fix(deps): update dependency hono to v4.7.2

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
hono (source)	4.5.4 -> 4.7.2

---

Release Notes

honojs/hono (hono)

v4.7.2

Compare Source

What's Changed

• fix(proxy): fix header overwrite by @​usualoma in https://github.com/honojs/hono/pull/3922
• fix(proxy): include original request signal in proxy request by @​BarryThePenguin in https://github.com/honojs/hono/pull/3925
• fix(helper/proxy): missing proxy response status by @​BarryThePenguin in https://github.com/honojs/hono/pull/3927
• fix(proxy): remove spread operator from Request and Response classes by @​BarryThePenguin in https://github.com/honojs/hono/pull/3928
• refactor(compose): remove unnecessary complexity and improve testing by @​EdamAme-x in https://github.com/honojs/hono/pull/3932

Full Changelog: honojs/hono@v4.7.1...v4.7.2

v4.7.1

Compare Source

What's Changed

• refactor(helper/streaming): remove unused variables by @​EdamAme-x in https://github.com/honojs/hono/pull/3904
• fix(combine): halt middleware evaluation if error in next() by @​usualoma in https://github.com/honojs/hono/pull/3905
• fix(utils/url): calculate ends with slash on every iteration by @​luxass in https://github.com/honojs/hono/pull/3910
• perf(utils/url): shorten mergePath and optimize for normal use cases. by @​usualoma in https://github.com/honojs/hono/pull/3911
• fix(adapter/aws-lambda): remove unneeded import and compatibility for LLRT by @​EdamAme-x in https://github.com/honojs/hono/pull/3915
• fix(etag): change where to check for crypto by @​EdamAme-x in https://github.com/honojs/hono/pull/3916

New Contributors

• @​luxass made their first contribution in https://github.com/honojs/hono/pull/3910

Full Changelog: honojs/hono@v4.7.0...v4.7.1

v4.7.0

Compare Source

Release Notes

Hono v4.7.0 is now available!

This release introduces one helper and two middleware.

• Proxy Helper
• Language Middleware
• JWK Auth Middleware

Plus, Standard Schema Validator has been born.

Let's look at each of these.

Proxy Helper

We sometimes use the Hono application as a reverse proxy. In that case, it accesses the backend using fetch. However, it sends an unintended headers.

app.all('/proxy/:path', (c) => {
  // Send unintended header values to the origin server
  return fetch(`http://${originServer}/${c.req.param('path')}`)
})

For example, fetch may send Accept-Encoding, causing the origin server to return a compressed response. Some runtimes automatically decode it, leading to a Content-Length mismatch and potential client-side errors.

Also, you should probably remove some of the headers sent from the origin server, such as Transfer-Encoding.

Proxy Helper will send requests to the origin and handle responses properly. The above headers problem is solved simply by writing as follows.

import { Hono } from 'hono'
import { proxy } from 'hono/proxy'

app.get('/proxy/:path', (c) => {
  return proxy(`http://${originServer}/${c.req.param('path')}`)
})

You can also use it in more complex ways.

app.get('/proxy/:path', async (c) => {
  const res = await proxy(
    `http://${originServer}/${c.req.param('path')}`,
    {
      headers: {
        ...c.req.header(),
        'X-Forwarded-For': '127.0.0.1',
        'X-Forwarded-Host': c.req.header('host'),
        Authorization: undefined,
      },
    }
  )
  res.headers.delete('Set-Cookie')
  return res
})

Thanks @​usualoma!

Language Middleware

Language Middleware provides 18n functions to Hono applications. By using the languageDetector function, you can get the language that your application should support.

import { Hono } from 'hono'
import { languageDetector } from 'hono/language'

const app = new Hono()

app.use(
  languageDetector({
    supportedLanguages: ['en', 'ar', 'ja'], // Must include fallback
    fallbackLanguage: 'en', // Required
  })
)

app.get('/', (c) => {
  const lang = c.get('language')
  return c.text(`Hello! Your language is ${lang}`)
})

You can get the target language in various ways, not just by using Accept-Language.

• Query parameters
• Cookies
• Accept-Language header
• URL path

Thanks @​lord007tn!

