
  • wrangler@​4.70.0
  • miniflare@​4.20260301.1

v1.25.6

Compare Source

Patch Changes

• #​12673 a04f6f1 Thanks @​jamesopstad! - Move proxy shared secret to a constant that is reused across restarts.

• #​12684 53025f9 Thanks @​jamesopstad! - Fix Miniflare being incorrectly disposed during rapid dev server restarts

• Updated dependencies [99037e3, 295297a, f765244, c0e9e08]:

  • miniflare@​4.20260305.0
  • wrangler@​4.69.0

v1.25.5

Compare Source

Patch Changes

• #​12628 494ee7b Thanks @​Master-Hash! - Append Cloudflare defaults to existing .assetsignore files during build output

  When a project includes a PUBLIC_DIR/.assetsignore, the plugin now preserves those rules and appends the required wrangler.json and .dev.vars entries instead of replacing the file content.

• Updated dependencies [3d6e421, 294297e]:

  • wrangler@​4.68.1
  • miniflare@​4.20260302.0

v1.25.4

Compare Source

Patch Changes

• Updated dependencies [8d882fa, 8d882fa]:
  • wrangler@​4.68.0

v1.25.3

Compare Source

Patch Changes

• Updated dependencies [e93dc01, c2ed7c2, d920811, 896734d, ebdbe52, 58a4020, 6f6cd94]:
  • wrangler@​4.67.1
  • miniflare@​4.20260302.0

v1.25.2

Compare Source

Patch Changes

• Updated dependencies [f239077, aaa7200, 2f19a40, 8723684, e2a6600, 5f9f0b4, 452cdc8, 527e4f5, aa82c2b, 0b17117, ca58062]:
  • miniflare@​4.20260219.0
  • wrangler@​4.67.0
  • @​cloudflare/unenv-preset@​2.14.0

v1.25.1

Compare Source

Patch Changes

• Updated dependencies [5a868a0, caf9b11, c58e81b, 33a9a8f, 8077c14, caf9b11, 7d2355e, 936187d, 7ea69af, 5cc7158, caf9b11, 9a565d5, 7f18183, 39491f9, 43c462a, c4c86f8, 7d2355e, c9d0f9d, 5cc7158, 5cc7158, c9d0f9d]:
  • miniflare@​4.20260217.0
  • wrangler@​4.66.0
  • @​cloudflare/unenv-preset@​2.13.0

v1.25.0

Compare Source

Minor Changes

• #​12535 bd06ad2 Thanks @​edmundhung! - Set { serverHandler: false } automatically when using @vitejs/plugin-rsc

  By default, @vitejs/plugin-rsc adds dev and preview server middleware that imports the RSC entry in Node.js. This fails with cloudflare:* imports (ERR_UNSUPPORTED_ESM_URL_SCHEME) and is unnecessary since the Cloudflare plugin handles requests via workerd. Users no longer need to pass rsc({ serverHandler: false }) manually.

Patch Changes

• #​12521 a8183db Thanks @​edmundhung! - Avoid The WebSocket is undefined error when frameworks create a child Vite server during build

  React Router creates a child Vite dev server during production builds to compile route files. This could previously cause an intermittent The WebSocket is undefined assertion error.

• Updated dependencies [ad817dd, b900c5a, f7fa326, 734792a, 7aaa2a5, cc5ac22, 62a8d48, 84252b7, e5efa5d, d06ad09, 10a1c4a, be9745f, d7b492c, 122791d, 8809411, 1a9eddd, 41e18aa]:

  • wrangler@​4.65.0
  • miniflare@​4.20260212.0

v1.24.0

Compare Source

Minor Changes

• #​12446 1231a2e Thanks @​jamesopstad! - Infer upload_source_maps setting in the output Worker config from the build.sourcemap setting in the Vite config.

  If build.sourcemap is enabled for a Worker environment, as in the following example, "upload_source_maps": true will now automatically be added to the output wrangler.json file.
  This removes the need to additionally specify the upload_source_maps property in the input Worker config.

  export default defineConfig({
  	environments: {
  		my_worker: {
  			build: {
  				sourcemap: true,
  			},
  		},
  	},
  	plugins: [cloudflare()],
  });

  Note that if upload_source_maps is set in the input Worker config, this value will take precedence.
  This makes it possible to generate source maps without uploading them.

