@cloudflare/vite-plugin 1.34.0 → 1.36.0

package/dist/index.mjs

@@ -1,9 +1,9 @@
 import { builtinModules, createRequire } from "node:module";
 import assert from "node:assert";
-import { CoreHeaders, CorePaths, Log, LogLevel, Miniflare, Request as Request$1, Response as Response$1, buildPublicUrl, coupleWebSocket, getDefaultDevRegistryPath, getNodeCompat, getWorkerRegistry, kUnsafeEphemeralUniqueKey } from "miniflare";
+import { CoreHeaders, CorePaths, Log, LogLevel, Miniflare, Request as Request$1, Response as Response$1, buildPublicUrl, coupleWebSocket, getDefaultDevRegistryPath, getNodeCompat, getWorkerRegistry, kUnsafeEphemeralUniqueKey, parseModuleFallbackRequest } from "miniflare";
 import * as wrangler from "wrangler";
 import * as nodePath from "node:path";
-import path3, { dirname, isAbsolute, join, relative, resolve } from "node:path";
+import path, { dirname, isAbsolute, join, relative, resolve } from "node:path";
 import * as util$1 from "node:util";
 import { format, inspect, promisify } from "node:util";
 import * as vite from "vite";
@@ -24,7 +24,7 @@ import v8 from "node:v8";
 import { defineEnv } from "unenv";
 import * as nativeFs$1 from "fs";
 import nativeFs from "fs";
-import path, { basename, dirname as dirname$1, normalize, posix, relative as relative$1, resolve as resolve$1, sep } from "path";
+import path$1, { basename, dirname as dirname$1, normalize, posix, relative as relative$1, resolve as resolve$1, sep } from "path";
 import { fileURLToPath as fileURLToPath$1 } from "url";
 import { createRequire as createRequire$1 } from "module";
 import { WebSocketServer } from "ws";
@@ -1503,7 +1503,7 @@ async function assertWranglerVersion() {
 * The default compatibility date to use when the user omits one.
 * This value is injected at build time and remains fixed for each release.
 */
-const DEFAULT_COMPAT_DATE = "2026-04-28";
+const DEFAULT_COMPAT_DATE = "2026-05-05";
 
 //#endregion
 //#region ../../node_modules/.pnpm/@remix-run+node-fetch-server@0.8.0/node_modules/@remix-run/node-fetch-server/dist/node-fetch-server.js
@@ -1997,7 +1997,7 @@ var MetricsRegistry = class {
 };
 