JWK Auth Middleware

Finally, middleware that supports JWK (JSON Web Key) has landed. Using JWK Auth Middleware, you can authenticate by verifying JWK tokens. It can access keys fetched from the specified URL.

import { Hono } from 'hono'
import { jwk } from 'hono/jwk'

app.use(
  '/auth/*',
  jwk({
    jwks_uri: `https://${backendServer}/.well-known/jwks.json`,
  })
)

app.get('/auth/page', (c) => {
  return c.text('You are authorized')
})

Thanks @​Beyondo!

Standard Schema Validator

Standard Schema provides a common interface for TypeScript validator libraries. Standard Schema Validator is a validator that uses it. This means that Standard Schema Validator can handle several validators, such as Zod, Valibot, and ArkType, with the same interface.

The code below really works!

import { Hono } from 'hono'
import { sValidator } from '@​hono/standard-validator'
import { type } from 'arktype'
import * as v from 'valibot'
import { z } from 'zod'

const aSchema = type({
  agent: 'string',
})

const vSchema = v.object({
  slag: v.string(),
})

const zSchema = z.object({
  name: z.string(),
})

const app = new Hono()

app.get(
  '/:slag',
  sValidator('header', aSchema),
  sValidator('param', vSchema),
  sValidator('query', zSchema),
  (c) => {
    const headerValue = c.req.valid('header')
    const paramValue = c.req.valid('param')
    const queryValue = c.req.valid('query')
    return c.json({ headerValue, paramValue, queryValue })
  }
)

const res = await app.request('/foo?name=foo', {
  headers: {
    agent: 'foo',
  },
})

console.log(await res.json())

Thanks @​muningis!

New features

• feat(helper/proxy): introduce proxy helper https://github.com/honojs/hono/pull/3589
• feat(logger): include query params https://github.com/honojs/hono/pull/3702
• feat: add language detector middleware and helpers https://github.com/honojs/hono/pull/3787
• feat(hono/context): add buffer returns https://github.com/honojs/hono/pull/3813
• feat(hono/jwk): JWK Auth Middleware https://github.com/honojs/hono/pull/3826
• feat(etag): allow for custom hashing methods to be used to etag https://github.com/honojs/hono/pull/3832
• feat(router): support greedy matches with subsequent static components https://github.com/honojs/hono/pull/3888

All changes

• docs(CONTRIBUTING): remove text about yarn by @​EdamAme-x in https://github.com/honojs/hono/pull/3878
• refactor(request): toLowerCase() is unnecessary for req.header() by @​yusukebe in https://github.com/honojs/hono/pull/3880
• fix(helper/adapter): correct env type by @​yusukebe in https://github.com/honojs/hono/pull/3885
• chore(test): update to vitest 3 by @​yasuaki640 in https://github.com/honojs/hono/pull/3861
• fix(router/trie-router): fix label with trailing wildcard pattern by @​usualoma in https://github.com/honojs/hono/pull/3892
• feat(helper/proxy): introduce proxy helper by @​usualoma in https://github.com/honojs/hono/pull/3589
• feat(logger): include query params by @​ryuapp in https://github.com/honojs/hono/pull/3702
• feat(factory): Allow HonoOptions with factory by @​miyaji255 in https://github.com/honojs/hono/pull/3786
• feat: add language detector middleware and helpers by @​lord007tn in https://github.com/honojs/hono/pull/3787
• feat(hono/context): add buffer returns by @​askorupskyy in https://github.com/honojs/hono/pull/3813
• feat(hono/jwk): JWK Auth Middleware by @​Beyondo in https://github.com/honojs/hono/pull/3826
• feat(etag): allow for custom hashing methods to be used to etag by @​EdamAme-x in https://github.com/honojs/hono/pull/3832
• feat(router): support greedy matches with subsequent static components. by @​usualoma in https://github.com/honojs/hono/pull/3888
• fix(client): correct inferring empty object fromc.json({}) by @​yusukebe in https://github.com/honojs/hono/pull/3873
• Next by @​yusukebe in https://github.com/honojs/hono/pull/3896
• chore(runtime-tests): add deno.lock by @​yusukebe in https://github.com/honojs/hono/pull/3897

New Contributors

• @​lord007tn made their first contribution in https://github.com/honojs/hono/pull/3787