Patch Changes

• #​12393 fd8b3e5 Thanks @​BlankParticle! - Provide proxy shared secret to Miniflare so that the Worker receives the original Host header

• Updated dependencies [5d56487, 2d90127, 2acb277, c8dda16, e02b5f5, 8ba1d11, 555b32a, d636d6a, bf8df0c, e02b5f5, 988dea9, 1f1c3ce, 62635a0, fd902aa, 312b5eb, 961705c, 355c6da, bfd17cd, 3388c84, ce9dc01, 21ac7ab, 937425c]:

  • wrangler@​4.64.0
  • miniflare@​4.20260210.0
  • @​cloudflare/unenv-preset@​2.12.1

v1.23.1

Compare Source

Patch Changes

• #​12381 98283fa Thanks @​jamesopstad! - Avoid collecting nodejs_compat warnings during dependency optimization.

  Previously, a custom plugin was provided during dependency optimization to collect warnings when Node.js built-ins were imported and the nodejs_compat flag was not enabled.
  Because optimized dependencies are cached, the warning was only displayed when dependencies changed.
  Additionally, it sometimes included false positives from dependencies that were no longer used.
  We now always externalize Node.js built-ins during dependency optimization and collect the warnings at runtime.
  This is more consistent with how warnings are collected for direct imports of Node.js built-ins.

• Updated dependencies [ee9b81f, 63f1adb, ba13de9, 447daa3, fe3af35, bd4bb98, dab4bc9, 83adb2c, 18c0784]:

  • wrangler@​4.63.0
  • miniflare@​4.20260205.0

v1.23.0

Compare Source

Minor Changes

• #​11697 67a4ab1 Thanks @​jamesopstad! - Add experimental.prerenderWorker option to the plugin config.

  This enables configuring a dedicated Worker for prerendering at build time. This is an experimental feature and may change or be removed at any time.

• #​12214 4db3864 Thanks @​jamesopstad! - Use Hook Filters to optimize plugin performance with Vite 8. This skips unnecessary Rust-to-JS calls with Rolldown powered Vite.

Patch Changes

• #​12358 4340c42 Thanks @​jamesopstad! - Always emit a .assetsignore file in the client output directory.

  Previously, we would emit a .assetsignore file in the client output directory only if the client output included a wrangler.json file.
  We now always emit it, which prevents a wrangler.json file being deployed as an asset if it is copied into this directory by mistake.

• Updated dependencies [964a39d, 253a85d, ce736b9, 0c9625a, 47944d1, 4c4d5a5, b05b919, 0aaf080, b981db5, a113c0d, fdd7a9f, a5fca2c, 1bd1488, f7aa8c7]:

  • wrangler@​4.62.0
  • miniflare@​4.20260131.0

v1.22.1

Compare Source

Patch Changes

• #​12187 0c85b05 Thanks @​jamesopstad! - Use esmExternalRequirePlugin to convert external require calls in Vite 8.

• Updated dependencies [8a210af, eb8a415, 3b06b18, 17961bb, 52fdfe7, 6d8d9cd, 5f060c9, cb72c11]:

  • miniflare@​4.20260128.0
  • wrangler@​4.61.1
  • @​cloudflare/unenv-preset@​2.12.0

v1.22.0

Compare Source

Minor Changes

• #​12034 05714f8 Thanks @​emily-shen! - Add a no-op local explorer worker, which is gated by the experimental flag X_LOCAL_EXPLORER.

Patch Changes

• #​12052 9c76067 Thanks @​edmundhung! - Fix dev server crash on WebSocket client disconnect

  When a WebSocket client disconnects while an upgrade request is being processed, the server would crash with an unhandled ECONNRESET error. The fix adds an error handler to the socket at the start of the upgrade process.

• Updated dependencies [a0a9ef6, ad4666c, 014e7aa, e414f05, 77e82d2, f08ef21, 0641e6c, eacedba, [05714f8](https://redirect.github.com/cloudflare/workers-sdk/commit/05714f8710

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[github-actions]

Version Preview URL: ❌deployment failed.