 //#endregion
-//#region ../workers-utils/dist/chunk-A4F3D336.mjs
+//#region ../workers-utils/dist/chunk-XXCQEG76.mjs
 var UserError = class extends Error {
 	static {
 		__name(this, "UserError");
@@ -2006,7 +2006,7 @@ var UserError = class extends Error {
 	constructor(message, options) {
 		super(message, options);
 		Object.setPrototypeOf(this, new.target.prototype);
-		this.telemetryMessage = options?.telemetryMessage === true ? message : options?.telemetryMessage;
+		this.telemetryMessage = typeof options?.telemetryMessage === "string" ? options.telemetryMessage : options?.telemetryMessage ? message : void 0;
 	}
 };
 var DeprecationError = class extends UserError {
@@ -2019,13 +2019,14 @@ ${message}`, options);
 	}
 };
 var FatalError = class extends UserError {
-	constructor(message, code, options) {
-		super(message, options);
-		this.code = code;
-	}
 	static {
 		__name(this, "FatalError");
 	}
+	code;
+	constructor(message, options) {
+		super(message, options);
+		this.code = options.code;
+	}
 };
 var CommandLineArgsError = class extends UserError {
 	static {
@@ -2033,10 +2034,6 @@ var CommandLineArgsError = class extends UserError {
 	}
 };
 var JsonFriendlyFatalError = class extends FatalError {
-	constructor(message, code, options) {
-		super(message, code, options);
-		this.code = code;
-	}
 	static {
 		__name(this, "JsonFriendlyFatalError");
 	}
@@ -2051,9 +2048,9 @@ var MissingConfigError = class extends Error {
 		this.telemetryMessage = `Missing config value for ${key}`;
 	}
 };
-function createFatalError(message, isJson, code, telemetryMessage) {
-	if (isJson) return new JsonFriendlyFatalError(JSON.stringify(message), code, telemetryMessage);
-	else return new FatalError(`${message}`, code, telemetryMessage);
+function createFatalError(message, isJson, options) {
+	if (isJson) return new JsonFriendlyFatalError(JSON.stringify(message), options);
+	return new FatalError(`${message}`, options);
 }
 __name(createFatalError, "createFatalError");
 function createScanner(text, ignoreTrivia = false) {
@@ -4073,7 +4070,8 @@ function readFileSyncToBuffer(file2) {
 		const { message } = err;
 		throw new ParseError({
 			text: `Could not read file: ${file2}`,
-			notes: [{ text: message.replace(file2, resolve(file2)) }]
+			notes: [{ text: message.replace(file2, resolve(file2)) }],
+			telemetryMessage: false
 		});
 	}
 }
@@ -4332,7 +4330,7 @@ function resolveWranglerConfigPath({ config, script }, options) {
 		deployConfigPath: void 0,
 		redirected: false
 	};
-	return findWranglerConfig$1(script !== void 0 ? path3.dirname(script) : process.cwd(), options);
+	return findWranglerConfig$1(script !== void 0 ? path.dirname(script) : process.cwd(), options);
 }
 __name(resolveWranglerConfigPath, "resolveWranglerConfigPath");
 function findWranglerConfig$1(referencePath = process.cwd(), { useRedirectIfAvailable = false } = {}) {
@@ -4363,28 +4361,31 @@ function findRedirectedWranglerConfig(cwd, userConfigPath) {
 	const deployConfigFile = readFileSync$1(deployConfigPath);
 	try {
 		const deployConfig = parseJSONC(deployConfigFile, deployConfigPath);
-		redirectedConfigPath = deployConfig.configPath && path3.resolve(path3.dirname(deployConfigPath), deployConfig.configPath);
+		redirectedConfigPath = deployConfig.configPath && path.resolve(path.dirname(deployConfigPath), deployConfig.configPath);
 	} catch (e) {
-		throw new UserError(`Failed to parse the deploy configuration file at ${path3.relative(".", deployConfigPath)}`, { cause: e });
+		throw new UserError(`Failed to parse the deploy configuration file at ${path.relative(".", deployConfigPath)}`, {
+			cause: e,
+			telemetryMessage: false
+		});
 	}
 	if (!redirectedConfigPath) throw new UserError(esm_default`
-			A deploy configuration file was found at "${path3.relative(".", deployConfigPath)}".
+			A deploy configuration file was found at "${path.relative(".", deployConfigPath)}".
 			But this is not valid - the required "configPath" property was not found.
 			Instead this file contains:
 			\`\`\`
 			${deployConfigFile}
 			\`\`\`
-		`);
+		`, { telemetryMessage: false });
 	if (!existsSync(redirectedConfigPath)) throw new UserError(esm_default`
-				There is a deploy configuration at "${path3.relative(".", deployConfigPath)}".
-				But the redirected configuration path it points to, "${path3.relative(".", redirectedConfigPath)}", does not exist.
-			`);
+				There is a deploy configuration at "${path.relative(".", deployConfigPath)}".
+				But the redirected configuration path it points to, "${path.relative(".", redirectedConfigPath)}", does not exist.
+			`, { telemetryMessage: false });
 	if (userConfigPath) {
-		if (path3.join(path3.dirname(userConfigPath), PATH_TO_DEPLOY_CONFIG) !== deployConfigPath) throw new UserError(esm_default`
-					Found both a user configuration file at "${path3.relative(".", userConfigPath)}"
-					and a deploy configuration file at "${path3.relative(".", deployConfigPath)}".
+		if (path.join(path.dirname(userConfigPath), PATH_TO_DEPLOY_CONFIG) !== deployConfigPath) throw new UserError(esm_default`
+					Found both a user configuration file at "${path.relative(".", userConfigPath)}"
+					and a deploy configuration file at "${path.relative(".", deployConfigPath)}".
 					But these do not share the same base path so it is not clear which should be used.
-				`);
+				`, { telemetryMessage: false });
 	}
 	return {
 		configPath: redirectedConfigPath,
@@ -5591,10 +5592,10 @@ var require_util$5 = /* @__PURE__ */ __commonJS$1({ "../../node_modules/.pnpm/un
 			if (!isHttpOrHttpsPrefixed(url.origin || url.protocol)) throw new InvalidArgumentError$36("Invalid URL protocol: the URL must start with `http:` or `https:`.");
 			const port = url.port != null ? url.port : url.protocol === "https:" ? 443 : 80;
 			let origin = url.origin != null ? url.origin : `${url.protocol || ""}//${url.hostname || ""}:${port}`;
-			let path$1 = url.path != null ? url.path : `${url.pathname || ""}${url.search || ""}`;
+			let path$2 = url.path != null ? url.path : `${url.pathname || ""}${url.search || ""}`;
 			if (origin[origin.length - 1] === "/") origin = origin.slice(0, origin.length - 1);
-			if (path$1 && path$1[0] !== "/") path$1 = `/${path$1}`;
-			return new URL(`${origin}${path$1}`);
+			if (path$2 && path$2[0] !== "/") path$2 = `/${path$2}`;
+			return new URL(`${origin}${path$2}`);
 		}
 		if (!isHttpOrHttpsPrefixed(url.origin || url.protocol)) throw new InvalidArgumentError$36("Invalid URL protocol: the URL must start with `http:` or `https:`.");
 		return url;
@@ -6469,8 +6470,8 @@ var require_diagnostics = /* @__PURE__ */ __commonJS$1({ "../../node_modules/.pn
 			debugLog("connection to %s%s using %s%s errored - %s", host, port ? `:${port}` : "", protocol, version$2, error.message);
 		});
 		diagnosticsChannel$1.subscribe("undici:client:sendHeaders", (evt) => {
-			const { request: { method, path: path$1, origin } } = evt;
-			debugLog("sending request to %s %s%s", method, origin, path$1);
+			const { request: { method, path: path$2, origin } } = evt;
+			debugLog("sending request to %s %s%s", method, origin, path$2);
 		});
 	}
 	let isTrackingRequestEvents = false;
@@ -6482,16 +6483,16 @@ var require_diagnostics = /* @__PURE__ */ __commonJS$1({ "../../node_modules/.pn
 		}
 		isTrackingRequestEvents = true;
 		diagnosticsChannel$1.subscribe("undici:request:headers", (evt) => {
-			const { request: { method, path: path$1, origin }, response: { statusCode } } = evt;
-			debugLog("received response to %s %s%s - HTTP %d", method, origin, path$1, statusCode);
+			const { request: { method, path: path$2, origin }, response: { statusCode } } = evt;
+			debugLog("received response to %s %s%s - HTTP %d", method, origin, path$2, statusCode);
 		});
 		diagnosticsChannel$1.subscribe("undici:request:trailers", (evt) => {
-			const { request: { method, path: path$1, origin } } = evt;
-			debugLog("trailers received from %s %s%s", method, origin, path$1);
+			const { request: { method, path: path$2, origin } } = evt;
+			debugLog("trailers received from %s %s%s", method, origin, path$2);
 		});
 		diagnosticsChannel$1.subscribe("undici:request:error", (evt) => {
-			const { request: { method, path: path$1, origin }, error } = evt;
-			debugLog("request to %s %s%s errored - %s", method, origin, path$1, error.message);
+			const { request: { method, path: path$2, origin }, error } = evt;
+			debugLog("request to %s %s%s errored - %s", method, origin, path$2, error.message);
 		});
 	}
 	let isTrackingWebSocketEvents = false;
@@ -6544,10 +6545,10 @@ var require_request$1 = /* @__PURE__ */ __commonJS$1({ "../../node_modules/.pnpm
 	const invalidPathRegex = /[^\u0021-\u00ff]/;
 	const kHandler = Symbol("handler");
 	var Request$6 = class {
-		constructor(origin, { path: path$1, method, body, headers, query, idempotent, blocking, upgrade: upgrade$1, headersTimeout, bodyTimeout, reset, expectContinue, servername, throwOnError, maxRedirections, typeOfService }, handler) {
-			if (typeof path$1 !== "string") throw new InvalidArgumentError$35("path must be a string");
-			else if (path$1[0] !== "/" && !(path$1.startsWith("http://") || path$1.startsWith("https://")) && method !== "CONNECT") throw new InvalidArgumentError$35("path must be an absolute URL or start with a slash");
-			else if (invalidPathRegex.test(path$1)) throw new InvalidArgumentError$35("invalid request path");
+		constructor(origin, { path: path$2, method, body, headers, query, idempotent, blocking, upgrade: upgrade$1, headersTimeout, bodyTimeout, reset, expectContinue, servername, throwOnError, maxRedirections, typeOfService }, handler) {
+			if (typeof path$2 !== "string") throw new InvalidArgumentError$35("path must be a string");
+			else if (path$2[0] !== "/" && !(path$2.startsWith("http://") || path$2.startsWith("https://")) && method !== "CONNECT") throw new InvalidArgumentError$35("path must be an absolute URL or start with a slash");
+			else if (invalidPathRegex.test(path$2)) throw new InvalidArgumentError$35("invalid request path");
 			if (typeof method !== "string") throw new InvalidArgumentError$35("method must be a string");
 			else if (normalizedMethodRecords$1[method] === void 0 && !isValidHTTPToken$2(method)) throw new InvalidArgumentError$35("invalid request method");
 			if (upgrade$1 && typeof upgrade$1 !== "string") throw new InvalidArgumentError$35("upgrade must be a string");
@@ -6588,7 +6589,7 @@ var require_request$1 = /* @__PURE__ */ __commonJS$1({ "../../node_modules/.pnpm
 			this.completed = false;
 			this.aborted = false;
 			this.upgrade = upgrade$1 || null;
-			this.path = query ? serializePathWithQuery$3(path$1, query) : path$1;
+			this.path = query ? serializePathWithQuery$3(path$2, query) : path$2;
 			this.origin = origin;
 			this.protocol = getProtocolFromUrlString(origin);
 			this.idempotent = idempotent == null ? method === "HEAD" || method === "GET" : idempotent;
@@ -11071,7 +11072,7 @@ var require_client_h1 = /* @__PURE__ */ __commonJS$1({ "../../node_modules/.pnpm
 	* @returns
 	*/
 	function writeH1(client, request$2) {
-		const { method, path: path$1, host, upgrade: upgrade$1, blocking, reset } = request$2;
+		const { method, path: path$2, host, upgrade: upgrade$1, blocking, reset } = request$2;
 		let { body, headers, contentLength } = request$2;
 		const expectsPayload = method === "PUT" || method === "POST" || method === "PATCH" || method === "QUERY" || method === "PROPFIND" || method === "PROPPATCH";
 		if (util$23.isFormDataLike(body)) {
@@ -11116,7 +11117,7 @@ var require_client_h1 = /* @__PURE__ */ __commonJS$1({ "../../node_modules/.pnpm
 		if (client[kMaxRequests$1] && socket[kCounter$1]++ >= client[kMaxRequests$1]) socket[kReset$1] = true;
 		if (blocking) socket[kBlocking] = true;
 		if (socket.setTypeOfService) socket.setTypeOfService(request$2.typeOfService);
-		let header = `${method} ${path$1} HTTP/1.1\r\n`;
+		let header = `${method} ${path$2} HTTP/1.1\r\n`;
 		if (typeof host === "string") header += `host: ${host}\r\n`;
 		else header += client[kHostHeader$1];
 		if (upgrade$1) header += `connection: upgrade\r\nupgrade: ${upgrade$1}\r\n`;
@@ -11652,7 +11653,7 @@ var require_client_h2 = /* @__PURE__ */ __commonJS$1({ "../../node_modules/.pnpm
 	function writeH2(client, request$2) {
 		const requestTimeout = request$2.bodyTimeout ?? client[kBodyTimeout$1];
 		const session = client[kHTTP2Session];
-		const { method, path: path$1, host, upgrade: upgrade$1, expectContinue, signal, protocol, headers: reqHeaders } = request$2;
+		const { method, path: path$2, host, upgrade: upgrade$1, expectContinue, signal, protocol, headers: reqHeaders } = request$2;
 		let { body } = request$2;
 		if (upgrade$1 != null && upgrade$1 !== "websocket") {
 			util$22.errorRequest(client, request$2, new InvalidArgumentError$30(`Custom upgrade "${upgrade$1}" not supported over HTTP/2`));
@@ -11705,7 +11706,7 @@ var require_client_h2 = /* @__PURE__ */ __commonJS$1({ "../../node_modules/.pnpm
 				}
 				headers[HTTP2_HEADER_METHOD] = "CONNECT";
 				headers[HTTP2_HEADER_PROTOCOL] = "websocket";
-				headers[HTTP2_HEADER_PATH] = path$1;
+				headers[HTTP2_HEADER_PATH] = path$2;
 				if (protocol === "ws:" || protocol === "wss:") headers[HTTP2_HEADER_SCHEME] = protocol === "ws:" ? "http" : "https";
 				else headers[HTTP2_HEADER_SCHEME] = protocol === "http:" ? "http" : "https";
 				stream$2 = session.request(headers, {
@@ -11747,7 +11748,7 @@ var require_client_h2 = /* @__PURE__ */ __commonJS$1({ "../../node_modules/.pnpm
 			stream$2.setTimeout(requestTimeout);
 			return true;
 		}
-		headers[HTTP2_HEADER_PATH] = path$1;
+		headers[HTTP2_HEADER_PATH] = path$2;
 		headers[HTTP2_HEADER_SCHEME] = protocol === "http:" ? "http" : "https";
 		const expectsPayload = method === "PUT" || method === "POST" || method === "PATCH";
 		if (body && typeof body.read === "function") body.read(0);
@@ -13573,8 +13574,8 @@ var require_proxy_agent = /* @__PURE__ */ __commonJS$1({ "../../node_modules/.pn
 				}
 				if (onHeaders) onHeaders.call(this, statusCode, data$1, resume$1);
 			};
-			const { origin, path: path$1 = "/", headers = {} } = opts;
-			opts.path = origin + path$1;
+			const { origin, path: path$2 = "/", headers = {} } = opts;
+			opts.path = origin + path$2;
 			if (!("host" in headers) && !("Host" in headers)) {
 				const { host } = new URL(origin);
 				headers.host = host;
@@ -15358,16 +15359,16 @@ var require_mock_utils = /* @__PURE__ */ __commonJS$1({ "../../node_modules/.pnp
 		}
 		return normalizedQp;
 	}
-	function safeUrl(path$1) {
-		if (typeof path$1 !== "string") return path$1;
-		const pathSegments = path$1.split("?", 3);
-		if (pathSegments.length !== 2) return path$1;
+	function safeUrl(path$2) {
+		if (typeof path$2 !== "string") return path$2;
+		const pathSegments = path$2.split("?", 3);
+		if (pathSegments.length !== 2) return path$2;
 		const qp = new URLSearchParams(pathSegments.pop());
 		qp.sort();
 		return [...pathSegments, qp.toString()].join("?");
 	}
-	function matchKey(mockDispatch$1, { path: path$1, method, body, headers }) {
-		const pathMatch = matchValue$1(mockDispatch$1.path, path$1);
+	function matchKey(mockDispatch$1, { path: path$2, method, body, headers }) {
+		const pathMatch = matchValue$1(mockDispatch$1.path, path$2);
 		const methodMatch = matchValue$1(mockDispatch$1.method, method);
 		const bodyMatch = typeof mockDispatch$1.body !== "undefined" ? matchValue$1(mockDispatch$1.body, body) : true;
 		const headersMatch = matchHeaders(mockDispatch$1, headers);
@@ -15385,8 +15386,8 @@ var require_mock_utils = /* @__PURE__ */ __commonJS$1({ "../../node_modules/.pnp
 		const basePath = key.query ? serializePathWithQuery$2(key.path, key.query) : key.path;
 		const resolvedPath = typeof basePath === "string" ? safeUrl(basePath) : basePath;
 		const resolvedPathWithoutTrailingSlash = removeTrailingSlash(resolvedPath);
-		let matchedMockDispatches = mockDispatches.filter(({ consumed }) => !consumed).filter(({ path: path$1, ignoreTrailingSlash }) => {
-			return ignoreTrailingSlash ? matchValue$1(removeTrailingSlash(safeUrl(path$1)), resolvedPathWithoutTrailingSlash) : matchValue$1(safeUrl(path$1), resolvedPath);
+		let matchedMockDispatches = mockDispatches.filter(({ consumed }) => !consumed).filter(({ path: path$2, ignoreTrailingSlash }) => {
+			return ignoreTrailingSlash ? matchValue$1(removeTrailingSlash(safeUrl(path$2)), resolvedPathWithoutTrailingSlash) : matchValue$1(safeUrl(path$2), resolvedPath);
 		});
 		if (matchedMockDispatches.length === 0) throw new MockNotMatchedError(`Mock dispatch not matched for path '${resolvedPath}'`);
 		matchedMockDispatches = matchedMockDispatches.filter(({ method }) => matchValue$1(method, key.method));
@@ -15429,15 +15430,15 @@ var require_mock_utils = /* @__PURE__ */ __commonJS$1({ "../../node_modules/.pnp
 	/**
 	* @param {string} path Path to remove trailing slash from
 	*/
-	function removeTrailingSlash(path$1) {
-		while (path$1.endsWith("/")) path$1 = path$1.slice(0, -1);
-		if (path$1.length === 0) path$1 = "/";
-		return path$1;
+	function removeTrailingSlash(path$2) {
+		while (path$2.endsWith("/")) path$2 = path$2.slice(0, -1);
+		if (path$2.length === 0) path$2 = "/";
+		return path$2;
 	}
 	function buildKey$1(opts) {
-		const { path: path$1, method, body, headers, query } = opts;
+		const { path: path$2, method, body, headers, query } = opts;
 		return {
-			path: path$1,
+			path: path$2,
 			method,
 			body,
 			headers,
@@ -16004,10 +16005,10 @@ var require_pending_interceptors_formatter = /* @__PURE__ */ __commonJS$1({ "../
 			});
 		}
 		format(pendingInterceptors) {
-			const withPrettyHeaders = pendingInterceptors.map(({ method, path: path$1, data: { statusCode }, persist, times, timesInvoked, origin }) => ({
+			const withPrettyHeaders = pendingInterceptors.map(({ method, path: path$2, data: { statusCode }, persist, times, timesInvoked, origin }) => ({
 				Method: method,
 				Origin: origin,
-				Path: path$1,
+				Path: path$2,
 				"Status code": statusCode,
 				Persistent: persist ? PERSISTENT : NOT_PERSISTENT,
 				Invocations: timesInvoked,
@@ -16065,8 +16066,8 @@ var require_mock_agent = /* @__PURE__ */ __commonJS$1({ "../../node_modules/.pnp
 			const acceptNonStandardSearchParameters = this[kMockAgentAcceptsNonStandardSearchParameters];
 			const dispatchOpts = { ...opts };
 			if (acceptNonStandardSearchParameters && dispatchOpts.path) {
-				const [path$1, searchParams] = dispatchOpts.path.split("?");
-				dispatchOpts.path = `${path$1}?${normalizeSearchParams(searchParams, acceptNonStandardSearchParameters)}`;
+				const [path$2, searchParams] = dispatchOpts.path.split("?");
+				dispatchOpts.path = `${path$2}?${normalizeSearchParams(searchParams, acceptNonStandardSearchParameters)}`;
 			}
 			return this[kAgent].dispatch(dispatchOpts, handler);
 		}
@@ -16543,10 +16544,10 @@ var require_snapshot_recorder = /* @__PURE__ */ __commonJS$1({ "../../node_modul
 		* @return {Promise<void>} - Resolves when snapshots are loaded
 		*/
 		async loadSnapshots(filePath) {
-			const path$1 = filePath || this.#snapshotPath;
-			if (!path$1) throw new InvalidArgumentError$6("Snapshot path is required");
+			const path$2 = filePath || this.#snapshotPath;
+			if (!path$2) throw new InvalidArgumentError$6("Snapshot path is required");
 			try {
-				const data$1 = await readFile(resolve$3(path$1), "utf8");
+				const data$1 = await readFile(resolve$3(path$2), "utf8");
 				const parsed = JSON.parse(data$1);
 				if (Array.isArray(parsed)) {
 					this.#snapshots.clear();
@@ -16554,7 +16555,7 @@ var require_snapshot_recorder = /* @__PURE__ */ __commonJS$1({ "../../node_modul
 				} else this.#snapshots = new Map(Object.entries(parsed));
 			} catch (error) {
 				if (error.code === "ENOENT") this.#snapshots.clear();
-				else throw new UndiciError$1(`Failed to load snapshots from ${path$1}`, { cause: error });
+				else throw new UndiciError$1(`Failed to load snapshots from ${path$2}`, { cause: error });
 			}
 		}
 		/**
@@ -16564,9 +16565,9 @@ var require_snapshot_recorder = /* @__PURE__ */ __commonJS$1({ "../../node_modul
 		* @returns {Promise<void>} - Resolves when snapshots are saved
 		*/
 		async saveSnapshots(filePath) {
-			const path$1 = filePath || this.#snapshotPath;
-			if (!path$1) throw new InvalidArgumentError$6("Snapshot path is required");
-			const resolvedPath = resolve$3(path$1);
+			const path$2 = filePath || this.#snapshotPath;
+			if (!path$2) throw new InvalidArgumentError$6("Snapshot path is required");
+			const resolvedPath = resolve$3(path$2);
 			await mkdir(dirname$2(resolvedPath), { recursive: true });
 			const data$1 = Array.from(this.#snapshots.entries()).map(([hash, snapshot]) => ({
 				hash,
@@ -17133,11 +17134,11 @@ var require_redirect_handler = /* @__PURE__ */ __commonJS$1({ "../../node_module
 				return;
 			}
 			const { origin, pathname, search } = util$10.parseURL(new URL(this.location, this.opts.origin && new URL(this.opts.path, this.opts.origin)));
-			const path$1 = search ? `${pathname}${search}` : pathname;
-			const redirectUrlString = `${origin}${path$1}`;
+			const path$2 = search ? `${pathname}${search}` : pathname;
+			const redirectUrlString = `${origin}${path$2}`;
 			for (const historyUrl of this.history) if (historyUrl.toString() === redirectUrlString) throw new InvalidArgumentError$3(`Redirect loop detected. Cannot redirect to ${origin}. This typically happens when using a Client or Pool with cross-origin redirects. Use an Agent for cross-origin redirects.`);
 			this.opts.headers = cleanRequestHeaders(this.opts.headers, statusCode === 303, this.opts.origin !== origin);
-			this.opts.path = path$1;
+			this.opts.path = path$2;
 			this.opts.origin = origin;
 			this.opts.query = null;
 		}
@@ -22095,10 +22096,10 @@ var require_fetch = /* @__PURE__ */ __commonJS$1({ "../../node_modules/.pnpm/und
 			const url = requestCurrentURL(request$2);
 			/** @type {import('../../..').Agent} */
 			const agent = fetchParams.controller.dispatcher;
-			const path$1 = url.pathname + url.search;
+			const path$2 = url.pathname + url.search;
 			const hasTrailingQuestionMark = url.search.length === 0 && url.href[url.href.length - url.hash.length - 1] === "?";
 			return new Promise((resolve$4, reject) => agent.dispatch({
-				path: hasTrailingQuestionMark ? `${path$1}?` : path$1,
+				path: hasTrailingQuestionMark ? `${path$2}?` : path$2,
 				origin: url.origin,
 				method: request$2.method,
 				body: agent.isMockActive ? request$2.body && (request$2.body.source || request$2.body.stream) : body,
@@ -22880,9 +22881,9 @@ var require_util$2 = /* @__PURE__ */ __commonJS$1({ "../../node_modules/.pnpm/un
 	* path-value        = <any CHAR except CTLs or ";">
 	* @param {string} path
 	*/
-	function validateCookiePath(path$1) {
-		for (let i$1 = 0; i$1 < path$1.length; ++i$1) {
-			const code = path$1.charCodeAt(i$1);
+	function validateCookiePath(path$2) {
+		for (let i$1 = 0; i$1 < path$2.length; ++i$1) {
+			const code = path$2.charCodeAt(i$1);
 			if (code < 32 || code === 127 || code === 59) throw new Error("Invalid cookie path");
 		}
 	}
@@ -25990,9 +25991,9 @@ var require_undici = /* @__PURE__ */ __commonJS$1({ "../../node_modules/.pnpm/un
 			if (opts != null && typeof opts !== "object") throw new InvalidArgumentError("invalid opts");
 			if (opts && opts.path != null) {
 				if (typeof opts.path !== "string") throw new InvalidArgumentError("invalid opts.path");
-				let path$1 = opts.path;
-				if (!opts.path.startsWith("/")) path$1 = `/${path$1}`;
-				url = new URL(util$3.parseOrigin(url).origin + path$1);
+				let path$2 = opts.path;
+				if (!opts.path.startsWith("/")) path$2 = `/${path$2}`;
+				url = new URL(util$3.parseOrigin(url).origin + path$2);
 			} else {
 				if (!opts) opts = typeof url === "object" ? url : {};
 				url = util$3.parseURL(url);
@@ -30368,7 +30369,7 @@ __reExport(mod_esm_exports, __toESM(require_mod_cjs3(), 1));
 var mod_esm_default = import_mod_cjs.default;
 function getGlobalWranglerConfigPath() {
 	const configDir = mod_esm_default(".wrangler").config();
-	const legacyConfigDir = path3.join(os.homedir(), ".wrangler");
+	const legacyConfigDir = path.join(os.homedir(), ".wrangler");
 	if (isDirectory(legacyConfigDir)) return legacyConfigDir;
 	else return configDir;
 }
@@ -30379,7 +30380,7 @@ function getBooleanEnvironmentVariableFactory(options) {
 		switch (process.env[options.variableName]?.toLowerCase()) {
 			case "true": return true;
 			case "false": return false;
-			default: throw new UserError(`Expected ${options.variableName} to be "true" or "false", but got ${JSON.stringify(process.env[options.variableName])}`);
+			default: throw new UserError(`Expected ${options.variableName} to be "true" or "false", but got ${JSON.stringify(process.env[options.variableName])}`, { telemetryMessage: false });
 		}
 	};
 }
@@ -30405,7 +30406,7 @@ function getProcessEnv(variableName, choices) {
 }
 __name(getProcessEnv, "getProcessEnv");
 function assertOneOf(choices, value) {
-	if (Array.isArray(choices) && !choices.includes(value)) throw new UserError(`Expected ${JSON.stringify(value)} to be one of ${JSON.stringify(choices)}`);
+	if (Array.isArray(choices) && !choices.includes(value)) throw new UserError(`Expected ${JSON.stringify(value)} to be one of ${JSON.stringify(choices)}`, { telemetryMessage: false });
 }
 __name(assertOneOf, "assertOneOf");
 var getC3CommandFromEnv = getEnvironmentVariableFactory({
@@ -30429,7 +30430,7 @@ var getCloudflareComplianceRegion = /* @__PURE__ */ __name((complianceConfig) =>
 			The compliance region has been set to different values in two places:
 			 - \`CLOUDFLARE_COMPLIANCE_REGION\` environment variable: \`${complianceRegionFromEnv}\`
 			 - \`compliance_region\` configuration property: \`${complianceConfig.compliance_region}\`
-			`);
+			`, { telemetryMessage: false });
 	return complianceRegionFromEnv || complianceConfig?.compliance_region || "public";
 }, "getCloudflareComplianceRegion");
 var getCloudflareApiBaseUrlFromEnv = getEnvironmentVariableFactory({
@@ -30464,7 +30465,7 @@ var getBuildPlatformFromEnv = getEnvironmentVariableFactory({ variableName: "WRA
 var getRegistryPath = getEnvironmentVariableFactory({
 	variableName: "WRANGLER_REGISTRY_PATH",
 	defaultValue() {
-		return path3.join(getGlobalWranglerConfigPath(), "registry");
+		return path.join(getGlobalWranglerConfigPath(), "registry");
 	}
 });
 var getD1ExtraLocationChoices = getEnvironmentVariableFactory({ variableName: "WRANGLER_D1_EXTRA_LOCATION_CHOICES" });
@@ -30876,7 +30877,7 @@ function isPagesConfig(rawConfig) {
 }
 __name(isPagesConfig, "isPagesConfig");
 function normalizeAndValidateConfig(rawConfig, configPath, userConfigPath, args, preserveOriginalMain = false) {
-	const diagnostics = new Diagnostics(`Processing ${configPath ? path3.relative(process.cwd(), configPath) : "wrangler"} configuration:`);
+	const diagnostics = new Diagnostics(`Processing ${configPath ? path.relative(process.cwd(), configPath) : "wrangler"} configuration:`);
 	validateOptionalProperty(diagnostics, "", "legacy_env", rawConfig.legacy_env, "boolean");
 	validateOptionalProperty(diagnostics, "", "send_metrics", rawConfig.send_metrics, "boolean");
 	validateOptionalProperty(diagnostics, "", "keep_vars", rawConfig.keep_vars, "boolean");
@@ -30967,7 +30968,7 @@ function applyPythonConfig(config, args) {
 			type: "PythonModule",
 			globs: ["**/*.py"]
 		});
-		if (!config.compatibility_flags.includes("python_workers")) throw new UserError("The `python_workers` compatibility flag is required to use Python.");
+		if (!config.compatibility_flags.includes("python_workers")) throw new UserError("The `python_workers` compatibility flag is required to use Python.", { telemetryMessage: false });
 	}
 }
 __name(applyPythonConfig, "applyPythonConfig");
@@ -30980,34 +30981,34 @@ function normalizeAndValidateBuild(diagnostics, rawEnv, rawBuild, configPath) {
 	else validateOptionalProperty(diagnostics, "build", "watch_dir", watch_dir, "string");
 	return {
 		command,
-		watch_dir: command && configPath ? Array.isArray(watch_dir) ? watch_dir.map((dir) => path3.relative(process.cwd(), path3.join(path3.dirname(configPath), `${dir}`))) : path3.relative(process.cwd(), path3.join(path3.dirname(configPath), `${watch_dir}`)) : watch_dir,
+		watch_dir: command && configPath ? Array.isArray(watch_dir) ? watch_dir.map((dir) => path.relative(process.cwd(), path.join(path.dirname(configPath), `${dir}`))) : path.relative(process.cwd(), path.join(path.dirname(configPath), `${watch_dir}`)) : watch_dir,
 		cwd
 	};
 }
 __name(normalizeAndValidateBuild, "normalizeAndValidateBuild");
 function normalizeAndValidateMainField(configPath, rawMain) {
-	const configDir = path3.dirname(configPath ?? "wrangler.toml");
+	const configDir = path.dirname(configPath ?? "wrangler.toml");
 	if (rawMain !== void 0) if (typeof rawMain === "string") {
-		const directory = path3.resolve(configDir);
-		return path3.resolve(directory, rawMain);
+		const directory = path.resolve(configDir);
+		return path.resolve(directory, rawMain);
 	} else return rawMain;
 	else return;
 }
 __name(normalizeAndValidateMainField, "normalizeAndValidateMainField");
 function normalizeAndValidateBaseDirField(configPath, rawDir) {
-	const configDir = path3.dirname(configPath ?? "wrangler.toml");
+	const configDir = path.dirname(configPath ?? "wrangler.toml");
 	if (rawDir !== void 0) if (typeof rawDir === "string") {
-		const directory = path3.resolve(configDir);
-		return path3.resolve(directory, rawDir);
+		const directory = path.resolve(configDir);
+		return path.resolve(directory, rawDir);
 	} else return rawDir;
 	else return;
 }
 __name(normalizeAndValidateBaseDirField, "normalizeAndValidateBaseDirField");
 function normalizeAndValidatePagesBuildOutputDir(configPath, rawPagesDir) {
-	const configDir = path3.dirname(configPath ?? "wrangler.toml");
+	const configDir = path.dirname(configPath ?? "wrangler.toml");
 	if (rawPagesDir !== void 0) if (typeof rawPagesDir === "string") {
-		const directory = path3.resolve(configDir);
-		return path3.resolve(directory, rawPagesDir);
+		const directory = path.resolve(configDir);
+		return path.resolve(directory, rawPagesDir);
 	} else return rawPagesDir;
 	else return;
 }
@@ -31060,7 +31061,7 @@ function normalizeAndValidateSite(diagnostics, configPath, rawConfig, mainEntryP
 		validateOptionalProperty(diagnostics, "site", "entry-point", rawConfig.site["entry-point"], "string");
 		deprecated(diagnostics, rawConfig, `site.entry-point`, `Delete the \`site.entry-point\` field, then add the top level \`main\` field to your configuration file:
 \`\`\`
-main = "${path3.join(String(rawConfig.site["entry-point"]) || "workers-site", path3.extname(String(rawConfig.site["entry-point"]) || "workers-site") ? "" : "index.js")}"
+main = "${path.join(String(rawConfig.site["entry-point"]) || "workers-site", path.extname(String(rawConfig.site["entry-point"]) || "workers-site") ? "" : "index.js")}"
 \`\`\``, false, void 0, "warning");
 		let siteEntryPoint = rawConfig.site["entry-point"];
 		if (!mainEntryPoint && !siteEntryPoint) {
@@ -31073,7 +31074,7 @@ main = "workers-site/index.js"
 		} else if (mainEntryPoint && siteEntryPoint) diagnostics.errors.push(`Don't define both the \`main\` and \`site.entry-point\` fields in your configuration.
 They serve the same purpose: to point to the entry-point of your worker.
 Delete the deprecated \`site.entry-point\` field from your config.`);
-		if (configPath && siteEntryPoint) siteEntryPoint = path3.relative(process.cwd(), path3.join(path3.dirname(configPath), siteEntryPoint));
+		if (configPath && siteEntryPoint) siteEntryPoint = path.relative(process.cwd(), path.join(path.dirname(configPath), siteEntryPoint));
 		return {
 			bucket,
 			"entry-point": siteEntryPoint,
@@ -31105,7 +31106,7 @@ function normalizeAndValidateModulePaths(diagnostics, configPath, field, rawMapp
 	if (rawMapping === void 0) return;
 	const mapping = {};
 	for (const [name, filePath] of Object.entries(rawMapping)) if (isString$2(diagnostics, `${field}['${name}']`, filePath, void 0)) {
-		if (configPath) mapping[name] = configPath ? path3.relative(process.cwd(), path3.join(path3.dirname(configPath), filePath)) : filePath;
+		if (configPath) mapping[name] = configPath ? path.relative(process.cwd(), path.join(path.dirname(configPath), filePath)) : filePath;
 	}
 	return mapping;
 }
@@ -31263,7 +31264,6 @@ var validateStreamingTailConsumers = /* @__PURE__ */ __name((diagnostics, field,
 function normalizeAndValidateEnvironment(diagnostics, configPath, rawEnv, isDispatchNamespace, preserveOriginalMain, envName = "top level", topLevelEnv, useServiceEnvironments, rawConfig) {
 	deprecated(diagnostics, rawEnv, "node_compat", `The "node_compat" field is no longer supported as of Wrangler v4. Instead, use the \`nodejs_compat\` compatibility flag. This includes the functionality from legacy \`node_compat\` polyfills and natively implemented Node.js APIs. See https://developers.cloudflare.com/workers/runtime-apis/nodejs for more information.`, true, "Removed", "error");
 	experimental(diagnostics, rawEnv, "unsafe");
-	experimental(diagnostics, rawEnv, "secrets");
 	const route = normalizeAndValidateRoute(diagnostics, topLevelEnv, rawEnv);
 	const account_id = inheritableInWranglerEnvironments(diagnostics, useServiceEnvironments, topLevelEnv, mutateEmptyStringAccountIDValue(diagnostics, rawEnv), "account_id", isString$2, void 0, void 0);
 	const routes = validateRoutes(diagnostics, topLevelEnv, rawEnv);
@@ -31354,7 +31354,7 @@ function normalizeAndValidateEnvironment(diagnostics, configPath, rawEnv, isDisp
 __name(normalizeAndValidateEnvironment, "normalizeAndValidateEnvironment");
 function validateAndNormalizeTsconfig(diagnostics, topLevelEnv, rawEnv, configPath) {
 	const tsconfig = inheritable(diagnostics, topLevelEnv, rawEnv, "tsconfig", isString$2, void 0);
-	return configPath && tsconfig ? path3.relative(process.cwd(), path3.join(path3.dirname(configPath), tsconfig)) : tsconfig;
+	return configPath && tsconfig ? path.relative(process.cwd(), path.join(path.dirname(configPath), tsconfig)) : tsconfig;
 }
 __name(validateAndNormalizeTsconfig, "validateAndNormalizeTsconfig");
 var validateAndNormalizeRules = /* @__PURE__ */ __name((diagnostics, topLevelEnv, rawEnv, envName) => {
@@ -31827,9 +31827,9 @@ function validateContainerApp(envName, topLevelName, configPath) {
 			let resolvedBuildContextPath = void 0;
 			try {
 				if (isDockerfile(resolvedImage, configPath)) {
-					const baseDir = configPath ? path3.dirname(configPath) : process.cwd();
-					resolvedImage = path3.resolve(baseDir, resolvedImage);
-					resolvedBuildContextPath = containerAppOptional.image_build_context ? path3.resolve(baseDir, containerAppOptional.image_build_context) : path3.dirname(resolvedImage);
+					const baseDir = configPath ? path.dirname(configPath) : process.cwd();
+					resolvedImage = path.resolve(baseDir, resolvedImage);
+					resolvedBuildContextPath = containerAppOptional.image_build_context ? path.resolve(baseDir, containerAppOptional.image_build_context) : path.dirname(resolvedImage);
 				}
 			} catch (err) {
 				if (err instanceof Error && err.message) diagnostics.errors.push(err.message);
@@ -32763,6 +32763,7 @@ var validatePreviewsConfig = /* @__PURE__ */ __name((envName) => (diagnostics, f
 		"secrets_store_secrets",
 		"artifacts",
 		"unsafe_hello_world",
+		"flagship",
 		"worker_loaders",
 		"ratelimits",
 		"vpc_services",
@@ -32798,6 +32799,7 @@ var validatePreviewsConfig = /* @__PURE__ */ __name((envName) => (diagnostics, f
 	isValid2 = validateBindingArray(envName, validateSecretsStoreSecretBinding)(diagnostics, `${field}.secrets_store_secrets`, previews.secrets_store_secrets, void 0) && isValid2;
 	isValid2 = validateBindingArray(envName, validateArtifactsBinding)(diagnostics, `${field}.artifacts`, previews.artifacts, void 0) && isValid2;
 	isValid2 = validateBindingArray(envName, validateHelloWorldBinding)(diagnostics, `${field}.unsafe_hello_world`, previews.unsafe_hello_world, void 0) && isValid2;
+	isValid2 = validateBindingArray(envName, validateFlagshipBinding)(diagnostics, `${field}.flagship`, previews.flagship, void 0) && isValid2;
 	isValid2 = validateBindingArray(envName, validateWorkerLoaderBinding)(diagnostics, `${field}.worker_loaders`, previews.worker_loaders, void 0) && isValid2;
 	isValid2 = validateBindingArray(envName, validateRateLimitBinding)(diagnostics, `${field}.ratelimits`, previews.ratelimits, void 0) && isValid2;
 	isValid2 = validateBindingArray(envName, validateVpcServiceBinding)(diagnostics, `${field}.vpc_services`, previews.vpc_services, void 0) && isValid2;
@@ -32963,10 +32965,10 @@ function isRemoteValid(targetObject, fieldPath, diagnostics) {
 }
 __name(isRemoteValid, "isRemoteValid");
 function isDockerfile(imagePath, configPath) {
-	const baseDir = configPath ? path3.dirname(configPath) : process.cwd();
-	const maybeDockerfile = path3.resolve(baseDir, imagePath);
+	const baseDir = configPath ? path.dirname(configPath) : process.cwd();
+	const maybeDockerfile = path.resolve(baseDir, imagePath);
 	if (fs.existsSync(maybeDockerfile)) {
-		if (isDirectory(maybeDockerfile)) throw new UserError(`${imagePath} is a directory, you should specify a path to the Dockerfile`);
+		if (isDirectory(maybeDockerfile)) throw new UserError(`${imagePath} is a directory, you should specify a path to the Dockerfile`, { telemetryMessage: false });
 		return true;
 	}
 	const errorPrefix = `The image "${imagePath}" does not appear to be a valid path to a Dockerfile, or a valid image registry path:
@@ -32974,12 +32976,12 @@ function isDockerfile(imagePath, configPath) {
 	try {
 		new URL(`https://${imagePath}`);
 	} catch (e2) {
-		if (e2 instanceof Error) throw new UserError(errorPrefix + e2.message);
+		if (e2 instanceof Error) throw new UserError(errorPrefix + e2.message, { telemetryMessage: false });
 		throw e2;
 	}
 	const imageParts = imagePath.split("/");
-	if (!imageParts[imageParts.length - 1]?.includes(":")) throw new UserError(errorPrefix + `If this is an image registry path, it needs to include at least a tag ':' (e.g: docker.io/httpd:1)`);
-	if (imagePath.includes("://")) throw new UserError(errorPrefix + `Image reference should not include the protocol part (e.g: docker.io/httpd:1, not https://docker.io/httpd:1)`);
+	if (!imageParts[imageParts.length - 1]?.includes(":")) throw new UserError(errorPrefix + `If this is an image registry path, it needs to include at least a tag ':' (e.g: docker.io/httpd:1)`, { telemetryMessage: false });
+	if (imagePath.includes("://")) throw new UserError(errorPrefix + `Image reference should not include the protocol part (e.g: docker.io/httpd:1, not https://docker.io/httpd:1)`, { telemetryMessage: false });
 	return false;
 }
 __name(isDockerfile, "isDockerfile");
@@ -33016,7 +33018,7 @@ var supportedPagesConfigFields = [
 ];
 function validatePagesConfig(config, envNames, projectName) {
 	if (!config.pages_build_output_dir) throw new FatalError(`Attempting to validate Pages configuration file, but "pages_build_output_dir" field was not found.
-		"pages_build_output_dir" is required for Pages projects.`);
+		"pages_build_output_dir" is required for Pages projects.`, { telemetryMessage: false });
 	const diagnostics = new Diagnostics(`Running configuration file validation for Pages:`);
 	validateMainField(config, diagnostics);
 	validateProjectName(projectName, diagnostics);
@@ -33082,7 +33084,7 @@ function getGoArch() {
 cloudflared supports: x64 (amd64), arm64, arm
 