Full Changelog: honojs/hono@v4.6.20...v4.7.0

v4.6.20

Compare Source

What's Changed

• refactor(helper/streaming): Avoid attaching AbortSignal on newer versions of Bun by @​Jarred-Sumner in https://github.com/honojs/hono/pull/3859
• chore: Use new text-based bun lockfile by @​ryoppippi in https://github.com/honojs/hono/pull/3846
• chore: bump np by @​yusukebe in https://github.com/honojs/hono/pull/3874
• fix(lambda-edge-adapter): Support Alternate Domain Names and Multiple Cookies in Lambda@Edge by @​kentkwee in https://github.com/honojs/hono/pull/3858

New Contributors

• @​Jarred-Sumner made their first contribution in https://github.com/honojs/hono/pull/3859
• @​kentkwee made their first contribution in https://github.com/honojs/hono/pull/3858

Full Changelog: honojs/hono@v4.6.19...v4.6.20

v4.6.19

Compare Source

What's Changed

• fix(types): missing response type on OnHandlerInterface by @​sor4chi in https://github.com/honojs/hono/pull/3852
• fix(helper/adapter): env should set c type correctly by @​yusukebe in https://github.com/honojs/hono/pull/3856

Full Changelog: honojs/hono@v4.6.18...v4.6.19

v4.6.18

Compare Source

What's Changed

• perf(types): improve Utilities in types.ts by @​yusukebe in https://github.com/honojs/hono/pull/3836
• perf(types): define ParamKey simply by @​yusukebe in https://github.com/honojs/hono/pull/3837
• fix(types): Calculate Context type for each handler by @​sushichan044 in https://github.com/honojs/hono/pull/3675
• fix(factory): correct the type of factory.createMiddleware() by @​yusukebe in https://github.com/honojs/hono/pull/3849

Full Changelog: honojs/hono@v4.6.17...v4.6.18

v4.6.17

Compare Source

What's Changed

• fix(helper/factory): Reduce the code size of createMiddleware by @​miyaji255 in https://github.com/honojs/hono/pull/3824
• fix(compress): don't compress server-sent events by @​dmitri-gb in https://github.com/honojs/hono/pull/3833
• perf(build): Use WebWorker when removing private fields by @​miyaji255 in https://github.com/honojs/hono/pull/3821
• chore: deleted mistake comments by @​EdamAme-x in https://github.com/honojs/hono/pull/3835

New Contributors

• @​miyaji255 made their first contribution in https://github.com/honojs/hono/pull/3824
• @​dmitri-gb made their first contribution in https://github.com/honojs/hono/pull/3833

Full Changelog: honojs/hono@v4.6.16...v4.6.17

v4.6.16

Compare Source

What's Changed

• fix(jsx/dom): should not return memoized result when context is changed by @​usualoma in https://github.com/honojs/hono/pull/3792
• fix(context): single body overrides other returns by @​askorupskyy in https://github.com/honojs/hono/pull/3800
• fix(types): correct app.on(method,path[],middleware,handler) type by @​yusukebe in https://github.com/honojs/hono/pull/3802

Full Changelog: honojs/hono@v4.6.15...v4.6.16

v4.6.15

Compare Source

c.json() etc. throwing type error when the status is contentless code, e.g., 204

From this release, when c.json(), c.text(), or c.html() returns content, specifying a contentless status code such as 204 will now throw a type error.

At first glance, this seems like a breaking change but not. It is not possible to return a contentless response with c.json() or c.text(). So, in that case, please use c.body().

app.get('/', (c) => {
  return c.body(null, 204)
})

What's Changed

• fix(jsr): exclude unused markdown files by @​ryuapp in https://github.com/honojs/hono/pull/3767
• feat(hono/context): contentful status code typing by @​askorupskyy in https://github.com/honojs/hono/pull/3763
• refactor(context): remove lint errors by @​yusukebe in https://github.com/honojs/hono/pull/3769
• feat(context): ResponseInit accepts generics StatusCode for status by @​yusukebe in https://github.com/honojs/hono/pull/3770
• feat(utils/cookie): Ability to set a priority to cookies in setCookie options by @​Beyondo in https://github.com/honojs/hono/pull/3762
• fix(hono-base): don't use Symbol for COMPOSED_HANDLER by @​yusukebe in https://github.com/honojs/hono/pull/3773

