Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Upgrade @sentry/react from 8.34.0 to 8.45.0 #84

Open
wants to merge 1 commit into
base: main
Choose a base branch
from

Conversation

mbreadmachine
Copy link
Owner

snyk-top-banner

Snyk has created this PR to upgrade @sentry/react from 8.34.0 to 8.45.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.


  • The recommended version is 21 versions ahead of your current version.

  • The recommended version was released 23 days ago.

Release notes
Package name: @sentry/react
  • 8.45.0 - 2024-12-13
    • feat(core): Add handled option to captureConsoleIntegration (#14664)
    • feat(browser): Attach virtual stack traces to HttpClient events (#14515)
    • feat(replay): Upgrade rrweb packages to 2.31.0 (#14689)
    • fix(aws-serverless): Remove v8 layer as it overwrites the current layer for docs (#14679)
    • fix(browser): Mark stack trace from captureMessage with attachStacktrace: true as synthetic (#14668)
    • fix(core): Mark stack trace from captureMessage with attatchStackTrace: true as synthetic (#14670)
    • fix(core): Set level in server runtime captureException (#10587)
    • fix(profiling-node): Guard invocation of native profiling methods (#14676)
    • fix(nuxt): Inline nitro-utils function (#14680)
    • fix(profiling-node): Ensure profileId is added to transaction event (#14681)
    • fix(react): Add React Router Descendant Routes support (#14304)
    • fix: Disable ANR and Local Variables if debugger is enabled via CLI args (#14643)

    Work in this release was contributed by @ anonrig and @ Zih0. Thank you for your contributions!

    Bundle size 📦

    Path Size
    @ sentry/browser 23.29 KB
    @ sentry/browser - with treeshaking flags 21.96 KB
    @ sentry/browser (incl. Tracing) 35.79 KB
    @ sentry/browser (incl. Tracing, Replay) 73.01 KB
    @ sentry/browser (incl. Tracing, Replay) - with treeshaking flags 63.41 KB
    @ sentry/browser (incl. Tracing, Replay with Canvas) 77.32 KB
    @ sentry/browser (incl. Tracing, Replay, Feedback) 89.81 KB
    @ sentry/browser (incl. Feedback) 40.04 KB
    @ sentry/browser (incl. sendFeedback) 27.89 KB
    @ sentry/browser (incl. FeedbackAsync) 32.69 KB
    @ sentry/react 25.96 KB
    @ sentry/react (incl. Tracing) 38.6 KB
    @ sentry/vue 27.49 KB
    @ sentry/vue (incl. Tracing) 37.63 KB
    @ sentry/svelte 23.45 KB
    CDN Bundle 24.43 KB
    CDN Bundle (incl. Tracing) 37.46 KB
    CDN Bundle (incl. Tracing, Replay) 72.64 KB
    CDN Bundle (incl. Tracing, Replay, Feedback) 78.01 KB
    CDN Bundle - uncompressed 71.74 KB
    CDN Bundle (incl. Tracing) - uncompressed 111.05 KB
    CDN Bundle (incl. Tracing, Replay) - uncompressed 225.1 KB
    CDN Bundle (incl. Tracing, Replay, Feedback) - uncompressed 238.32 KB
    @ sentry/nextjs (client) 38.89 KB
    @ sentry/sveltekit (client) 36.29 KB
    @ sentry/node 162.52 KB
    @ sentry/node - without tracing 98.71 KB
    @ sentry/aws-serverless 126.38 KB
  • 8.44.0 - 2024-12-12

    Deprecations

    • feat: Deprecate autoSessionTracking (#14640)

      Deprecates autoSessionTracking.
      To enable session tracking, it is recommended to unset autoSessionTracking and ensure that either, in browser environments
      the browserSessionIntegration is added, or in server environments the httpIntegration is added.

      To disable session tracking, it is recommended to unset autoSessionTracking and to remove the browserSessionIntegration in
      browser environments, or in server environments configure the httpIntegration with the trackIncomingRequestsAsSessions option set to false.