 You can manually install cloudflared and set the CLOUDFLARED_PATH environment variable.
-Download instructions: https://developers.cloudflare.com/cloudflare-one/networks/connectors/cloudflare-tunnel/downloads/`);
+Download instructions: https://developers.cloudflare.com/cloudflare-one/networks/connectors/cloudflare-tunnel/downloads/`, { telemetryMessage: "tunnel cloudflared unsupported architecture" });
 	}
 }
 __name(getGoArch, "getGoArch");
@@ -33096,7 +33098,7 @@ function getGoOS() {
 cloudflared supports: darwin (macOS), linux, win32 (Windows)
 
 You can manually install cloudflared and set the CLOUDFLARED_PATH environment variable.
-Download instructions: https://developers.cloudflare.com/cloudflare-one/networks/connectors/cloudflare-tunnel/downloads/`);
+Download instructions: https://developers.cloudflare.com/cloudflare-one/networks/connectors/cloudflare-tunnel/downloads/`, { telemetryMessage: "tunnel cloudflared unsupported platform" });
 	}
 }
 __name(getGoOS, "getGoOS");
@@ -33150,7 +33152,7 @@ The update service did not return results for ${goOS}/${goArch},
 and the fallback query also failed.
 
 You can manually install cloudflared from:
-https://developers.cloudflare.com/cloudflare-one/networks/connectors/cloudflare-tunnel/downloads/`);
+https://developers.cloudflare.com/cloudflare-one/networks/connectors/cloudflare-tunnel/downloads/`, { telemetryMessage: "tunnel cloudflared version lookup failed" });
 	const version$2 = fallback.version;
 	const filename = getAssetFilename(goOS, goArch);
 	return {
@@ -33225,7 +33227,7 @@ You can try:
 		errorMessage += `  3. Manually installing cloudflared: https://developers.cloudflare.com/cloudflare-one/networks/connectors/cloudflare-tunnel/downloads/
 `;
 		errorMessage += `  4. Setting CLOUDFLARED_PATH to point to your cloudflared binary`;
-		throw new UserError(errorMessage);
+		throw new UserError(errorMessage, { telemetryMessage: "tunnel cloudflared validation failed" });
 	}
 }
 __name(validateBinary, "validateBinary");
@@ -33319,14 +33321,14 @@ async function downloadCloudflared(versionInfo, binPath, options) {
 Network error: ${e2 instanceof Error ? e2.message : String(e2)}
 
 Please check your internet connection and try again.
-If you're behind a proxy, make sure it's configured correctly.`);
+If you're behind a proxy, make sure it's configured correctly.`, { telemetryMessage: "tunnel cloudflared download network failed" });
 	}
 	if (!response.ok) throw new UserError(`[cloudflared] Failed to download cloudflared from ${url}
 
 HTTP ${response.status}: ${response.statusText}
 
 You can manually download cloudflared from:
-https://developers.cloudflare.com/cloudflare-one/networks/connectors/cloudflare-tunnel/downloads/`);
+https://developers.cloudflare.com/cloudflare-one/networks/connectors/cloudflare-tunnel/downloads/`, { telemetryMessage: "tunnel cloudflared download response failed" });
 	try {
 		if (compressed) await downloadAndExtractTarball(response, checksum, binPath, cacheDir);
 		else await downloadBinary(response, checksum, binPath);
@@ -33339,7 +33341,7 @@ https://developers.cloudflare.com/cloudflare-one/networks/connectors/cloudflare-
 
 Error: ${e2 instanceof Error ? e2.message : String(e2)}
 
-Please ensure you have write permissions to: ${cacheDir}`);
+Please ensure you have write permissions to: ${cacheDir}`, { telemetryMessage: "tunnel cloudflared save failed" });
 	}
 	if (process.platform !== "win32") chmodSync(binPath, 493);
 	logger?.log(`cloudflared ${version$2} installed`);
@@ -33354,7 +33356,7 @@ async function downloadAndExtractTarball(response, expectedChecksum, binPath, ca
 		if (actualSha256 !== expectedChecksum) throw new UserError(`[cloudflared] SHA256 mismatch for downloaded cloudflared tarball.
 
 Expected: ${expectedChecksum}
-Actual:   ${actualSha256}`);
+Actual:   ${actualSha256}`, { telemetryMessage: "tunnel cloudflared tarball checksum mismatch" });
 	}
 	writeFileSync(tempTarPath, buffer$1);
 	try {
@@ -33380,7 +33382,7 @@ async function downloadBinary(response, expectedChecksum, binPath) {
 		if (actualSha256 !== expectedChecksum) throw new UserError(`[cloudflared] SHA256 mismatch for downloaded cloudflared binary.
 
 Expected: ${expectedChecksum}
-Actual:   ${actualSha256}`);
+Actual:   ${actualSha256}`, { telemetryMessage: "tunnel cloudflared binary checksum mismatch" });
 	}
 	writeFileAtomic(binPath, buffer$1);
 }
@@ -33391,7 +33393,7 @@ async function getCloudflaredPath(options) {
 	if (envPath) {
 		if (!existsSync(envPath)) throw new UserError(`CLOUDFLARED_PATH is set to "${envPath}" but the file does not exist.
 
-Please ensure the path points to a valid cloudflared binary.`);
+Please ensure the path points to a valid cloudflared binary.`, { telemetryMessage: "tunnel cloudflared env path missing" });
 		logger?.debug(`Using cloudflared from CLOUDFLARED_PATH: ${envPath}`);
 		return envPath;
 	}
@@ -33417,7 +33419,7 @@ Please ensure the path points to a valid cloudflared binary.`);
 You can install it manually from:
 https://developers.cloudflare.com/cloudflare-one/networks/connectors/cloudflare-tunnel/downloads/
 
-Then either add it to your PATH or set CLOUDFLARED_PATH.`);
+Then either add it to your PATH or set CLOUDFLARED_PATH.`, { telemetryMessage: "tunnel cloudflared download declined" });
 	if (existsSync(binPath)) {
 		const cacheDir = removeCloudflaredCache(versionInfo.version);
 		if (cacheDir) logger?.log(`Removed cloudflared cache: ${cacheDir}`);
@@ -33623,7 +33625,7 @@ ${stderrOutput || "(no output)"}
 
 The local dev server started at ${origin.href}.
 ` + (isQuickTunnelRateLimited ? "Cloudflare Quick Tunnel creation was rate limited. Try again in a few minutes, or use a named tunnel if you need more reliable access." : `Check the cloudflared output above for more details, and verify that ${origin.href} is reachable from this machine if this keeps happening.`);
-	if (isQuickTunnelRateLimited) return new UserError(errorMessage);
+	if (isQuickTunnelRateLimited) return new UserError(errorMessage, { telemetryMessage: false });
 	return new Error(errorMessage);
 }
 __name(createTunnelStartupError, "createTunnelStartupError");
@@ -34089,8 +34091,8 @@ const postfixRE = /[?#].*$/;
 function cleanUrl(url) {
 	return url.replace(postfixRE, "");
 }
-function withTrailingSlash(path$1) {
-	return path$1.endsWith("/") ? path$1 : `${path$1}/`;
+function withTrailingSlash(path$2) {
+	return path$2.endsWith("/") ? path$2 : `${path$2}/`;
 }
 function createRequestHandler(handler) {
 	return async (req, res, next) => {
@@ -39487,15 +39489,15 @@ function hasTrailingSlash(input = "", respectQueryAndFragment) {
 function withTrailingSlash$1(input = "", respectQueryAndFragment) {
 	if (!respectQueryAndFragment) return input.endsWith("/") ? input : input + "/";
 	if (hasTrailingSlash(input, true)) return input || "/";
-	let path$1 = input;
+	let path$2 = input;
 	let fragment = "";
 	const fragmentIndex = input.indexOf("#");
 	if (fragmentIndex >= 0) {
-		path$1 = input.slice(0, fragmentIndex);
+		path$2 = input.slice(0, fragmentIndex);
 		fragment = input.slice(fragmentIndex);
-		if (!path$1) return fragment;
+		if (!path$2) return fragment;
 	}
-	const [s0, ...s] = path$1.split("?");
+	const [s0, ...s] = path$2.split("?");
 	return s0 + "/" + (s.length > 0 ? `?${s.join("?")}` : "") + fragment;
 }
 function isNonEmptyURL(url) {
@@ -39521,8 +39523,8 @@ const isAbsolute$1 = function(p$1) {
 //#endregion
 //#region ../../node_modules/.pnpm/mlly@1.7.4/node_modules/mlly/dist/index.mjs
 const BUILTIN_MODULES = new Set(builtinModules);
-function normalizeSlash(path$1) {
-	return path$1.replace(/\\/g, "/");
+function normalizeSlash(path$2) {
+	return path$2.replace(/\\/g, "/");
 }
 /**
 * @typedef ErrnoExceptionFields
@@ -39642,8 +39644,8 @@ codes.ERR_INVALID_PACKAGE_CONFIG = createError(
 	* @param {string} [base]
 	* @param {string} [message]
 	*/
-	(path$1, base, message) => {
-		return `Invalid package config ${path$1}${base ? ` while importing ${base}` : ""}${message ? `. ${message}` : ""}`;
+	(path$2, base, message) => {
+		return `Invalid package config ${path$2}${base ? ` while importing ${base}` : ""}${message ? `. ${message}` : ""}`;
 	},
 	Error
 );
@@ -39673,8 +39675,8 @@ codes.ERR_MODULE_NOT_FOUND = createError(
 	* @param {string} base
 	* @param {boolean} [exactUrl]
 	*/
-	(path$1, base, exactUrl = false) => {
-		return `Cannot find ${exactUrl ? "module" : "package"} '${path$1}' imported from ${base}`;
+	(path$2, base, exactUrl = false) => {
+		return `Cannot find ${exactUrl ? "module" : "package"} '${path$2}' imported from ${base}`;
 	},
 	Error
 );
@@ -39712,8 +39714,8 @@ codes.ERR_UNKNOWN_FILE_EXTENSION = createError(
 	* @param {string} extension
 	* @param {string} path
 	*/
-	(extension, path$1) => {
-		return `Unknown file extension "${extension}" for ${path$1}`;
+	(extension, path$2) => {
+		return `Unknown file extension "${extension}" for ${path$2}`;
 	},
 	TypeError
 );
@@ -39870,7 +39872,7 @@ function read(jsonPath, { base, specifier }) {
 	/** @type {string | undefined} */
 	let string;
 	try {
-		string = fs.readFileSync(path3.toNamespacedPath(jsonPath), "utf8");
+		string = fs.readFileSync(path.toNamespacedPath(jsonPath), "utf8");
 	} catch (error) {
 		const exception = error;
 		if (exception.code !== "ENOENT") throw exception;
@@ -40076,15 +40078,15 @@ function emitLegacyIndexDeprecation(url, packageJsonUrl, base, main) {
 	const packagePath = fileURLToPath(new URL$1(".", packageJsonUrl));
 	const basePath = fileURLToPath(base);
 	if (!main) process$1.emitWarning(`No "main" or "exports" field defined in the package.json for ${packagePath} resolving the main entry point "${urlPath.slice(packagePath.length)}", imported from ${basePath}.\nDefault "index" lookups for the main are deprecated for ES modules.`, "DeprecationWarning", "DEP0151");
-	else if (path3.resolve(packagePath, main) !== urlPath) process$1.emitWarning(`Package ${packagePath} has a "main" field set to "${main}", excluding the full filename and extension to the resolved file at "${urlPath.slice(packagePath.length)}", imported from ${basePath}.\n Automatic extension resolution of the "main" field is deprecated for ES modules.`, "DeprecationWarning", "DEP0151");
+	else if (path.resolve(packagePath, main) !== urlPath) process$1.emitWarning(`Package ${packagePath} has a "main" field set to "${main}", excluding the full filename and extension to the resolved file at "${urlPath.slice(packagePath.length)}", imported from ${basePath}.\n Automatic extension resolution of the "main" field is deprecated for ES modules.`, "DeprecationWarning", "DEP0151");
 }
 /**
 * @param {string} path
 * @returns {Stats | undefined}
 */
-function tryStatSync(path$1) {
+function tryStatSync(path$2) {
 	try {
-		return statSync(path$1);
+		return statSync(path$2);
 	} catch {}
 }
 /**
@@ -40183,7 +40185,7 @@ function finalizeResolution(resolved, base, preserveSymlinks) {
 	{
 		const real = realpathSync(filePath);
 		const { search, hash } = resolved;
-		resolved = pathToFileURL(real + (filePath.endsWith(path3.sep) ? "/" : ""));
+		resolved = pathToFileURL(real + (filePath.endsWith(path.sep) ? "/" : ""));
 		resolved.search = search;
 		resolved.hash = hash;
 	}
@@ -42560,9 +42562,9 @@ function constructHeaders({ headers, headersFile, logger }) {
 
 //#endregion
 //#region ../workers-shared/utils/configuration/validateURL.ts
-const extractPathname = (path$1 = "/", includeSearch, includeHash) => {
-	if (!path$1.startsWith("/")) path$1 = `/${path$1}`;
-	const url = new URL(`//${path$1}`, "relative://");
+const extractPathname = (path$2 = "/", includeSearch, includeHash) => {
+	if (!path$2.startsWith("/")) path$2 = `/${path$2}`;
+	const url = new URL(`//${path$2}`, "relative://");
 	return `${url.pathname}${includeSearch ? url.search : ""}${includeHash ? url.hash : ""}`;
 };
 const URL_REGEX = /^https:\/\/+(?<host>[^/]+)\/?(?<path>.*)/;
@@ -42597,6 +42599,7 @@ function parseHeaders(input, { maxRules = MAX_HEADER_RULES, maxLineLength = MAX_
 	const rules = [];
 	const invalid = [];
 	let rule = void 0;
+	let skipUntilNextPath = false;
 	for (let i$1 = 0; i$1 < lines.length; i$1++) {
 		const line = (lines[i$1] || "").trim();
 		if (line.length === 0 || line.startsWith("#")) continue;
@@ -42605,6 +42608,7 @@ function parseHeaders(input, { maxRules = MAX_HEADER_RULES, maxLineLength = MAX_
 			continue;
 		}
 		if (LINE_IS_PROBABLY_A_PATH.test(line)) {
+			skipUntilNextPath = false;
 			if (rules.length >= maxRules) {
 				invalid.push({ message: `Maximum number of rules supported is ${maxRules}. Skipping remaining ${lines.length - i$1} lines of file.` });
 				break;
@@ -42619,7 +42623,7 @@ function parseHeaders(input, { maxRules = MAX_HEADER_RULES, maxLineLength = MAX_
 				lineNumber: i$1 + 1,
 				message: "No headers specified"
 			});
-			const [path$1, pathError] = validateUrl(line, false, true);
+			const [path$2, pathError] = validateUrl(line, false, true);
 			if (pathError) {
 				invalid.push({
 					line,
@@ -42627,16 +42631,29 @@ function parseHeaders(input, { maxRules = MAX_HEADER_RULES, maxLineLength = MAX_
 					message: pathError
 				});
 				rule = void 0;
+				skipUntilNextPath = true;
+				continue;
+			}
+			const wildcardError = validateNoMultipleWildcards(path$2);
+			if (wildcardError) {
+				invalid.push({
+					line,
+					lineNumber: i$1 + 1,
+					message: wildcardError
+				});
+				rule = void 0;
+				skipUntilNextPath = true;
 				continue;
 			}
 			rule = {
-				path: path$1,
+				path: path$2,
 				line,
 				headers: {},
 				unsetHeaders: []
 			};
 			continue;
 		}
+		if (skipUntilNextPath) continue;
 		if (!line.includes(HEADER_SEPARATOR)) {
 			if (!rule) invalid.push({
 				line,
@@ -42706,6 +42723,18 @@ function parseHeaders(input, { maxRules = MAX_HEADER_RULES, maxLineLength = MAX_
 function isValidRule(rule) {
 	return Object.keys(rule.headers).length > 0 || rule.unsetHeaders.length > 0;
 }
+/**
+* At runtime, `*` wildcards are converted to `:splat` placeholders. This means
+* a path with multiple wildcards, or a wildcard combined with an explicit
+* `:splat` placeholder, would result in duplicate `:splat` parameters which is
+* unsupported.
+*/
+function validateNoMultipleWildcards(path$2) {
+	const wildcardCount = (path$2.match(SPLAT_REGEX) ?? []).length;
+	const hasSplatPlaceholder = /:splat(?!\w)/.test(path$2);
+	if (wildcardCount > 1) return `Only one wildcard is allowed per rule. Use a named placeholder (e.g. :project) instead. Skipping ${path$2}.`;
+	if (wildcardCount > 0 && hasSplatPlaceholder) return `Cannot combine a wildcard * with a :splat placeholder because wildcards are converted to :splat at runtime. Skipping ${path$2}.`;
+}
 
 //#endregion
 //#region ../workers-shared/utils/configuration/parseRedirects.ts
@@ -42921,13 +42950,13 @@ var require_ignore = /* @__PURE__ */ __commonJS$1({ "../../node_modules/.pnpm/ig
 	const throwError = (message, Ctor) => {
 		throw new Ctor(message);
 	};
-	const checkPath = (path$1, originalPath, doThrow) => {
-		if (!isString$1(path$1)) return doThrow(`path must be a string, but got \`${originalPath}\``, TypeError);
-		if (!path$1) return doThrow(`path must not be empty`, TypeError);
-		if (checkPath.isNotRelative(path$1)) return doThrow(`path should be a \`path.relative()\`d string, but got "${originalPath}"`, RangeError);
+	const checkPath = (path$2, originalPath, doThrow) => {
+		if (!isString$1(path$2)) return doThrow(`path must be a string, but got \`${originalPath}\``, TypeError);
+		if (!path$2) return doThrow(`path must not be empty`, TypeError);
+		if (checkPath.isNotRelative(path$2)) return doThrow(`path should be a \`path.relative()\`d string, but got "${originalPath}"`, RangeError);
 		return true;
 	};
-	const isNotRelative = (path$1) => REGEX_TEST_INVALID_PATH.test(path$1);
+	const isNotRelative = (path$2) => REGEX_TEST_INVALID_PATH.test(path$2);
 	checkPath.isNotRelative = isNotRelative;
 	checkPath.convert = (p$1) => p$1;
 	var Ignore = class {
@@ -42963,13 +42992,13 @@ var require_ignore = /* @__PURE__ */ __commonJS$1({ "../../node_modules/.pnpm/ig
 		addPattern(pattern) {
 			return this.add(pattern);
 		}
-		_testOne(path$1, checkUnignored) {
+		_testOne(path$2, checkUnignored) {
 			let ignored = false;
 			let unignored = false;
 			this._rules.forEach((rule) => {
 				const { negative } = rule;
 				if (unignored === negative && ignored !== unignored || negative && !ignored && !unignored && !checkUnignored) return;
-				if (rule.regex.test(path$1)) {
+				if (rule.regex.test(path$2)) {
 					ignored = !negative;
 					unignored = negative;
 				}
@@ -42980,33 +43009,33 @@ var require_ignore = /* @__PURE__ */ __commonJS$1({ "../../node_modules/.pnpm/ig
 			};
 		}
 		_test(originalPath, cache$2, checkUnignored, slices) {
-			const path$1 = originalPath && checkPath.convert(originalPath);
-			checkPath(path$1, originalPath, this._allowRelativePaths ? RETURN_FALSE : throwError);
-			return this._t(path$1, cache$2, checkUnignored, slices);
+			const path$2 = originalPath && checkPath.convert(originalPath);
+			checkPath(path$2, originalPath, this._allowRelativePaths ? RETURN_FALSE : throwError);
+			return this._t(path$2, cache$2, checkUnignored, slices);
 		}
-		_t(path$1, cache$2, checkUnignored, slices) {
-			if (path$1 in cache$2) return cache$2[path$1];
-			if (!slices) slices = path$1.split(SLASH);
+		_t(path$2, cache$2, checkUnignored, slices) {
+			if (path$2 in cache$2) return cache$2[path$2];
+			if (!slices) slices = path$2.split(SLASH);
 			slices.pop();
-			if (!slices.length) return cache$2[path$1] = this._testOne(path$1, checkUnignored);
+			if (!slices.length) return cache$2[path$2] = this._testOne(path$2, checkUnignored);
 			const parent = this._t(slices.join(SLASH) + SLASH, cache$2, checkUnignored, slices);
-			return cache$2[path$1] = parent.ignored ? parent : this._testOne(path$1, checkUnignored);
+			return cache$2[path$2] = parent.ignored ? parent : this._testOne(path$2, checkUnignored);
 		}
-		ignores(path$1) {
-			return this._test(path$1, this._ignoreCache, false).ignored;
+		ignores(path$2) {
+			return this._test(path$2, this._ignoreCache, false).ignored;
 		}
 		createFilter() {
-			return (path$1) => !this.ignores(path$1);
+			return (path$2) => !this.ignores(path$2);
 		}
 		filter(paths) {
 			return makeArray(paths).filter(this.createFilter());
 		}
-		test(path$1) {
-			return this._test(path$1, this._testCache, true);
+		test(path$2) {
+			return this._test(path$2, this._testCache, true);
 		}
 	};
 	const factory = (options) => new Ignore(options);
-	const isPathValid = (path$1) => checkPath(path$1 && checkPath.convert(path$1), path$1, RETURN_FALSE);
+	const isPathValid = (path$2) => checkPath(path$2 && checkPath.convert(path$2), path$2, RETURN_FALSE);
 	factory.isPathValid = isPathValid;
 	factory.default = factory;
 	module.exports = factory;
@@ -43015,7 +43044,7 @@ var require_ignore = /* @__PURE__ */ __commonJS$1({ "../../node_modules/.pnpm/ig
 		const makePosix = (str) => /^\\\\\?\\/.test(str) || /["<>|\u0000-\u001F]+/u.test(str) ? str : str.replace(/\\/g, "/");
 		checkPath.convert = makePosix;
 		const REGIX_IS_WINDOWS_PATH_ABSOLUTE = /^[a-z]:\//i;
-		checkPath.isNotRelative = (path$1) => REGIX_IS_WINDOWS_PATH_ABSOLUTE.test(path$1) || isNotRelative(path$1);
+		checkPath.isNotRelative = (path$2) => REGIX_IS_WINDOWS_PATH_ABSOLUTE.test(path$2) || isNotRelative(path$2);
 	}
 }) });
 