New Contributors

• @​askorupskyy made their first contribution in https://github.com/honojs/hono/pull/3763
• @​Beyondo made their first contribution in https://github.com/honojs/hono/pull/3762

Full Changelog: honojs/hono@v4.6.14...v4.6.15

v4.6.14

Compare Source

What's Changed

• perf(pattern-router): improve performance when create null object by @​EdamAme-x in https://github.com/honojs/hono/pull/3730
• perf(trie-router): avoid calling spread operator for Object.create(null) by @​usualoma in https://github.com/honojs/hono/pull/3735
• fix: Remove charset parameter from MIME type of application/json by @​SaekiTominaga in https://github.com/honojs/hono/pull/3743
• fix(streaming) Prevent console.error(undefined) when pipe is aborted by @​aantthony in https://github.com/honojs/hono/pull/3747

New Contributors

• @​SaekiTominaga made their first contribution in https://github.com/honojs/hono/pull/3743
• @​aantthony made their first contribution in https://github.com/honojs/hono/pull/3747

Full Changelog: honojs/hono@v4.6.13...v4.6.14

v4.6.13

Compare Source

What's Changed

• refactor: use Array.prototype.at() to look at the end by @​ryuapp in https://github.com/honojs/hono/pull/3703
• fix(aws-lambda): Fix query string handling for v1 by @​Holi0317 in https://github.com/honojs/hono/pull/3717
• chore: Add Cloudflare Static Assets reference to serveStatic deprecation notice by @​ambergristle in https://github.com/honojs/hono/pull/3705
• fix(middleware/cors): explicitly return No Content for the statusText when handling an OPTIONS request by @​shawncarr in https://github.com/honojs/hono/pull/3719
• fix(utils/ipaddr): support IPv6-mapped IPv4 address by @​usualoma in https://github.com/honojs/hono/pull/3727

New Contributors

• @​Holi0317 made their first contribution in https://github.com/honojs/hono/pull/3717
• @​ambergristle made their first contribution in https://github.com/honojs/hono/pull/3705
• @​shawncarr made their first contribution in https://github.com/honojs/hono/pull/3719

Full Changelog: honojs/hono@v4.6.12...v4.6.13

v4.6.12

Compare Source

What's Changed

• ci(perf-measures): support KB by @​EdamAme-x in https://github.com/honojs/hono/pull/3696
• perf(router): sort handlers by score only when necessary by @​EdamAme-x in https://github.com/honojs/hono/pull/3697
• feat(css): add CSP nonce to hono/css related style and script tags by @​meck93 in https://github.com/honojs/hono/pull/3685
• fix(adapter/aws-lambda): add alb event requestContext undefined check for testing convenience by @​ospatil in https://github.com/honojs/hono/pull/3691

New Contributors

• @​meck93 made their first contribution in https://github.com/honojs/hono/pull/3685
• @​ospatil made their first contribution in https://github.com/honojs/hono/pull/3691

Full Changelog: honojs/hono@v4.6.11...v4.6.12

v4.6.11

Compare Source

What's Changed

• docs: changed as even smaller by @​EdamAme-x in https://github.com/honojs/hono/pull/3664
• chore(build): fix progress of log by @​EdamAme-x in https://github.com/honojs/hono/pull/3665
• chore(benchmark): add qs for query-param by @​yusukebe in https://github.com/honojs/hono/pull/3674
• feat(helper/factory): Calculate Context Type in createHandlers by @​sushichan044 in https://github.com/honojs/hono/pull/3670
• ci: compare bundle size by @​EdamAme-x in https://github.com/honojs/hono/pull/3661
• chore: enable formatting perf-measures by @​yusukebe in https://github.com/honojs/hono/pull/3683
• chore: lint build and perf-measures by @​yusukebe in https://github.com/honojs/hono/pull/3686
• ci: Display performance measurement results as custom metrics by @​k2tzumi in https://github.com/honojs/hono/pull/3491
• fix(base): define errorHandler with private not use # by @​yusukebe in https://github.com/honojs/hono/pull/3692