    Other Changes

    • feat: Reword log message around unsent spans (#14641)
    • feat(opentelemetry): Set response context for http.server spans (#14634)
    • fix(google-cloud-serverless): Update homepage link in package.json (#14411)
    • fix(nuxt): Add unbuild config to not fail on warn (#14662)

    Work in this release was contributed by @ robinvw1. Thank you for your contribution!

    Bundle size 📦

    Path Size
    @ sentry/browser 23.27 KB
    @ sentry/browser - with treeshaking flags 21.94 KB
    @ sentry/browser (incl. Tracing) 35.77 KB
    @ sentry/browser (incl. Tracing, Replay) 73 KB
    @ sentry/browser (incl. Tracing, Replay) - with treeshaking flags 63.4 KB
    @ sentry/browser (incl. Tracing, Replay with Canvas) 77.31 KB
    @ sentry/browser (incl. Tracing, Replay, Feedback) 89.8 KB
    @ sentry/browser (incl. Feedback) 40.02 KB
    @ sentry/browser (incl. sendFeedback) 27.88 KB
    @ sentry/browser (incl. FeedbackAsync) 32.67 KB
    @ sentry/react 25.94 KB
    @ sentry/react (incl. Tracing) 38.59 KB
    @ sentry/vue 27.47 KB
    @ sentry/vue (incl. Tracing) 37.61 KB
    @ sentry/svelte 23.43 KB
    CDN Bundle 24.41 KB
    CDN Bundle (incl. Tracing) 37.43 KB
    CDN Bundle (incl. Tracing, Replay) 72.62 KB
    CDN Bundle (incl. Tracing, Replay, Feedback) 77.98 KB
    CDN Bundle - uncompressed 71.69 KB
    CDN Bundle (incl. Tracing) - uncompressed 110.99 KB
    CDN Bundle (incl. Tracing, Replay) - uncompressed 225.06 KB
    CDN Bundle (incl. Tracing, Replay, Feedback) - uncompressed 238.28 KB
    @ sentry/nextjs (client) 38.88 KB
    @ sentry/sveltekit (client) 36.27 KB
    @ sentry/node 162.4 KB
    @ sentry/node - without tracing 98.57 KB
    @ sentry/aws-serverless 126.28 KB
  • 8.43.0 - 2024-12-10

    Important Changes

    • feat(nuxt): Add option autoInjectServerSentry (no default import()) (#14553)

      Using the dynamic import() as the default behavior for initializing the SDK on the server-side did not work for every project.
      The default behavior of the SDK has been changed, and you now need to use the --import flag to initialize Sentry on the server-side to leverage full functionality.

      Example with --import:

      node --import ./.output/server/sentry.server.config.mjs .output/server/index.mjs

      In case you are not able to use the --import flag, you can enable auto-injecting Sentry in the nuxt.config.ts (comes with limitations):

      sentry: {
        autoInjectServerSentry: 'top-level-import', // or 'experimental_dynamic-import'
      },
    • feat(browser): Adds LaunchDarkly and OpenFeature integrations (#14207)

      Adds browser SDK integrations for tracking feature flag evaluations through the LaunchDarkly JS SDK and OpenFeature Web SDK:

      import * as Sentry from '@ sentry/browser';

      Sentry.init({
      integrations: [
      // Track LaunchDarkly feature flags
      Sentry.launchDarklyIntegration(),
      // Track OpenFeature feature flags
      Sentry.openFeatureIntegration(),
      ],
      });

    • feat(browser): Add featureFlagsIntegration for custom tracking of flag evaluations (#14582)

      Adds a browser integration to manually track feature flags with an API. Feature flags are attached to subsequent error events:

      import * as Sentry from '@ sentry/browser';

      const featureFlagsIntegrationInstance = Sentry.featureFlagsIntegration();

      Sentry.init({
      // Initialize the SDK with the feature flag integration
      integrations: [featureFlagsIntegrationInstance],
      });

      // Manually track a feature flag
      featureFlagsIntegrationInstance.addFeatureFlag('my-feature', true);

    • feat(astro): Add Astro 5 support (#14613)

      With this release, the Sentry Astro SDK officially supports Astro 5.

