Option to disable plain PKCE method and enforce S256 only

There is currently no way to configure Workers OAuth Provider to allow only S256, which is the modern OAuth 2.1, recommended and most secure PKCE method.

The /authorize endpoint correctly enforces PKCE, but it also accepts the code_challenge_method=plain. Is there a way to disable the plain?