New Contributors

• @​sushichan044 made their first contribution in https://github.com/honojs/hono/pull/3670
• @​k2tzumi made their first contribution in https://github.com/honojs/hono/pull/3491

Full Changelog: honojs/hono@v4.6.10...v4.6.11

v4.6.10

Compare Source

What's Changed

• chore: format no-response.yml by @​yusukebe in https://github.com/honojs/hono/pull/3622
• ci(deno): merge deno runtime coverage by @​usualoma in https://github.com/honojs/hono/pull/3632
• chore: bump devDependencies by @​EdamAme-x in https://github.com/honojs/hono/pull/3633
• fix(jsr): fix missing exports by @​EdamAme-x in https://github.com/honojs/hono/pull/3636
• refactor(hono-base): use object abbreviation notation by @​EdamAme-x in https://github.com/honojs/hono/pull/3640
• chore(build): validate if exporting is correct in package.json and jsr.json by @​EdamAme-x in https://github.com/honojs/hono/pull/3638
• fix(serveStatic): add guard to prevent reading empty folders by @​oussamasf in https://github.com/honojs/hono/pull/3639
• docs(service-worker): fix module docs for service worker adapter by @​rwv in https://github.com/honojs/hono/pull/3645
• refactor(hono-base): remove unneeded processes and variables by @​EdamAme-x in https://github.com/honojs/hono/pull/3649
• perf(trie-router): optimize and remove unnecessary processes by @​EdamAme-x in https://github.com/honojs/hono/pull/3647
• refactor(router): use # for private props to reduce the minified bundle size by @​EdamAme-x in https://github.com/honojs/hono/pull/3660
• fix(middleware/combine): prevent c.req.routeIndex from being changed by @​usualoma in https://github.com/honojs/hono/pull/3663

New Contributors

• @​oussamasf made their first contribution in https://github.com/honojs/hono/pull/3639
• @​rwv made their first contribution in https://github.com/honojs/hono/pull/3645

Full Changelog: honojs/hono@v4.6.9...v4.6.10

v4.6.9

Compare Source

What's Changed

• refactor: fix typos by @​mattn in https://github.com/honojs/hono/pull/3583
• fix(req): correct c.req.param decodes invalid percent strings by @​yusukebe in https://github.com/honojs/hono/pull/3573
• fix(jsx/dom): fix memo for DOM renderer by @​usualoma in https://github.com/honojs/hono/pull/3568
• fix(jsx/dom): fix dom rendering bugs for fragment. by @​usualoma in https://github.com/honojs/hono/pull/3569
• perf(compose): check if it is a instance only once by @​EdamAme-x in https://github.com/honojs/hono/pull/3585
• perf(router): use .concat instead of spread syntax by @​EdamAme-x in https://github.com/honojs/hono/pull/3584
• fix(types): remove any and fix types of adapter/deno by @​EdamAme-x in https://github.com/honojs/hono/pull/3291
• refactor(timing/utils-body): a few minor edits by @​sharma-shray in https://github.com/honojs/hono/pull/3557
• fix(hono-base): remove .matchRoute and reduce bundle size by @​EdamAme-x in https://github.com/honojs/hono/pull/3595
• perf(utils/url): improve performance of url utility by @​EdamAme-x in https://github.com/honojs/hono/pull/3593
• perf(context): improve performance of context (setHeaders) by @​EdamAme-x in https://github.com/honojs/hono/pull/3592
• refactor(helper/html): Prefer Array.isArray over instanceof Array by @​exoego in https://github.com/honojs/hono/pull/3601
• refactor: compare with undefined directly by @​exoego in https://github.com/honojs/hono/pull/3602
• refactor: remove useless spread by @​exoego in https://github.com/honojs/hono/pull/3600
• refactor(context): use simple for-of syntax by @​usualoma in https://github.com/honojs/hono/pull/3598
• feat(context): allow URL object on c.redirect() by @​cometkim in https://github.com/honojs/hono/pull/3609
• ci: Use latest version of Bun and Deno for CI by @​fel1x-developer in https://github.com/honojs/hono/pull/3554
• chore(ISSUE_TEMPLATE): encourage them to add a version if possible by @​EdamAme-x in https://github.com/honojs/hono/pull/3599
• perf(middleware/logger): optimize color status by @​exoego in https://github.com/honojs/hono/pull/3603
• refactor(utils/mime): make object and type commonality by @​EdamAme-x in https://github.com/honojs/hono/pull/3606
• chore: automatically close issues marked as “not bug” over time by @​EdamAme-x in https://github.com/honojs/hono/pull/3611
• perf(utils): use | 0 instead of Math.floor by @​EdamAme-x in https://github.com/honojs/hono/pull/3605
• perf(helper/cookie): fast-path for name specified by @​exoego in https://github.com/honojs/hono/pull/3608
• refactor: use # for private methods to reduce the minified file size by @​yusukebe in https://github.com/honojs/hono/pull/3596
• fix(helper/websocket): allow custom events to be passed to generics by @​EdamAme-x in https://github.com/honojs/hono/pull/3616
• fix(middleware/etag): generate etag hash value from all chunks by @​usualoma in https://github.com/honojs/hono/pull/3604
• fix(utils/crypto): fix types of crypto utility by @​EdamAme-x in https://github.com/honojs/hono/pull/3614