    Deprecations

    • feat(nextjs): Deprecate typedef for hideSourceMaps (#14594)

      The functionality of hideSourceMaps was removed in version 8 but was forgotten to be deprecated and removed.
      It will be completely removed in the next major version.

    • feat(core): Deprecate APIs around RequestSessions (#14566)

      The APIs around RequestSessions are mostly used internally.
      Going forward the SDK will not expose concepts around RequestSessions.
      Instead, functionality around server-side Release Health will be managed in integrations.

    Other Changes

    • feat(browser): Add browserSessionIntegration (#14551)
    • feat(core): Add raw_security envelope types (#14562)
    • feat(deps): Bump @ opentelemetry/instrumentation from 0.55.0 to 0.56.0 (#14625)
    • feat(deps): Bump @ sentry/cli from 2.38.2 to 2.39.1 (#14626)
    • feat(deps): Bump @ sentry/rollup-plugin from 2.22.6 to 2.22.7 (#14622)
    • feat(deps): Bump @ sentry/webpack-plugin from 2.22.6 to 2.22.7 (#14623)
    • feat(nestjs): Add fastify support (#14549)
    • feat(node): Add @ vercel/ai instrumentation (#13892)
    • feat(node): Add disableAnrDetectionForCallback function (#14359)
    • feat(node): Add trackIncomingRequestsAsSessions option to http integration (#14567)
    • feat(nuxt): Add option autoInjectServerSentry (no default import()) (#14553)
    • feat(nuxt): Add warning when Netlify or Vercel build is discovered (#13868)
    • feat(nuxt): Improve serverless event flushing and scope isolation (#14605)
    • feat(opentelemetry): Stop looking at propagation context for span creation (#14481)
    • feat(opentelemetry): Update OpenTelemetry dependencies to ^1.29.0 (#14590)
    • feat(opentelemetry): Update OpenTelemetry dependencies to 1.28.0 (#14547)
    • feat(replay): Upgrade rrweb packages to 2.30.0 (#14597)
    • fix(core): Decode filename and module stack frame properties in Node stack parser (#14544)
    • fix(core): Filter out unactionable CEFSharp promise rejection error by default (#14595)
    • fix(nextjs): Don't show warning about devtool option (#14552)
    • fix(nextjs): Only apply tracing metadata to data fetcher data when data is an object (#14575)
    • fix(node): Guard against invalid maxSpanWaitDuration values (#14632)
    • fix(react): Match routes with parseSearch option in TanStack Router instrumentation (#14328)
    • fix(sveltekit): Fix git SHA not being picked up for release (#14540)
    • fix(types): Fix generic exports with default (#14576)

    Work in this release was contributed by @ lsmurray. Thank you for your contribution!

    Bundle size 📦

    Path Size
    @ sentry/browser 23.27 KB
    @ sentry/browser - with treeshaking flags 21.94 KB
    @ sentry/browser (incl. Tracing) 35.75 KB
    @ sentry/browser (incl. Tracing, Replay) 72.98 KB
    @ sentry/browser (incl. Tracing, Replay) - with treeshaking flags 63.38 KB
    @ sentry/browser (incl. Tracing, Replay with Canvas) 77.29 KB
    @ sentry/browser (incl. Tracing, Replay, Feedback) 89.78 KB
    @ sentry/browser (incl. Feedback) 40.02 KB
    @ sentry/browser (incl. sendFeedback) 27.88 KB
    @ sentry/browser (incl. FeedbackAsync) 32.67 KB
    @ sentry/react 25.94 KB
    @ sentry/react (incl. Tracing) 38.58 KB
    @ sentry/vue 27.47 KB
    @ sentry/vue (incl. Tracing) 37.59 KB
    @ sentry/svelte 23.43 KB
    CDN Bundle 24.41 KB
    CDN Bundle (incl. Tracing) 37.4 KB
    CDN Bundle (incl. Tracing, Replay) 72.6 KB
    CDN Bundle (incl. Tracing, Replay, Feedback) 77.96 KB
    CDN Bundle - uncompressed 71.69 KB
    CDN Bundle (incl. Tracing) - uncompressed 110.97 KB
    CDN Bundle (incl. Tracing, Replay) - uncompressed 225.04 KB
    CDN Bundle (incl. Tracing, Replay, Feedback) - uncompressed 238.26 KB
    @ sentry/nextjs (client) 38.86 KB
    @ sentry/sveltekit (client) 36.26 KB
    @ sentry/node 162.34 KB
    @ sentry/node - without tracing 98.53 KB
    @ sentry/aws-serverless 126.23 KB
  • 8.42.0 - 2024-12-02

    Important Changes

    Deprecations

    • feat: Warn about source-map generation (#14533)

      In the next major version of the SDK we will change how source maps are generated when the SDK is added to an application.
      Currently, the implementation varies a lot between different SDKs and can be difficult to understand.
      Moving forward, our goal is to turn on source maps for every framework, unless we detect that they are explicitly turned off.
      Additionally, if we end up enabling source maps, we will emit a log message that we did so.

      With this particular release, we are emitting warnings that source map generation will change in the future and we print instructions on how to prepare for the next major.

    • feat(nuxt): Deprecate tracingOptions in favor of vueIntegration (#14530)

      Currently it is possible to configure tracing options in two places in the Sentry Nuxt SDK:

      • In Sentry.init()
      • Inside tracingOptions in Sentry.init()

      For tree-shaking purposes and alignment with the Vue SDK, it is now recommended to instead use the newly exported vueIntegration() and its tracingOptions option to configure tracing options in the Nuxt SDK:

      // sentry.client.config.ts
      import * as Sentry from '@ sentry/nuxt';

      Sentry.init({
      // ...
      integrations: [
      Sentry.vueIntegration({
      tracingOptions: {
      trackComponents: true,
      },
      }),
      ],
      });

    Other Changes

    • feat(browser-utils): Update web-vitals to v4.2.4 (#14439)
    • feat(nuxt): Expose vueIntegration (#14526)
    • fix(feedback): Handle css correctly in screenshot mode (#14535)

    Bundle size 📦

    Path Size
    @ sentry/browser 23.1 KB
    @ sentry/browser - with treeshaking flags 21.84 KB
    @ sentry/browser (incl. Tracing) 35.61 KB
    @ sentry/browser (incl. Tracing, Replay) 72.47 KB
    @ sentry/browser (incl. Tracing, Replay) - with treeshaking flags 62.96 KB
    @ sentry/browser (incl. Tracing, Replay with Canvas) 76.79 KB
    @ sentry/browser (incl. Tracing, Replay, Feedback) 89.28 KB
    @ sentry/browser (incl. Feedback) 39.86 KB
    @ sentry/browser (incl. sendFeedback) 27.72 KB
    @ sentry/browser (incl. FeedbackAsync) 32.53 KB
    @ sentry/react 25.8 KB
    @ sentry/react (incl. Tracing) 38.49 KB
    @ sentry/vue 27.25 KB
    @ sentry/vue (incl. Tracing) 37.38 KB
    @ sentry/svelte 23.25 KB
    CDN Bundle 24.32 KB
    CDN Bundle (incl. Tracing) 37.29 KB
    CDN Bundle (incl. Tracing, Replay) 72.15 KB
    CDN Bundle (incl. Tracing, Replay, Feedback) 77.49 KB
    CDN Bundle - uncompressed 71.45 KB
    CDN Bundle (incl. Tracing) - uncompressed 110.76 KB
    CDN Bundle (incl. Tracing, Replay) - uncompressed 223.83 KB
    CDN Bundle (incl. Tracing, Replay, Feedback) - uncompressed 237.05 KB
    @ sentry/nextjs (client) 38.78 KB
    @ sentry/sveltekit (client) 36.14 KB
    @ sentry/node 135.08 KB
    @ sentry/node - without tracing 97.13 KB
    @ sentry/aws-serverless 109.43 KB
  • 8.41.0 - 2024-11-27

    Important Changes

    • meta(nuxt): Require minimum Nuxt v3.7.0 (#14473)

      We formalized that the Nuxt SDK is at minimum compatible with Nuxt version 3.7.0 and above.
      Additionally, the SDK requires the implicit nitropack dependency to satisfy version ^2.10.0 and ofetch to satisfy ^1.4.0.
      It is recommended to check your lock-files and manually upgrade these dependencies if they don't match the version ranges.