@@ -44370,11 +44399,11 @@ var Mime = class {
 		}
 		return this;
 	}
-	getType(path$1) {
-		if (typeof path$1 !== "string") return null;
-		const last = path$1.replace(/^.*[/\\]/s, "").toLowerCase();
+	getType(path$2) {
+		if (typeof path$2 !== "string") return null;
+		const last = path$2.replace(/^.*[/\\]/s, "").toLowerCase();
 		const ext = last.replace(/^.*\./s, "").toLowerCase();
-		const hasPath = last.length < path$1.length;
+		const hasPath = last.length < path$2.length;
 		if (!(ext.length < last.length - 1) && hasPath) return null;
 		return __classPrivateFieldGet(this, _Mime_extensionToType, "f").get(ext) ?? null;
 	}
@@ -44708,8 +44737,8 @@ function getErrorMap() {
 //#endregion
 //#region ../../node_modules/.pnpm/zod@3.25.76/node_modules/zod/v3/helpers/parseUtil.js
 const makeIssue = (params) => {
-	const { data: data$1, path: path$1, errorMaps, issueData } = params;
-	const fullPath = [...path$1, ...issueData.path || []];
+	const { data: data$1, path: path$2, errorMaps, issueData } = params;
+	const fullPath = [...path$2, ...issueData.path || []];
 	const fullIssue = {
 		...issueData,
 		path: fullPath
@@ -44821,11 +44850,11 @@ var errorUtil;
 //#endregion
 //#region ../../node_modules/.pnpm/zod@3.25.76/node_modules/zod/v3/types.js
 var ParseInputLazyPath = class {
-	constructor(parent, value, path$1, key) {
+	constructor(parent, value, path$2, key) {
 		this._cachedPath = [];
 		this.parent = parent;
 		this.data = value;
-		this._path = path$1;
+		this._path = path$2;
 		this._key = key;
 	}
 	get path() {
@@ -48488,7 +48517,10 @@ const configPlugin = createPlugin("config", (ctx) => {
 					fs: { deny: [...[
 						".env",
 						".env.*",
-						"*.{crt,pem}",
+						".npmrc",
+						".yarnrc",
+						".yarnrc.yml",
+						"*.{crt,pem,key,pfx,p12,p8,jks}",
 						"**/.git/**",
 						".dev.vars",
 						".dev.vars.*",
@@ -48841,11 +48873,11 @@ const getQueryString = (params) => {
 };
 const getUrl = (config, options) => {
 	const encoder$1 = config.ENCODE_PATH || encodeURI;
-	const path$1 = options.url.replace("{api-version}", config.VERSION).replace(/{(.*?)}/g, (substring, group) => {
+	const path$2 = options.url.replace("{api-version}", config.VERSION).replace(/{(.*?)}/g, (substring, group) => {
 		if (options.path?.hasOwnProperty(group)) return encoder$1(String(options.path[group]));
 		return substring;
 	});
-	const url = `${config.BASE}${path$1}`;
+	const url = `${config.BASE}${path$2}`;
 	if (options.query) return `${url}${getQueryString(options.query)}`;
 	return url;
 };
@@ -49435,7 +49467,7 @@ function dockerBuild(dockerPath, options) {
 		if (code === 0) resolve$4();
 		else if (!errorHandled) {
 			errorHandled = true;
-			reject(new UserError(`Docker build exited with code: ${code}`));
+			reject(new UserError(`Docker build exited with code: ${code}`, { telemetryMessage: false }));
 		}
 	});
 	child.on("error", (err) => {
@@ -49505,7 +49537,7 @@ async function dockerLoginImageRegistry(pathToDocker, domain) {
 	await new Promise((resolve$4, reject) => {
 		child.on("close", (code) => {
 			if (code === 0) resolve$4();
-			else reject(new UserError(`Login failed with code: ${code}`));
+			else reject(new UserError(`Login failed with code: ${code}`, { telemetryMessage: false }));
 		});
 	});
 }
@@ -49544,7 +49576,7 @@ async function dockerImageInspect(dockerPath, options) {
 		proc.stdout.on("data", (chunk) => stdout += chunk);
 		proc.stderr.on("data", (chunk) => stderr += chunk);
 		proc.on("close", (code) => {
-			if (code !== 0) return reject(new UserError(`failed inspecting image locally: ${stderr.trim()}`));
+			if (code !== 0) return reject(new UserError(`failed inspecting image locally: ${stderr.trim()}`, { telemetryMessage: false }));
 			resolve$4(stdout.trim());
 		});
 		proc.on("error", (err) => reject(err));
@@ -49572,13 +49604,13 @@ const runDockerCmd = (dockerPath, args, stdio) => {
 		if (code === 0 || aborted) resolve$4({ aborted });
 		else if (!errorHandled) {
 			errorHandled = true;
-			reject(new UserError(`Docker command exited with code: ${code}`));
+			reject(new UserError(`Docker command exited with code: ${code}`, { telemetryMessage: false }));
 		}
 	});
 	child.on("error", (err) => {
 		if (!errorHandled) {
 			errorHandled = true;
-			reject(new UserError(`Docker command failed: ${err.message}`));
+			reject(new UserError(`Docker command failed: ${err.message}`, { telemetryMessage: false }));
 		}
 	});
 	return {
@@ -49596,7 +49628,7 @@ const runDockerCmdWithOutput = (dockerPath, args) => {
 	try {
 		return execFileSync(dockerPath, args, { encoding: "utf8" }).trim();
 	} catch (error) {
-		throw new UserError(`Failed running docker command: ${error.message}. Command: ${dockerPath} ${args.join(" ")}`);
+		throw new UserError(`Failed running docker command: ${error.message}. Command: ${dockerPath} ${args.join(" ")}`, { telemetryMessage: false });
 	}
 };
 /** Checks whether docker is running on the system */
@@ -49615,7 +49647,7 @@ const isDockerRunning = async (dockerPath) => {
 /** throws when docker is not installed */
 const verifyDockerInstalled = async (dockerPath, isDev = true) => {
 	if (!await isDockerRunning(dockerPath)) throw new UserError(`The Docker CLI could not be launched. Please ensure that the Docker CLI is installed and the daemon is running.
-Other container tooling that is compatible with the Docker CLI and engine may work, but is not yet guaranteed to do so. You can specify an executable with the environment variable WRANGLER_DOCKER_BIN and a socket with DOCKER_HOST.${isDev ? "\nTo suppress this error if you do not intend on triggering any container instances, set dev.enable_containers to false in your Wrangler config or passing in --enable-containers=false." : ""}`);
+Other container tooling that is compatible with the Docker CLI and engine may work, but is not yet guaranteed to do so. You can specify an executable with the environment variable WRANGLER_DOCKER_BIN and a socket with DOCKER_HOST.${isDev ? "\nTo suppress this error if you do not intend on triggering any container instances, set dev.enable_containers to false in your Wrangler config or passing in --enable-containers=false." : ""}`, { telemetryMessage: false });
 };
 /**
 * Kills and removes any containers which come from the given image tag
@@ -49669,7 +49701,7 @@ async function checkExposedPorts(dockerPath, options) {
 		imageTag: options.image_tag,
 		formatString: "{{ len .Config.ExposedPorts }}"
 	}) === "0") throw new UserError(`The container "${options.class_name}" does not expose any ports. In your Dockerfile, please expose any ports you intend to connect to.\nFor additional information please see: https://developers.cloudflare.com/containers/local-dev/#exposing-ports.
-`);
+`, { telemetryMessage: false });
 }
 /**
 * Generates a random container build id
@@ -49786,7 +49818,7 @@ async function pullImage(dockerPath, options, logger) {
 async function prepareContainerImagesForDev(args) {
 	const { dockerPath, containerOptions, onContainerImagePreparationStart, onContainerImagePreparationEnd } = args;
 	let aborted = false;
-	if (process.platform === "win32") throw new UserError("Local development with containers is currently not supported on Windows. You should use WSL instead. You can also set `enable_containers` to false if you do not need to develop the container part of your application.");
+	if (process.platform === "win32") throw new UserError("Local development with containers is currently not supported on Windows. You should use WSL instead. You can also set `enable_containers` to false if you do not need to develop the container part of your application.", { telemetryMessage: false });
 	await verifyDockerInstalled(dockerPath);
 	for (const options of containerOptions) {
 		if ("dockerfile" in options) {
@@ -49860,7 +49892,7 @@ function getContainerOptions(options) {
 	return containersConfig.map((container) => {
 		if (isDockerfile(container.image, configPath)) return {
 			dockerfile: container.image,
-			image_build_context: container.image_build_context ?? path3.dirname(container.image),
+			image_build_context: container.image_build_context ?? path.dirname(container.image),
 			image_vars: container.image_vars,
 			class_name: container.class_name,
 			image_tag: getDevContainerImageName(container.class_name, containerBuildId)
@@ -49876,26 +49908,26 @@ function getContainerOptions(options) {
 //#endregion
 //#region ../../node_modules/.pnpm/fdir@6.5.0_picomatch@4.0.3/node_modules/fdir/dist/index.mjs
 var __require = /* @__PURE__ */ createRequire$1(import.meta.url);
-function cleanPath(path$1) {
-	let normalized = normalize(path$1);
+function cleanPath(path$2) {
+	let normalized = normalize(path$2);
 	if (normalized.length > 1 && normalized[normalized.length - 1] === sep) normalized = normalized.substring(0, normalized.length - 1);
 	return normalized;
 }
 const SLASHES_REGEX = /[\\/]/g;
-function convertSlashes(path$1, separator) {
-	return path$1.replace(SLASHES_REGEX, separator);
+function convertSlashes(path$2, separator) {
+	return path$2.replace(SLASHES_REGEX, separator);
 }
 const WINDOWS_ROOT_DIR_REGEX = /^[a-z]:[\\/]$/i;
-function isRootDirectory(path$1) {
-	return path$1 === "/" || WINDOWS_ROOT_DIR_REGEX.test(path$1);
+function isRootDirectory(path$2) {
+	return path$2 === "/" || WINDOWS_ROOT_DIR_REGEX.test(path$2);
 }
-function normalizePath$1(path$1, options) {
+function normalizePath$1(path$2, options) {
 	const { resolvePaths, normalizePath: normalizePath$1$1, pathSeparator } = options;
-	const pathNeedsCleaning = process.platform === "win32" && path$1.includes("/") || path$1.startsWith(".");
-	if (resolvePaths) path$1 = resolve$1(path$1);
-	if (normalizePath$1$1 || pathNeedsCleaning) path$1 = cleanPath(path$1);
-	if (path$1 === ".") return "";
-	return convertSlashes(path$1[path$1.length - 1] !== pathSeparator ? path$1 + pathSeparator : path$1, pathSeparator);
+	const pathNeedsCleaning = process.platform === "win32" && path$2.includes("/") || path$2.startsWith(".");
+	if (resolvePaths) path$2 = resolve$1(path$2);
+	if (normalizePath$1$1 || pathNeedsCleaning) path$2 = cleanPath(path$2);
+	if (path$2 === ".") return "";
+	return convertSlashes(path$2[path$2.length - 1] !== pathSeparator ? path$2 + pathSeparator : path$2, pathSeparator);
 }
 function joinPathWithBasePath(filename, directoryPath) {
 	return directoryPath + filename;
@@ -49931,8 +49963,8 @@ const pushDirectory = (directoryPath, paths) => {
 	paths.push(directoryPath || ".");
 };
 const pushDirectoryFilter = (directoryPath, paths, filters) => {
-	const path$1 = directoryPath || ".";
-	if (filters.every((filter) => filter(path$1, true))) paths.push(path$1);
+	const path$2 = directoryPath || ".";
+	if (filters.every((filter) => filter(path$2, true))) paths.push(path$2);
 };
 const empty$2 = () => {};
 function build$6(root, options) {
@@ -49981,26 +50013,26 @@ const empty = () => {};
 function build$3(options) {
 	return options.group ? groupFiles : empty;
 }
-const resolveSymlinksAsync = function(path$1, state, callback$1) {
+const resolveSymlinksAsync = function(path$2, state, callback$1) {
 	const { queue, fs: fs$3, options: { suppressErrors } } = state;
 	queue.enqueue();
-	fs$3.realpath(path$1, (error, resolvedPath) => {
+	fs$3.realpath(path$2, (error, resolvedPath) => {
 		if (error) return queue.dequeue(suppressErrors ? null : error, state);
 		fs$3.stat(resolvedPath, (error$1, stat) => {
 			if (error$1) return queue.dequeue(suppressErrors ? null : error$1, state);
-			if (stat.isDirectory() && isRecursive(path$1, resolvedPath, state)) return queue.dequeue(null, state);
+			if (stat.isDirectory() && isRecursive(path$2, resolvedPath, state)) return queue.dequeue(null, state);
 			callback$1(stat, resolvedPath);
 			queue.dequeue(null, state);
 		});
 	});
 };
-const resolveSymlinks = function(path$1, state, callback$1) {
+const resolveSymlinks = function(path$2, state, callback$1) {
 	const { queue, fs: fs$3, options: { suppressErrors } } = state;
 	queue.enqueue();
 	try {
-		const resolvedPath = fs$3.realpathSync(path$1);
+		const resolvedPath = fs$3.realpathSync(path$2);
 		const stat = fs$3.statSync(resolvedPath);