New Contributors

• @​mattn made their first contribution in https://github.com/honojs/hono/pull/3583
• @​sharma-shray made their first contribution in https://github.com/honojs/hono/pull/3557
• @​fel1x-developer made their first contribution in https://github.com/honojs/hono/pull/3554

Full Changelog: honojs/hono@v4.6.8...v4.6.9

v4.6.8

Compare Source

What's Changed

• fix(bun/ws): fix invalid types by @​nakasyou in https://github.com/honojs/hono/pull/3562
• fix(utils/cookie): partitioned typo in CookieOptions by @​imcotton in https://github.com/honojs/hono/pull/3566
• fix(websocket): Fix typo in WSContextInit type by @​Ariel-Moroshko in https://github.com/honojs/hono/pull/3575
• fix(websocket): prevent sending entire buffer when streaming Uint8Array chunks by @​Ariel-Moroshko in https://github.com/honojs/hono/pull/3570
• fix(bun/ws): supoort --hot by @​nakasyou in https://github.com/honojs/hono/pull/3576
• feat(header): suggest name of header and combine in one file by @​EdamAme-x in https://github.com/honojs/hono/pull/3577
• fix(devcontainer): remove unknown flag on docker-compose by @​EdamAme-x in https://github.com/honojs/hono/pull/3582
• fix(types): replace Hono with HonoBase to get better consistency of types by @​m-shaka in https://github.com/honojs/hono/pull/3580

New Contributors

• @​Ariel-Moroshko made their first contribution in https://github.com/honojs/hono/pull/3575

Full Changelog: honojs/hono@v4.6.7...v4.6.8

v4.6.7

Compare Source

What's Changed

• fix(vercel): remove requestContext by @​yusukebe in https://github.com/honojs/hono/pull/3549
• feat(jwt): Support custom secret keys for signing JWTs by @​kaandok in https://github.com/honojs/hono/pull/3546
• feat(ws): Make WebSocket adapter more changeable by @​nakasyou in https://github.com/honojs/hono/pull/3531
• perf(router): improve performance of router by @​EdamAme-x in https://github.com/honojs/hono/pull/3526

New Contributors

• @​kaandok made their first contribution in https://github.com/honojs/hono/pull/3546

Full Changelog: honojs/hono@v4.6.6...v4.6.7

v4.6.6

Compare Source

What's Changed

• docs(powered-by): add JSDoc by @​yusukebe in https://github.com/honojs/hono/pull/3520
• chore: podman support for devcontainer by @​marcomuser in https://github.com/honojs/hono/pull/3529
• refactor(secure-headers): refine secureHeadersNonce init by @​imcotton in https://github.com/honojs/hono/pull/3535
• fix(serve-static): silence NotFound warning on Deno by @​pablo-abc in https://github.com/honojs/hono/pull/3542
• fix(client): return query params in $url by @​alex-grover in https://github.com/honojs/hono/pull/3541

New Contributors

• @​marcomuser made their first contribution in https://github.com/honojs/hono/pull/3529
• @​imcotton made their first contribution in https://github.com/honojs/hono/pull/3535
• @​pablo-abc made their first contribution in https://github.com/honojs/hono/pull/3542
• @​alex-grover made their first contribution in https://github.com/honojs/hono/pull/3541

Full Changelog: honojs/hono@v4.6.5...v4.6.6

v4.6.5

Compare Source

Security fix for CSRF Protection Middleware

This release includes a security fix for CSRF Protection Middleware. If you are using CSRF Protection Middleware, please upgrade this hono package immediately.

