miniflare@4.20260520.0
📦 cloudflare-workersView on GitHub →
🐛 3 fixes🔧 5 symbols
Summary
This patch primarily addresses security vulnerabilities by updating the `ws` dependency and improves local development reliability by enhancing error reporting and adding self-healing for the Browser Run binding cache. It also corrects an issue with host validation for cdn-cgi routes in Miniflare.
🐛 Bug Fixes
- Fixed Miniflare's /cdn-cgi/* host validation incorrectly accepting subdomains of exact configured routes; exact routes now require an exact hostname match.
- Improved error diagnostics in the Browser Run binding worker by reading the response body as text before attempting JSON parsing, surfacing HTTP status and body content on upstream failures.
- Added self-healing logic to Miniflare's Browser Run binding to recover from corrupted @puppeteer/browsers cache by removing the corrupted directory and retrying installation if the executable is missing.