-		if (stat.isDirectory() && isRecursive(path$1, resolvedPath, state)) return;
+		if (stat.isDirectory() && isRecursive(path$2, resolvedPath, state)) return;
 		callback$1(stat, resolvedPath);
 	} catch (e) {
 		if (!suppressErrors) throw e;
@@ -50010,16 +50042,16 @@ function build$2(options, isSynchronous) {
 	if (!options.resolveSymlinks || options.excludeSymlinks) return null;
 	return isSynchronous ? resolveSymlinks : resolveSymlinksAsync;
 }
-function isRecursive(path$1, resolved, state) {
+function isRecursive(path$2, resolved, state) {
 	if (state.options.useRealPaths) return isRecursiveUsingRealPaths(resolved, state);
-	let parent = dirname$1(path$1);
+	let parent = dirname$1(path$2);
 	let depth$1 = 1;
 	while (parent !== state.root && depth$1 < 2) {
 		const resolvedPath = state.symlinks.get(parent);
 		if (!!resolvedPath && (resolvedPath === resolved || resolvedPath.startsWith(resolved) || resolved.startsWith(resolvedPath))) depth$1++;
 		else parent = dirname$1(parent);
 	}
-	state.symlinks.set(path$1, resolved);
+	state.symlinks.set(path$2, resolved);
 	return depth$1 > 1;
 }
 function isRecursiveUsingRealPaths(resolved, state) {
@@ -50200,19 +50232,19 @@ var Walker = class {
 				const filename = this.joinPath(entry.name, directoryPath);
 				this.pushFile(filename, files, this.state.counts, filters);
 			} else if (entry.isDirectory()) {
-				let path$1 = joinDirectoryPath(entry.name, directoryPath, this.state.options.pathSeparator);
-				if (exclude && exclude(entry.name, path$1)) continue;
-				this.pushDirectory(path$1, paths, filters);
-				this.walkDirectory(this.state, path$1, path$1, depth$1 - 1, this.walk);
+				let path$2 = joinDirectoryPath(entry.name, directoryPath, this.state.options.pathSeparator);
+				if (exclude && exclude(entry.name, path$2)) continue;
+				this.pushDirectory(path$2, paths, filters);
+				this.walkDirectory(this.state, path$2, path$2, depth$1 - 1, this.walk);
 			} else if (this.resolveSymlink && entry.isSymbolicLink()) {
-				let path$1 = joinPathWithBasePath(entry.name, directoryPath);
-				this.resolveSymlink(path$1, this.state, (stat, resolvedPath) => {
+				let path$2 = joinPathWithBasePath(entry.name, directoryPath);
+				this.resolveSymlink(path$2, this.state, (stat, resolvedPath) => {
 					if (stat.isDirectory()) {
 						resolvedPath = normalizePath$1(resolvedPath, this.state.options);
-						if (exclude && exclude(entry.name, useRealPaths ? resolvedPath : path$1 + pathSeparator)) return;
-						this.walkDirectory(this.state, resolvedPath, useRealPaths ? resolvedPath : path$1 + pathSeparator, depth$1 - 1, this.walk);
+						if (exclude && exclude(entry.name, useRealPaths ? resolvedPath : path$2 + pathSeparator)) return;
+						this.walkDirectory(this.state, resolvedPath, useRealPaths ? resolvedPath : path$2 + pathSeparator, depth$1 - 1, this.walk);
 					} else {
-						resolvedPath = useRealPaths ? resolvedPath : path$1;
+						resolvedPath = useRealPaths ? resolvedPath : path$2;
 						const filename = basename(resolvedPath);
 						const directoryPath$1 = normalizePath$1(dirname$1(resolvedPath), this.state.options);
 						resolvedPath = this.joinPath(filename, directoryPath$1);
@@ -50377,7 +50409,7 @@ var Builder = class {
 			isMatch = globFn(patterns, ...options);
 			this.globCache[patterns.join("\0")] = isMatch;
 		}
-		this.options.filters.push((path$1) => isMatch(path$1));
+		this.options.filters.push((path$2) => isMatch(path$2));
 		return this;
 	}
 };
@@ -50588,8 +50620,8 @@ var require_utils = /* @__PURE__ */ __commonJS$1({ "../../node_modules/.pnpm/pic
 		if (state.negated === true) output = `(?:^(?!${output}).*$)`;
 		return output;
 	};
-	exports.basename = (path$1, { windows } = {}) => {
-		const segs = path$1.split(windows ? /[\\/]/ : "/");
+	exports.basename = (path$2, { windows } = {}) => {
+		const segs = path$2.split(windows ? /[\\/]/ : "/");
 		const last = segs[segs.length - 1];
 		if (last === "") return segs[segs.length - 2];
 		return last;
@@ -52124,15 +52156,15 @@ function buildRelative(cwd, root) {
 	};
 }
 const splitPatternOptions = { parts: true };
-function splitPattern(path$1) {
+function splitPattern(path$1$1) {
 	var _result$parts;
-	const result = import_picomatch.default.scan(path$1, splitPatternOptions);
-	return ((_result$parts = result.parts) === null || _result$parts === void 0 ? void 0 : _result$parts.length) ? result.parts : [path$1];
+	const result = import_picomatch.default.scan(path$1$1, splitPatternOptions);
+	return ((_result$parts = result.parts) === null || _result$parts === void 0 ? void 0 : _result$parts.length) ? result.parts : [path$1$1];
 }
 const POSIX_UNESCAPED_GLOB_SYMBOLS = /(?<!\\)([()[\]{}*?|]|^!|[!+@](?=\()|\\(?![()[\]{}!*+?@|]))/g;
 const WIN32_UNESCAPED_GLOB_SYMBOLS = /(?<!\\)([()[\]{}]|^!|[!+@](?=\())/g;
-const escapePosixPath = (path$1) => path$1.replace(POSIX_UNESCAPED_GLOB_SYMBOLS, "\\$&");
-const escapeWin32Path = (path$1) => path$1.replace(WIN32_UNESCAPED_GLOB_SYMBOLS, "\\$&");
+const escapePosixPath = (path$1$1) => path$1$1.replace(POSIX_UNESCAPED_GLOB_SYMBOLS, "\\$&");
+const escapeWin32Path = (path$1$1) => path$1$1.replace(WIN32_UNESCAPED_GLOB_SYMBOLS, "\\$&");
 /**
 * Escapes a path's special characters depending on the platform.
 * @see {@link https://superchupu.dev/tinyglobby/documentation#escapePath}
@@ -52167,7 +52199,7 @@ function normalizePattern(pattern, expandDirectories, cwd, props, isIgnore) {
 	if (pattern.endsWith("/")) result = pattern.slice(0, -1);
 	if (!result.endsWith("*") && expandDirectories) result += "/**";
 	const escapedCwd = escapePath(cwd);
-	if (path.isAbsolute(result.replace(ESCAPING_BACKSLASHES, ""))) result = posix.relative(escapedCwd, result);
+	if (path$1.isAbsolute(result.replace(ESCAPING_BACKSLASHES, ""))) result = posix.relative(escapedCwd, result);
 	else result = posix.normalize(result);
 	const parentDirectoryMatch = PARENT_DIRECTORY.exec(result);
 	const parts = splitPattern(result);
@@ -52226,15 +52258,15 @@ function processPatterns({ patterns = ["**/*"], ignore: ignore$1 = [], expandDir
 }
 function formatPaths(paths, relative$2) {
 	for (let i$1 = paths.length - 1; i$1 >= 0; i$1--) {
-		const path$1 = paths[i$1];
-		paths[i$1] = relative$2(path$1);
+		const path$1$1 = paths[i$1];
+		paths[i$1] = relative$2(path$1$1);
 	}
 	return paths;
 }
 function normalizeCwd(cwd) {
 	if (!cwd) return process.cwd().replace(BACKSLASHES, "/");
 	if (cwd instanceof URL) return fileURLToPath$1(cwd).replace(BACKSLASHES, "/");
-	return path.resolve(cwd).replace(BACKSLASHES, "/");
+	return path$1.resolve(cwd).replace(BACKSLASHES, "/");
 }
 function getCrawler(patterns, inputOptions = {}) {
 	const options = process.env.TINYGLOBBY_DEBUG ? {
@@ -52279,9 +52311,9 @@ function getCrawler(patterns, inputOptions = {}) {
 	const formatExclude = options.absolute ? format$2 : buildFormat(cwd, props.root, true);
 	const fdirOptions = {
 		filters: [options.debug ? (p$1, isDirectory$1) => {
-			const path$1 = format$2(p$1, isDirectory$1);
-			const matches = matcher(path$1);
-			if (matches) log(`matched ${path$1}`);
+			const path$1$1 = format$2(p$1, isDirectory$1);
+			const matches = matcher(path$1$1);
+			if (matches) log(`matched ${path$1$1}`);
 			return matches;
 		} : (p$1, isDirectory$1) => matcher(format$2(p$1, isDirectory$1))],
 		exclude: options.debug ? (_, p$1) => {
@@ -52362,6 +52394,7 @@ async function getDevMiniflareOptions(ctx, viteDevServer) {
 		{
 			name: ROUTER_WORKER_NAME,
 			compatibilityDate: INTERNAL_WORKERS_COMPATIBILITY_DATE,
+			compatibilityFlags: ["enable_ctx_exports"],
 			modulesRoot: miniflareModulesRoot,
 			modules: [{
 				type: "ESModule",
@@ -52550,7 +52583,9 @@ async function getDevMiniflareOptions(ctx, viteDevServer) {
 				...userWorkers
 			],
 			async unsafeModuleFallbackService(request$2) {
-				const rawSpecifier = new URL(request$2.url).searchParams.get("rawSpecifier");
+				const parsed = await parseModuleFallbackRequest(request$2);
+				if (!parsed) return new Response$1("Invalid module fallback request", { status: 400 });
+				const rawSpecifier = parsed.rawSpecifier;
 				assert(rawSpecifier, `Unexpected error: no specifier in request to module fallback service.`);
 				const match = additionalModuleRE.exec(rawSpecifier);
 				assert(match, `Unexpected error: no match for module: ${rawSpecifier}.`);
@@ -52833,7 +52868,7 @@ const devPlugin = createPlugin("dev", (ctx) => {
 					if ([...containerTagToOptionsMap.values()].some((opts) => "image_uri" in opts && new URL(`http://${opts.image_uri}`).hostname === getCloudflareContainerRegistry())) {
 						const apiToken = process.env.CLOUDFLARE_API_TOKEN;
 						const accountId = ctx.entryWorkerConfig?.account_id ?? process.env.CLOUDFLARE_ACCOUNT_ID;
-						if (!apiToken || !accountId) throw new UserError("To use images from the Cloudflare-managed registry with the Vite plugin, set the CLOUDFLARE_API_TOKEN and CLOUDFLARE_ACCOUNT_ID environment variables.\nThe API token requires Containers:Edit and Workers Scripts:Edit permissions.\nAlternatively, use a Dockerfile that references the image via FROM.");
+						if (!apiToken || !accountId) throw new UserError("To use images from the Cloudflare-managed registry with the Vite plugin, set the CLOUDFLARE_API_TOKEN and CLOUDFLARE_ACCOUNT_ID environment variables.\nThe API token requires Containers:Edit and Workers Scripts:Edit permissions.\nAlternatively, use a Dockerfile that references the image via FROM.", { telemetryMessage: false });
 						configureOpenAPIForContainerPull(accountId, apiToken);
 					}
 					await prepareContainerImagesForDev({
@@ -53101,7 +53136,7 @@ const previewPlugin = createPlugin("preview", (ctx) => {
 			if ([...containerTagToOptionsMap.values()].some((opts) => "image_uri" in opts && new URL(`http://${opts.image_uri}`).hostname === getCloudflareContainerRegistry())) {
 				const apiToken = process.env.CLOUDFLARE_API_TOKEN;
 				const accountId = ctx.allWorkerConfigs[0]?.account_id ?? process.env.CLOUDFLARE_ACCOUNT_ID;
-				if (!apiToken || !accountId) throw new UserError("To use images from the Cloudflare-managed registry with the Vite plugin, set the CLOUDFLARE_API_TOKEN and CLOUDFLARE_ACCOUNT_ID environment variables.\nThe API token requires Containers:Edit and Workers Scripts:Edit permissions.\nAlternatively, use a Dockerfile that references the image via FROM.");
+				if (!apiToken || !accountId) throw new UserError("To use images from the Cloudflare-managed registry with the Vite plugin, set the CLOUDFLARE_API_TOKEN and CLOUDFLARE_ACCOUNT_ID environment variables.\nThe API token requires Containers:Edit and Workers Scripts:Edit permissions.\nAlternatively, use a Dockerfile that references the image via FROM.", { telemetryMessage: false });
 				configureOpenAPIForContainerPull(accountId, apiToken);
 			}
 			await prepareContainerImagesForDev({
@@ -53270,13 +53305,13 @@ const wslDefaultBrowser = async () => {
 	const { stdout } = await executePowerShell(String.raw`(Get-ItemProperty -Path "HKCU:\Software\Microsoft\Windows\Shell\Associations\UrlAssociations\http\UserChoice").ProgId`, { powerShellPath: psPath });
 	return stdout.trim();
 };
-const convertWslPathToWindows = async (path$1) => {
-	if (/^[a-z]+:\/\//i.test(path$1)) return path$1;
+const convertWslPathToWindows = async (path$2) => {
+	if (/^[a-z]+:\/\//i.test(path$2)) return path$2;
 	try {
-		const { stdout } = await execFile$1("wslpath", ["-aw", path$1], { encoding: "utf8" });
+		const { stdout } = await execFile$1("wslpath", ["-aw", path$2], { encoding: "utf8" });
 		return stdout.trim();
 	} catch {
-		return path$1;
+		return path$2;
 	}
 };
 
@@ -53462,8 +53497,8 @@ var is_in_ssh_default = isInSsh;
 //#endregion
 //#region ../../node_modules/.pnpm/open@11.0.0/node_modules/open/index.js
 const fallbackAttemptSymbol = Symbol("fallbackAttempt");
-const __dirname = import.meta.url ? path3.dirname(fileURLToPath(import.meta.url)) : "";
-const localXdgOpenPath = path3.join(__dirname, "xdg-open");
+const __dirname = import.meta.url ? path.dirname(fileURLToPath(import.meta.url)) : "";
+const localXdgOpenPath = path.join(__dirname, "xdg-open");
 const { platform, arch: arch$1 } = process$1;
 const tryEachApp = async (apps$1, opener) => {
 	if (apps$1.length === 0) return;