Before this release, a request without a Content-Type header can bypass the protection. This fix does not allow it. See: GHSA-2234-fmw7-43wr

What's Changed

• perf(types): replace intersection with union to get better perf by @​m-shaka in https://github.com/honojs/hono/pull/3443
• ci: use Deno v2 by @​yusukebe in https://github.com/honojs/hono/pull/3506
• ci: use Deno v2 for a test running for deno by @​nakasyou in https://github.com/honojs/hono/pull/3509
• fix(types): rm ExcludeEmptyObject to fix massively increased type instantiations by @​m-shaka in https://github.com/honojs/hono/pull/3507
• fix(cors): avoid setting Access-Control-Allow-Origin if there is no matching origin by @​uki00a in https://github.com/honojs/hono/pull/3510
• feat(powered-by): optional server name by @​PatrickJS in https://github.com/honojs/hono/pull/3492
• fix(factory): revert PR #​3498 by @​yusukebe in https://github.com/honojs/hono/pull/3515
• fix(build): remove private fields by @​nakasyou in https://github.com/honojs/hono/pull/3514

New Contributors

• @​uki00a made their first contribution in https://github.com/honojs/hono/pull/3510
• @​PatrickJS made their first contribution in https://github.com/honojs/hono/pull/3492

Full Changelog: honojs/hono@v4.6.4...v4.6.5

v4.6.4

Compare Source

What's Changed

• chore: upgrade dependencies by @​yusukebe in https://github.com/honojs/hono/pull/3446
• chore: remove crypto-js from dev dependencies by @​yusukebe in https://github.com/honojs/hono/pull/3447
• chore(test): suppress no-unused-vars "'x' is assigned a value but only used as type" by @​exoego in https://github.com/honojs/hono/pull/3451
• chore(test): include bun coverage by @​exoego in https://github.com/honojs/hono/pull/3457
• test(deno): remove duplicated app.get by @​exoego in https://github.com/honojs/hono/pull/3469
• fix(types): add key to IntrinsicAttributes by @​codehz in https://github.com/honojs/hono/pull/3474
• fix(factory): relax Bindings and Variables for createMiddleware by @​yusukebe in https://github.com/honojs/hono/pull/3498
• fix(service-worker): bind fetch to globalThis by @​sapphi-red in https://github.com/honojs/hono/pull/3500
• refactor(jsx): add override to toStringToBuffer in classes extending JSXNode by @​yusukebe in https://github.com/honojs/hono/pull/3505

New Contributors

• @​sapphi-red made their first contribution in https://github.com/honojs/hono/pull/3500

Full Changelog: honojs/hono@v4.6.3...v4.6.4

v4.6.3

Compare Source

This release has many new features, but each feature is small, so we've released it as a patch release.

What's Changed

• chore: rename runtime_tests to runtime-tests by @​yusukebe in https://github.com/honojs/hono/pull/3419
• ci: Type check perf by @​m-shaka in https://github.com/honojs/hono/pull/3406
• refactor(jsx/streaming): Clarified the type of renderToReadableStream. by @​usualoma in https://github.com/honojs/hono/pull/3434
• perf(types): use homomorphic mapped type to reduce conditional branches by @​m-shaka in https://github.com/honojs/hono/pull/3440
• ci: prettify type check result and rm a comment by @​m-shaka in https://github.com/honojs/hono/pull/3442
• fix(types): useSyncExternalStore type by @​codehz in https://github.com/honojs/hono/pull/3437
• fix(combine/every): make every middleware work with short-circuiting middlewares by @​paolostyle in https://github.com/honojs/hono/pull/3441
• feat(secureHeader): add CSP Report-Only mode support by @​isoppp in https://github.com/honojs/hono/pull/3413
• feat(jwt): make JwtVariables generic for improved type safety by @​TinsFox in https://github.com/honojs/hono/pull/3428
• feat(request): Make request.ts available throught JSR for frameworks that need to instantiate HonoRequest by @​Sorikairox in https://github.com/honojs/hono/pull/3425
• feat(jsx/precompile): Normalization and stringification of attribute values as renderToString by @​usualoma in https://github.com/honojs/hono/pull/3432
• feat(serve-static): support absolute root by @​yusukebe in https://github.com/honojs/hono/pull/3420

