chore(deps): Bump the npm-deps group with 2 updates

[dependabot]

Bumps the npm-deps group with 2 updates: @cloudflare/workers-types and wrangler.

Updates @cloudflare/workers-types from 4.20250906.0 to 4.20250913.0

Commits

• See full diff in compare view

Updates wrangler from 4.34.0 to 4.37.0

Release notes

Sourced from wrangler's releases.

wrangler@4.37.0

Minor Changes

• #10546 d53a0bc Thanks @​1000hz! - On deploy or version upload, Workers with multiple environments are tagged with metadata that groups them together in the Cloudflare Dashboard.

• #10596 735785e Thanks @​penalosa! - Add Miniflare & Wrangler support for unbound Durable Objects

• #10622 15c34e2 Thanks @​nagraham! - Modify R2 Data Catalog compaction commands to enable/disable for Catalog (remove table/namespace args), and require Cloudflare API token on enable.

Patch Changes

• Updated dependencies [735785e]:
  • miniflare@4.20250906.2

wrangler@4.36.0

Minor Changes

• #10604 135e066 Thanks @​penalosa! - Enable Remote Bindings without the need for the --x-remote-bindings flag

• #10558 30f558e Thanks @​laplab! - Add commands to send queries and manage R2 SQL product.

• #10574 d8860ac Thanks @​efalcao! - Add support for VPC services CRUD via wrangler vpc service

• #10119 336a75d Thanks @​dxh9845! - Add support for dynamically loading 'external' Miniflare plugins for unsafe Worker bindings (developed outside of the workers-sdk repo)

Patch Changes

• #10212 0837a8d Thanks @​jamesopstad! - Add preserveOriginalMain option to unstable_readConfig. This will pass the original main value through, without converting it to an absolute path.

• #10541 da24079 Thanks @​qjex! - stable ratelimit binding

  Rate Limiting in Workers is now generally available, ratelimit can be removed from unsafe bindings.

• #10479 ffa2600 Thanks @​nagraham! - feat: Add wrangler commands for the R2 Data Catalog compaction feature

• #9955 51553ef Thanks @​penalosa! - Integrate the Cloudflare SDK into Wrangler (internal refactor)

• Updated dependencies [e2b838f, 336a75d]:

  • miniflare@4.20250906.1

wrangler@4.35.0

Minor Changes

• #10491 5cb806f Thanks @​zebp! - Add traces, OTEL destinations, and configurable persistence to observability settings

  Adds a new traces field to the observability settings in your Worker configuration that configures the behavior of automatic tracing. Both traces and logs support providing a list of OpenTelemetry compliant destinations where your logs/traces will be exported to as well as an implicitly-enabled persist option that controls whether or not logs/traces are persisted to the Cloudflare observability platform and viewable in the Cloudflare dashboard.

Patch Changes

• #10571 4e49d3e Thanks @​dario-piotrowicz! - add missing type for send_email's experimental_remote field

... (truncated)

Changelog

Sourced from wrangler's changelog.

4.37.0

Minor Changes

• #10546 d53a0bc Thanks @​1000hz! - On deploy or version upload, Workers with multiple environments are tagged with metadata that groups them together in the Cloudflare Dashboard.

• #10596 735785e Thanks @​penalosa! - Add Miniflare & Wrangler support for unbound Durable Objects

• #10622 15c34e2 Thanks @​nagraham! - Modify R2 Data Catalog compaction commands to enable/disable for Catalog (remove table/namespace args), and require Cloudflare API token on enable.

Patch Changes

• Updated dependencies [735785e]:
  • miniflare@4.20250906.2

4.36.0

Minor Changes

• #10604 135e066 Thanks @​penalosa! - Enable Remote Bindings without the need for the --x-remote-bindings flag

• #10558 30f558e Thanks @​laplab! - Add commands to send queries and manage R2 SQL product.

• #10574 d8860ac Thanks @​efalcao! - Add support for VPC services CRUD via wrangler vpc service

• #10119 336a75d Thanks @​dxh9845! - Add support for dynamically loading 'external' Miniflare plugins for unsafe Worker bindings (developed outside of the workers-sdk repo)

Patch Changes

• #10212 0837a8d Thanks @​jamesopstad! - Add preserveOriginalMain option to unstable_readConfig. This will pass the original main value through, without converting it to an absolute path.

• #10541 da24079 Thanks @​qjex! - stable ratelimit binding

  Rate Limiting in Workers is now generally available, ratelimit can be removed from unsafe bindings.

• #10479 ffa2600 Thanks @​nagraham! - feat: Add wrangler commands for the R2 Data Catalog compaction feature

• #9955 51553ef Thanks @​penalosa! - Integrate the Cloudflare SDK into Wrangler (internal refactor)

• Updated dependencies [e2b838f, 336a75d]:

  • miniflare@4.20250906.1

4.35.0

Minor Changes

• #10491 5cb806f Thanks @​zebp! - Add traces, OTEL destinations, and configurable persistence to observability settings

  Adds a new traces field to the observability settings in your Worker configuration that configures the behavior of automatic tracing. Both traces and logs support providing a list of OpenTelemetry compliant destinations where your logs/traces will be exported to as well as an implicitly-enabled persist option that controls whether or not logs/traces are persisted to the Cloudflare observability platform and viewable in the Cloudflare dashboard.

... (truncated)

Commits

• 597e07a Version Packages (#10633)
• d53a0bc feat: tag services and environments (#10546)
• 735785e Add Miniflare & Wrangler support for unbound Durable Objects (#10596)
• 15c34e2 feat: Update R2 Data Catalog compaction commands to work on catalog level (re...
• ebf2297 Version Packages (#10590)
• 135e066 Unflag remote bindings (#10604)
• d8860ac Add support for WVPC connectivity services CRUD operations (#10574)
• ffa2600 [R2 Data Catalog] Add wrangler commands for the R2 Data Catalog compaction fe...
• da24079 wrangler: move ratelimit binding to stable (#10541)
• 30f558e feat: add R2 SQL command (#10558)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions