Bump the npm-patching group with 5 updates

[dependabot]

Bumps the npm-patching group with 5 updates:

Package	From	To
otplib	13.0.2	13.1.1
pg	8.16.3	8.17.1
@types/node	25.0.6	25.0.9
prettier	3.7.4	3.8.0
wrangler	4.58.0	4.59.2

Updates otplib from 13.0.2 to 13.1.1

Release notes

Sourced from otplib's releases.

v13.1.1

What's Changed

• chore(deps-dev): bump the dev-dependencies-minor group with 3 updates by @​dependabot[bot] in yeojz/otplib#743
• Feat/docs add hotp example by @​yeojz in yeojz/otplib#745
• fix: ensure guardrails parameter propagates through HOTP and TOTP call chains by @​yeojz in yeojz/otplib#748
• ci: update package versions by @​github-actions[bot] in yeojz/otplib#751

Full Changelog: yeojz/otplib@v13.1.0...v13.1.1

v13.1.0

What's Changed

• TOTP tolerance writeup by @​yeojz in yeojz/otplib#737
• feat: allow guardrails to be overridden by @​yeojz in yeojz/otplib#738
• feat: add HOTP support to generateURI for both TOTP and HOTP strategies by @​yeojz in yeojz/otplib#740
• ci: update package versions by @​github-actions[bot] in yeojz/otplib#742

Full Changelog: yeojz/otplib@v13.0.2...v13.1.0

Commits

• d2fda0b ci: update package versions (#751)
• 26a615a fix: ensure guardrails parameter propagates through HOTP and TOTP call chains...
• 8714d44 ci: update package versions (#742)
• ed15c2e feat: add HOTP support to generateURI for both TOTP and HOTP strategies (#740)
• See full diff in compare view

Updates pg from 8.16.3 to 8.17.1

Changelog

Sourced from pg's changelog.

All major and minor releases are briefly explained below.

For richer information consult the commit log on github with referenced pull requests.

We do not include break-fix version release in this file.

[email protected]

• Throw correct error if database URL parsing fails.

[email protected]

• Add support for min connection pool size.

[email protected]

• Add support for esm importing. CommonJS importing is still also supported.

[email protected]

• Add support from SCRAM-SAH-256-PLUS i.e. channel binding.

[email protected]

• Add ability to specify query timeout on per-query basis.

[email protected]

• Add queryMode config option to force use of the extended query protocol on queries without any parameters.

[email protected]

• Emit release event when client is returned to the pool.

[email protected]

• Add support for stream factory.
• Better errors for SASL authentication.
• Use native crypto module for SASL authentication.

[email protected]

• Bump minimum required version of native bindings.
• Catch previously uncatchable errors thrown in pool.query.
• Prevent the pool from blocking the event loop if all clients are idle (and allowExitOnIdle is enabled).
• Support lock_timeout in client config.
• Fix errors thrown in callbacks from interfering with cleanup.

[email protected]

... (truncated)

Commits

• 4eb7529 Publish
• b94c8e1 Don't use prefix import as it breaks in old nodes. (#3578)
• 6bf475c Improve Deno compatibility: config-first and safe env access (#3547)
• d10e09c Publish
• 9174783 test: Replace dead row length check with similar shape check (#3532)
• 27a2754 Deprecations (#3510)
• See full diff in compare view

Updates @types/node from 25.0.6 to 25.0.9

Commits

• See full diff in compare view

Updates prettier from 3.7.4 to 3.8.0

Release notes

Sourced from prettier's releases.

3.8.0

• Support Angular v21.1

diff

🔗 Release note "Prettier 3.8: Support for Angular v21.1"

Changelog

Sourced from prettier's changelog.

3.8.0

diff

🔗 Release Notes

Commits

• 812a4d0 Release 3.8.0
• 6cc1be3 Consistent title
• 6d9bef0 Apply automated changes
• 3744a18 Update code example
• 9a3edde Update
• 82dc52c Regenerate
• dc2de1a Regenerate
• 5aa6966 Regenerate
• daeeb51 Another version
• a282985 Add blog post
• Additional commits viewable in compare view

Updates wrangler from 4.58.0 to 4.59.2

Release notes

Sourced from wrangler's releases.

[email protected]

Patch Changes

• #11908 e78186d Thanks @​dependabot! - chore: update dependencies of "miniflare", "wrangler"

  The following dependency versions have been updated:

  Dependency	From	To
  workerd	1.20260111.0	1.20260114.0

• #11880 fe4faa3 Thanks @​penalosa! - Show helpful messages for errors outside of Wrangler's control. This prevents unnecessary Sentry reports.

  Errors now handled with user-friendly messages:

  • Connection timeouts to Cloudflare's API (UND_ERR_CONNECT_TIMEOUT) - typically due to slow networks or connectivity issues
  • File system permission errors (EPERM, EACCES) - caused by insufficient permissions, locked files, or antivirus software
  • DNS resolution failures (ENOTFOUND) - caused by network connectivity issues or DNS configuration problems

• #11882 695b043 Thanks @​GregBrimble! - Improve the error message for wrangler secret put when using Worker versions or gradual deployments. wrangler versions secret put should be used instead, or ensure to deploy the latest version before using wrangler secret put. wrangler secret put alone will add the new secret to the latest version (possibly undeployed) and immediately deploy that which is usually not intended.

• Updated dependencies [e78186d, fec8f5b, d39777f, 4714ca1, c17e971]:

  • [email protected]
  • @​cloudflare/unenv-preset@​2.10.0
  • @​cloudflare/kv-asset-handler@​0.4.2

[email protected]

Patch Changes

• #11889 99b1f32 Thanks @​emily-shen! - Use argument array when executing git commands with wrangler pages deploy

  Pass user provided values from --commit-hash safely to underlying git command.

[email protected]

Minor Changes

• #11852 ad65efa Thanks @​NuroDev! - Add --check flag to wrangler types command

  The new --check flag allows you to verify that your generated types file is up-to-date without regenerating it. This is useful for CI/CD pipelines, pre-commit hooks, or any scenario where you want to ensure types have been committed after configuration changes.

  When types are up-to-date, the command exits with code 0:

  $ wrangler types --check
  ✨ Types at worker-configuration.d.ts are up to date.

  When types are out-of-date, the command exits with code 1:

... (truncated)

Commits

• bca7114 Version Packages (#11903)
• fe4faa3 Reduce Sentry noise (#11880)
• 8520a9c test(unenv-preset): add compat date tests for module that have a defa… (#11912)
• d39777f feat(unenv-preset): add support for native node:_stream_wrap module (#11799)
• e275ffb add comment to media binding test (#11911)
• e78186d chore(deps): bump the workerd-and-workers-types group with 2 updates (#11908)
• 695b043 Improve 'wrangler secret put' error message when using Worker versions (#11882)
• fec8f5b feat(unenv-preset): add support for native node:dgram module (#11701)
• def5ce3 temporarily disable media binding test (#11900)
• 37a8607 Version Packages (#11890)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[cloudflare-workers-and-pages]

Deploying puff-serverless with    Cloudflare Pages

Latest commit:	b369392
Status:	✅  Deploy successful!
Preview URL:	https://b9e6f6a0.puff-serverless.pages.dev
Branch Preview URL:	https://dependabot-npm-and-yarn-npm-t2hb.puff-serverless.pages.dev

View logs