    Deprecations

    We are deprecating a few APIs which will be removed in the next major.

    The following deprecations will potentially affect you:

    • feat(core): Update & deprecate undefined option handling (#14450)

      In the next major version we will change how passing undefined to tracesSampleRate / tracesSampler / enableTracing will behave.

      Currently, doing the following:

      Sentry.init({
        tracesSampleRate: undefined,
      });

      Will result in tracing being enabled (although no spans will be generated) because the tracesSampleRate key is present in the options object.
      In the next major version, this behavior will be changed so that passing undefined (or rather having a tracesSampleRate key) will result in tracing being disabled, the same as not passing the option at all.
      If you are currently relying on undefined being passed, and and thus have tracing enabled, it is recommended to update your config to set e.g. tracesSampleRate: 0 instead, which will also enable tracing in v9.

      The same applies to tracesSampler and enableTracing.

    • feat(core): Log warnings when returning null in beforeSendSpan (#14433)

      Currently, the beforeSendSpan option in Sentry.init() allows you to drop individual spans from a trace by returning null from the hook.
      Since this API lends itself to creating "gaps" inside traces, we decided to change how this API will work in the next major version.

      With the next major version the beforeSendSpan API can only be used to mutate spans, but no longer to drop them.
      With this release the SDK will warn you if you are using this API to drop spans.
      Instead, it is recommended to configure instrumentation (i.e. integrations) directly to control what spans are created.

      Additionally, with the next major version, root spans will also be passed to beforeSendSpan.

    • feat(utils): Deprecate @ sentry/utils (#14431)

      With the next major version the @ sentry/utils package will be merged into the @ sentry/core package.
      It is therefore no longer recommended to use the @ sentry/utils package.

    • feat(vue): Deprecate configuring Vue tracing options anywhere else other than through the vueIntegration's tracingOptions option (#14385)

      Currently it is possible to configure tracing options in various places in the Sentry Vue SDK:

      • In Sentry.init()
      • Inside tracingOptions in Sentry.init()
      • In the vueIntegration() options
      • Inside tracingOptions in the vueIntegration() options

      Because this is a bit messy and confusing to document, the only recommended way to configure tracing options going forward is through the tracingOptions in the vueIntegration().
      The other means of configuration will be removed in the next major version of the SDK.

    • feat: Deprecate registerEsmLoaderHooks.include and registerEsmLoaderHooks.exclude (#14486)

      Currently it is possible to define registerEsmLoaderHooks.include and registerEsmLoaderHooks.exclude options in Sentry.init() to only apply ESM loader hooks to a subset of modules.
      This API served as an escape hatch in case certain modules are incompatible with ESM loader hooks.

      Since this API was introduced, a way was found to only wrap modules that there exists instrumentation for (meaning a vetted list).
      To only wrap modules that have instrumentation, it is recommended to instead set registerEsmLoaderHooks.onlyIncludeInstrumentedModules to true.

      Note that onlyIncludeInstrumentedModules: true will become the default behavior in the next major version and the registerEsmLoaderHooks will no longer accept fine-grained options.

    The following deprecations will most likely not affect you unless you are building an SDK yourself:

    • feat(core): Deprecate arrayify (#14405)
    • feat(core): Deprecate flatten (#14454)
    • feat(core): Deprecate urlEncode (#14406)
    • feat(core): Deprecate validSeverityLevels (#14407)
    • feat(core/utils): Deprecate getNumberOfUrlSegments (#14458)
    • feat(utils): Deprecate memoBuilder, BAGGAGE_HEADER_NAME, and makeFifoCache (#14434)
    • feat(utils/core): Deprecate addRequestDataToEvent and extractRequestData (#14430)

    Other Changes

    • feat: Streamline sentry-trace, baggage and DSC handling (#14364)
    • feat(core): Further optimize debug ID parsing (#14365)
    • feat(node): Add openTelemetryInstrumentations option (#14484)
    • feat(nuxt): Add filter for not found source maps (devtools) (#14437)
    • feat(nuxt): Only delete public source maps (#14438)
    • fix(nextjs): Don't report NEXT_REDIRECT from browser (#14440)
    • perf(opentelemetry): Bucket spans for cleanup (#14154)

    Work in this release was contributed by @ NEKOYASAN and @ fmorett. Thank you for your contributions!

    Bundle size 📦

    Path Size
    @ sentry/browser 23.12 KB
    @ sentry/browser - with treeshaking flags 21.84 KB
    @ sentry/browser (incl. Tracing) 35.53 KB
    @ sentry/browser (incl. Tracing, Replay) 72.44 KB
    @ sentry/browser (incl. Tracing, Replay) - with treeshaking flags 62.81 KB
    @ sentry/browser (incl. Tracing, Replay with Canvas) 76.76 KB
    @ sentry/browser (incl. Tracing, Replay, Feedback) 89.21 KB
    @ sentry/browser (incl. Feedback) 39.86 KB
    @ sentry/browser (incl. sendFeedback) 27.73 KB
    @ sentry/browser (incl. FeedbackAsync) 32.53 KB
    @ sentry/react 25.8 KB
    @ sentry/react (incl. Tracing) 38.36 KB
    @ sentry/vue 27.28 KB
    @ sentry/vue (incl. Tracing) 37.33 KB
    @ sentry/svelte 23.27 KB
    CDN Bundle 24.29 KB
    CDN Bundle (incl. Tracing) 37.17 KB
    CDN Bundle (incl. Tracing, Replay) 72.06 KB
    CDN Bundle (incl. Tracing, Replay, Feedback) 77.41 KB
    CDN Bundle - uncompressed 71.37 KB
    CDN Bundle (incl. Tracing) - uncompressed 110.4 KB
    CDN Bundle (incl. Tracing, Replay) - uncompressed 223.47 KB
    CDN Bundle (incl. Tracing, Replay, Feedback) - uncompressed 236.69 KB
    @ sentry/nextjs (client) 38.68 KB
    @ sentry/sveltekit (client) 36.05 KB
    @ sentry/node 135.06 KB
    @ sentry/node - without tracing 96.89 KB
    @ sentry/aws-serverless 107.09 KB
  • 8.41.0-beta.1 - 2024-11-25
  • 8.41.0-beta.0 - 2024-11-21
  • 8.40.0 - 2024-11-22
  • 8.39.0 - 2024-11-19
  • 8.39.0-dev.0 - 2024-11-12
  • 8.39.0-beta.0 - 2024-11-14
  • 8.38.0 - 2024-11-12
  • 8.37.1 - 2024-11-05
  • 8.37.0 - 2024-11-05
  • 8.36.0 - 2024-10-31
  • 8.36.0-beta.0 - 2024-10-23
  • 8.36.0-alpha.1 - 2024-10-24
  • 8.36.0-alpha.0 - 2024-10-22
  • 8.35.0 - 2024-10-21
  • 8.35.0-beta.0 - 2024-10-15
  • 8.35.0-alpha.0 - 2024-10-11
  • 8.34.0 - 2024-10-10
from @sentry/react GitHub release notes

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

Snyk has created this PR to upgrade @sentry/react from 8.34.0 to 8.45.0.

See this package in npm:
@sentry/react

See this project in Snyk:
https://app.snyk.io/org/marcus1youtube/project/87b7cf86-347c-4d7a-9846-162fcfde924c?utm_source=github&utm_medium=referral&page=upgrade-pr
Copy link

vercel bot commented Jan 5, 2025

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name Status Preview Comments Updated (UTC)
arany5d ✅ Ready (Inspect) Visit Preview 💬 Add feedback Jan 5, 2025 5:12am

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants