chore(deps): bump the workerd-and-workers-types group across 1 directory with 2 updates

[dependabot]

Bumps the workerd-and-workers-types group with 2 updates in the / directory: @cloudflare/workers-types and workerd.

Updates @cloudflare/workers-types from 4.20240419.0 to 4.20240502.0

Commits

• See full diff in compare view

Updates workerd from 1.20240419.0 to 1.20240502.0

Release notes

Sourced from workerd's releases.

v1.20240502.0

What's Changed

• [build] 04-16-24 Roll deps by @​fhanau in cloudflare/workerd#2027
• Reland PR #1900 "Add platform-specific release configuration" by @​fhanau in cloudflare/workerd#1986
• Refactor: ActorCache flush transaction and CountedDeletes (attempt 2) by @​MellowYarker in cloudflare/workerd#2049
• Cleanup deprecated jsg/promise methods by @​jasnell in cloudflare/workerd#2048
• Set default getAlarmLimit() value to 15 minutes by @​jqmmes in cloudflare/workerd#2052
• Deprecate getLogs method from Ai binding by @​G4brym in cloudflare/workerd#2044
• Add Workers Ai types by @​G4brym in cloudflare/workerd#2033
• Add SqliteDatabase::executeWithRegulator by @​justin-mp in cloudflare/workerd#2054
• Have internal streams return empty Uint8Array on end of byob stream by @​jasnell in cloudflare/workerd#2045
• JSRPC: Honor output gates. by @​kentonv in cloudflare/workerd#2062
• sqlite: allow PRAGMA legacy_alter_table by @​smerritt in cloudflare/workerd#2063
• Fixup assert in URLPattern by @​jasnell in cloudflare/workerd#2069
• update v8 to 12.4 by @​garrettgu10 in cloudflare/workerd#2005
• Fix UAF in recent RPC output gate change. by @​kentonv in cloudflare/workerd#2070
• Reset kj::Maybes with kj::none instead of {} by @​justin-mp in cloudflare/workerd#2071
• Implements the web platform standard reportError API by @​jasnell in cloudflare/workerd#1979
• Use kj::none in SqliteDatabase by @​justin-mp in cloudflare/workerd#2072
• Return row counts for SQL ingestion (storage.sql.ingest()). by @​smerritt in cloudflare/workerd#2059
• fixing kj::none warnings by @​mikea in cloudflare/workerd#2078
• initializing all arrays by @​mikea in cloudflare/workerd#2079
• Initial implementation of new jsg module registry by @​jasnell in cloudflare/workerd#1553
• Deprecate WritableStream::removeSink by @​jasnell in cloudflare/workerd#2064
• Clean up several UBSan violations by @​fhanau in cloudflare/workerd#2081
• Release 2024-05-02 by @​ObsidianMinor in cloudflare/workerd#2084

Full Changelog: cloudflare/workerd@v1.20240423.0...v1.20240502.0

v1.20240423.0

What's Changed

• Reduce CODE_MOVED error to INFO log. by @​kentonv in cloudflare/workerd#2037
• Python: Make top level random() raise by @​hoodmane in cloudflare/workerd#1952
• Hold strong refs in certain streams Writer/Reader methods by @​jasnell in cloudflare/workerd#2046
• Release 2024-04-23 by @​harrishancock in cloudflare/workerd#2047

Full Changelog: cloudflare/workerd@v1.20240419.0...v1.20240423.0

Commits

• 01700a3 Merge pull request #2084 from cloudflare/release-2024-05-02
• 8849be0 Release 2024-05-02
• 2a853c8 Fix minor undefined behavior in SchemaFileImpl
• 2157142 Fix UBSan errors around signed integer overflow and pointer indexing in node ...
• d72e867 Fix undefined behavior around NaN in io-context.c++
• 2c11ea1 Fix wrong dynamic type in jsg resource-test
• 9b385aa Deprecate WritableStream::removeSink (#2064)
• a2a20a6 Initial implementation of new jsg module registry (#1553)
• bc590e2 initializing all arrays (#2079)
• cad5a19 fixing kj::none warnings (#2078)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[changeset-bot]

🦋 Changeset detected

Latest commit: e540328

The changes in this PR will be included in the next version bump.

