Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): update all non-major dependencies #26

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

chore(deps): update all non-major dependencies #26

wants to merge 1 commit into from

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Jan 22, 2025

This PR contains the following updates:

Package Change Age Adoption Passing Confidence Type Update
@sentry/react (source) 8.50.0 -> 8.51.0 age adoption passing confidence dependencies minor
node 22.13.0-alpine -> 22.13.1-alpine age adoption passing confidence stage patch

Release Notes

getsentry/sentry-javascript (@​sentry/react)

v8.51.0

Compare Source

Important Changes

  • feat(v8/node): Add prismaInstrumentation option to Prisma integration as escape hatch for all Prisma versions (#​15128)

    This release adds a compatibility API to add support for Prisma version 6.
    To capture performance data for Prisma version 6:

    1. Install the @prisma/instrumentation package on version 6.

    2. Pass a new PrismaInstrumentation() instance as exported from @prisma/instrumentation to the prismaInstrumentation option:

      import { PrismaInstrumentation } from '@​prisma/instrumentation';

Sentry.init({
  integrations: [
    prismaIntegration({
      // Override the default instrumentation that Sentry uses
      prismaInstrumentation: new PrismaInstrumentation(),
    }),
  ],
});

      The passed instrumentation instance will override the default instrumentation instance the integration would use, while the prismaIntegration will still ensure data compatibility for the various Prisma versions.

    3. Remove the previewFeatures = ["tracing"] option from the client generator block of your Prisma schema.

Other Changes
  • feat(v8/browser): Add multiplexedtransport.js CDN bundle (#​15046)
  • feat(v8/browser): Add Unleash integration (#​14948)
  • feat(v8/deno): Deprecate Deno SDK as published on deno.land (#​15121)
  • feat(v8/sveltekit): Deprecate fetchProxyScriptNonce option (#​15011)
  • fix(v8/aws-lambda): Avoid overwriting root span name (#​15054)
  • fix(v8/core): fatal events should set session as crashed (#​15073)
  • fix(v8/node/nestjs): Use method on current fastify request (#​15104)

Work in this release was contributed by @​tjhiggins, and @​nwalters512. Thank you for your contributions!

Bundle size 📦

Path Size
@​sentry/browser 23.29 KB
@​sentry/browser - with treeshaking flags 23.17 KB
@​sentry/browser (incl. Tracing) 35.85 KB
@​sentry/browser (incl. Tracing, Replay) 73.2 KB
@​sentry/browser (incl. Tracing, Replay) - with treeshaking flags 66.66 KB
@​sentry/browser (incl. Tracing, Replay with Canvas) 77.51 KB
@​sentry/browser (incl. Tracing, Replay, Feedback) 89.44 KB
@​sentry/browser (incl. Feedback) 39.5 KB
@​sentry/browser (incl. sendFeedback) 27.9 KB
@​sentry/browser (incl. FeedbackAsync) 32.7 KB
@​sentry/react 25.97 KB
@​sentry/react (incl. Tracing) 38.68 KB
@​sentry/vue 27.57 KB
@​sentry/vue (incl. Tracing) 37.71 KB
@​sentry/svelte 23.46 KB
CDN Bundle 24.5 KB
CDN Bundle (incl. Tracing) 37.56 KB
CDN Bundle (incl. Tracing, Replay) 72.85 KB
CDN Bundle (incl. Tracing, Replay, Feedback) 78.21 KB
CDN Bundle - uncompressed 71.94 KB
CDN Bundle (incl. Tracing) - uncompressed 111.44 KB
CDN Bundle (incl. Tracing, Replay) - uncompressed 225.69 KB
CDN Bundle (incl. Tracing, Replay, Feedback) - uncompressed 238.79 KB
@​sentry/nextjs (client) 38.93 KB
@​sentry/sveltekit (client) 36.36 KB
@​sentry/node 162.83 KB
@​sentry/node - without tracing 99.14 KB
@​sentry/aws-serverless 126.65 KB
nodejs/node (node)

v22.13.1: 2025-01-21, Version 22.13.1 'Jod' (LTS), @​RafaelGSS

Compare Source

This is a security release.

Notable Changes
  • CVE-2025-23083 - src,loader,permission: throw on InternalWorker use when permission model is enabled (High)
  • CVE-2025-23085 - src: fix HTTP2 mem leak on premature close and ERR_PROTO (Medium)
  • CVE-2025-23084 - path: fix path traversal in normalize() on Windows (Medium)

Dependency update:

  • CVE-2025-22150 - Use of Insufficiently Random Values in undici fetch() (Medium)
Commits

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate Renovate
Copy link
Contributor Author

renovate bot commented Jan 22, 2025

Branch automerge failure

This PR was configured for branch automerge. However, this is not possible, so it has been raised as a PR instead.

  • Branch has one or more failed status checks

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants