Bump the npm-patching group with 3 updates

[dependabot]

Bumps the npm-patching group with 3 updates: pg, @types/node and wrangler.

Updates pg from 8.19.0 to 8.20.0

Changelog

Sourced from pg's changelog.

pg@8.20.0

• Add onConnect callback to pg.Pool constructor options allowing for async initialization of newly created & connected pooled clients.

Commits

• c9070cc Publish
• ad36e3c fix: typo in deprecation notice for client.query() (#3618)
• See full diff in compare view

Updates @types/node from 25.3.3 to 25.3.5

Commits

• See full diff in compare view

Updates wrangler from 4.69.0 to 4.71.0

Release notes

Sourced from wrangler's releases.

wrangler@4.71.0

Minor Changes

• #11656 ec2459e Thanks @​prydt! - feat(hyperdrive): add MySQL SSL mode and Custom CA support

  Hyperdrive now supports MySQL-specific SSL modes (REQUIRED, VERIFY_CA, VERIFY_IDENTITY) alongside the existing PostgreSQL modes. The --sslmode flag now validates the provided value based on the database scheme (PostgreSQL or MySQL) and enforces appropriate CA certificate requirements for each.

  Usage:

  # MySQL with CA verification
  wrangler hyperdrive create my-config --connection-string="mysql://user:pass@host:3306/db" --sslmode=VERIFY_CA --ca-certificate-id=<cert-id>
  PostgreSQL (unchanged)
  wrangler hyperdrive create my-config --connection-string="postgres://user:pass@host:5432/db" --sslmode=verify-full --ca-certificate-id=<cert-id>

Patch Changes

• Updated dependencies [5cc8fcf]:
  • @​cloudflare/unenv-preset@​2.15.0
  • miniflare@4.20260301.1

wrangler@4.70.0

Minor Changes

• #11332 6a8aa5f Thanks @​nikitassharma! - Users are now able to configure DockerHub credentials and have containers reference images stored there.

  DockerHub can be configured as follows:

  echo $PAT_TOKEN | npx wrangler@latest containers registries configure docker.io --dockerhub-username=user --secret-name=DockerHub_PAT_Token

  Containers can then specify an image from DockerHub in their wrangler.jsonc as follows:

  "containers": {
    "image": "docker.io/namespace/image:tag",
    ...
  }

• #12649 35b2c56 Thanks @​gabivlj! - Add experimental support for containers to workers communication with interceptOutboundHttp

  This feature is experimental and requires adding the "experimental" compatibility flag to your Wrangler configuration.

• #12701 23a365a Thanks @​jamesopstad! - Add local dev validation for the experimental secrets configuration property

  When the new secrets property is defined, wrangler dev and vite dev now validate secrets declared in secrets.required. When required secrets are missing from .dev.vars or .env/process.env, a warning is logged listing the missing secret names.

... (truncated)

Commits

• 9dff00c Version Packages (#12748)
• 331d4de Revert "Bump the workerd-and-workers-types group with 2 updates" (#12776)
• 48bbe20 Bump the workerd-and-workers-types group with 2 updates (#12768)
• ec2459e Add MySQL SSL options for hyperdrive creation (#11656)
• 5cc8fcf [unenv] Use the native workerd perf_hooks modules when available (#10618)
• ea57dfd Version Packages (#12702)
• bf9cb3d feat: add configurable step limits for Workflows (#12622)
• 6a8aa5f Allow users to configure DockerHub for use with containers (#11332)
• d672e2e Fix SolidStart autoconfig for projects using version 2.0.0-alpha or later (#1...
• 35b2c56 containers: Add container and test Containers interceptOutboundHttp (#12649)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[cloudflare-workers-and-pages]

Deploying puff-serverless with    Cloudflare Pages

Latest commit:	2b38a13
Status:	✅  Deploy successful!
Preview URL:	https://930ce81a.puff-serverless.pages.dev
Branch Preview URL:	https://dependabot-npm-and-yarn-npm-7ct0.puff-serverless.pages.dev

View logs