This PR includes changesets to release 4 packages

Name	Type
miniflare	Patch
@cloudflare/pages-shared	Patch
@cloudflare/vitest-pool-workers	Patch
wrangler	Patch

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR

[github-actions]

A wrangler prerelease is available for testing. You can install this latest build in your project with:

npm install --save-dev https://prerelease-registry.devprod.cloudflare.dev/workers-sdk/runs/9082710445/npm-package-wrangler-5752

You can reference the automatically updated head of this PR with:

npm install --save-dev https://prerelease-registry.devprod.cloudflare.dev/workers-sdk/prs/5752/npm-package-wrangler-5752

Or you can use npx with this latest build directly:

npx https://prerelease-registry.devprod.cloudflare.dev/workers-sdk/runs/9082710445/npm-package-wrangler-5752 dev path/to/script.js

Additional artifacts:

npx https://prerelease-registry.devprod.cloudflare.dev/workers-sdk/runs/9082710445/npm-package-create-cloudflare-5752 --no-auto-update

npm install https://prerelease-registry.devprod.cloudflare.dev/workers-sdk/runs/9082710445/npm-package-cloudflare-kv-asset-handler-5752

npm install https://prerelease-registry.devprod.cloudflare.dev/workers-sdk/runs/9082710445/npm-package-miniflare-5752

npm install https://prerelease-registry.devprod.cloudflare.dev/workers-sdk/runs/9082710445/npm-package-cloudflare-pages-shared-5752

npm install https://prerelease-registry.devprod.cloudflare.dev/workers-sdk/runs/9082710445/npm-package-cloudflare-vitest-pool-workers-5752

Note that these links will no longer work once the GitHub Actions artifact expires.

---

[email protected] includes the following runtime dependencies:

Package	Constraint	Resolved
miniflare	workspace:*	3.20240419.1
workerd	1.20240502.0	1.20240502.0
workerd --version	1.20240502.0	2024-05-02

Please ensure constraints are pinned, and miniflare/workerd minor versions match.

[RamIdeas]

The workerd version bumped in this PR contains a bug where the AI binding is missing the logs property (the property is no longer used, but it should've been set to an empty array).

The property is to be added back in cloudflare/workerd#2095

The test failures were skipped in #5784 and will be unskipped when the next workerd release (containing cloudflare/workerd#2095) is out

I am questioning whether we should merge this PR as is cc @petebacondarwin

Reason to merge: the bug exists in production right now and so releasing wrangler with this workerd version will allow users to catch this bug before they deploy.
Reasons to wait for next workerd version: avoid causing churn in user's local development workflow

[RamIdeas]

@dependabot recreate

[RamIdeas]

We've decided to hold off merging this workerd version into wrangler. We expect the next release to come next week (Monday) and so we can expect it in Wrangler's Tuesday release

[petebacondarwin]

@dependabot recreate

[dependabot]

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml

[petebacondarwin]

@dependabot recreate

[petebacondarwin]

@dependabot close

[dependabot]

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml

[petebacondarwin]

@dependabot reopen

[petebacondarwin]

😢

[dependabot]

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml

[dependabot]

Looks like this PR is closed. If you re-open it I'll rebase it as long as no-one else has edited it (you can use @dependabot reopen if the branch has been deleted).

[dependabot]

Looks like this PR is closed. If you re-open it I'll rebase it as long as no-one else has edited it (you can use @dependabot reopen if the branch has been deleted).

[petebacondarwin]

@dependabot reopen

[petebacondarwin]

@dependabot recreate

[dependabot]

Looks like these dependencies are no longer updatable, so this is no longer needed.