New Contributors

• @​codehz made their first contribution in https://github.com/honojs/hono/pull/3437
• @​paolostyle made their first contribution in https://github.com/honojs/hono/pull/3441
• @​isoppp made their first contribution in https://github.com/honojs/hono/pull/3413
• @​TinsFox made their first contribution in https://github.com/honojs/hono/pull/3428
• @​Sorikairox made their first contribution in https://github.com/honojs/hono/pull/3425

Full Changelog: honojs/hono@v4.6.2...v4.6.3

v4.6.2

Compare Source

What's Changed

• chore(lint): ESLint v9 by @​yusukebe in https://github.com/honojs/hono/pull/3393
• perf(serve-static): performance optimization for precompressed feature by @​usualoma in https://github.com/honojs/hono/pull/3414
• fix(serve-static): use application/octet-stream if the mime type is not detected by @​usualoma in https://github.com/honojs/hono/pull/3415

Full Changelog: honojs/hono@v4.6.1...v4.6.2

v4.6.1

Compare Source

What's Changed

• fix(build): improve addExtension esbuild plugin by @​kt3k in https://github.com/honojs/hono/pull/3405

New Contributors

• @​kt3k made their first contribution in https://github.com/honojs/hono/pull/3405

Full Changelog: honojs/hono@v4.6.0...v4.6.1

v4.6.0

Compare Source

Hono v4.6.0 is now available!

One of the highlights of this release is the Context Storage Middleware. Let's introduce it.

Context Storage Middleware

Many users may have been waiting for this feature. The Context Storage Middleware uses AsyncLocalStorage to allow handling of the current Context object even outside of handlers.

For example, let’s define a Hono app with a variable message: string.

type Env = {
  Variables: {
    message: string
  }
}

const app = new Hono<Env>()

To enable Context Storage Middleware, register contextStorage() as middleware at the top and set the message value.

import { contextStorage } from 'hono/context-storage'

//...

app.use(contextStorage())

app.use(async (c, next) => {
  c.set('message', 'Hello!')
  await next()
})

getContext() returns the current Context object, allowing you to get the value of the message variable outside the handler.

import { getContext } from 'hono/context-storage'

app.get('/', (c) => {
  return c.text(getMessage())
})

// Access the variable outside the handler.
const getMessage = () => {
  return getContext<Env>().var.message
}

In the case of Cloudflare Workers, you can also access the Bindings outside the handler by using this middleware.

type Env = {
  Bindings: {
    KV: KVNamespace
  }
}

const app = new Hono<Env>()

app.use(contextStorage())

const setKV = (value: string) => {
  return getContext<Env>().env.KV.put('key', value)
}

Thanks @​marceloverdijk !

New features

• feat(secureHeader): add Permissions-Policy header to secure headers middleware https://github.com/honojs/hono/pull/3314
• feat(cloudflare-pages): enable c.env.eventContext in handleMiddleware https://github.com/honojs/hono/pull/3332
• feat(websocket): Add generics type to WSContext https://github.com/honojs/hono/pull/3337
• feat(jsx-renderer): set Content-Encoding when stream is true https://github.com/honojs/hono/pull/3355
• feat(serveStatic): add precompressed option https://github.com/honojs/hono/pull/3366
• feat(helper/streaming): Support Promise<string> or (async) JSX.Element in streamSSE https://github.com/honojs/hono/pull/3344
• feat(context): make fetch Response headers mutable https://github.com/honojs/hono/pull/3318
• feat(serve-static): add onFound option https://github.com/honojs/hono/pull/3396
• feat(basic-auth): added custom response message option https://github.com/honojs/hono/pull/3371
• feat(bearer-auth): added custom response message optio

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[cloudflare-workers-and-pages]

Deploying just-be-dev with    Cloudflare Pages

Latest commit:	85d3b2e
Status:	🚫  Build failed.

View logs