Replace with direct run step

[mendral-app]

Summary

• Replace third-party cloudflare/wrangler-action with a direct npx wrangler pages deploy run step, eliminating supply chain risk and the Node.js 20 deprecation warning
• Remove unused deployments: write permission (was only needed by the action's GitHub deployment status feature)

Changes

.github/workflows/deploy.yaml

Before:

- uses: "cloudflare/wrangler-action@da0e0dfe58b7a431659754fdf3f186c529afbe65" # v3
  with:
    apiToken: ${{ secrets.CLOUDFLARE_API_TOKEN }}
    accountId: ${{ secrets.CLOUDFLARE_ACCOUNT_ID }}
    command: pages deploy dist --project-name=www-getprobo-com
    gitHubToken: ${{ secrets.GITHUB_TOKEN }}

After:

- run: npx wrangler pages deploy dist --project-name=www-getprobo-com
  env:
    CLOUDFLARE_API_TOKEN: ${{ secrets.CLOUDFLARE_API_TOKEN }}
    CLOUDFLARE_ACCOUNT_ID: ${{ secrets.CLOUDFLARE_ACCOUNT_ID }}

Wrangler is already installed as a project dependency via npm ci, so no additional setup is needed. The CLOUDFLARE_API_TOKEN and CLOUDFLARE_ACCOUNT_ID environment variables are read natively by wrangler.

Notes

• The gitHubToken input was used by the action to create GitHub deployment status entries. This is no longer set. If deployment status tracking is desired, it can be added separately.
• The deployments: write permission was only needed for that feature and has been removed.

---

Related insight: Deploy workflow uses third-party cloudflare/wrangler-action

---

Note

Created by Mendral. Tag @mendral-app with feedback or questions.

• View implementation session
• Addresses this insight