Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Upgrade @sentry/react from 7.16.0 to 8.17.0 #791

Open
wants to merge 1 commit into
base: main
Choose a base branch
from

Conversation

q1blue
Copy link
Collaborator

@q1blue q1blue commented Aug 1, 2024

snyk-top-banner

Snyk has created this PR to upgrade @sentry/react from 7.16.0 to 8.17.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.


⚠️ Warning: This PR contains major version upgrade(s), and may be a breaking change.

  • The recommended version is 191 versions ahead of your current version.

  • The recommended version was released on 22 days ago.

Release notes
Package name: @sentry/react
  • 8.17.0 - 2024-07-10
    • feat: Upgrade OTEL deps (#12809)
    • fix(nuxt): Add module to build:transpile script (#12843)
    • fix(browser): Allow SDK initialization in NW.js apps (#12846)

    Bundle size 📦

    Path Size
    @ sentry/browser 22.31 KB
    @ sentry/browser (incl. Tracing) 33.45 KB
    @ sentry/browser (incl. Tracing, Replay) 69.2 KB
    @ sentry/browser (incl. Tracing, Replay) - with treeshaking flags 62.53 KB
    @ sentry/browser (incl. Tracing, Replay with Canvas) 73.27 KB
    @ sentry/browser (incl. Tracing, Replay, Feedback) 85.9 KB
    @ sentry/browser (incl. Tracing, Replay, Feedback, metrics) 87.76 KB
    @ sentry/browser (incl. metrics) 26.59 KB
    @ sentry/browser (incl. Feedback) 38.98 KB
    @ sentry/browser (incl. sendFeedback) 26.92 KB
    @ sentry/browser (incl. FeedbackAsync) 31.54 KB
    @ sentry/react 25.05 KB
    @ sentry/react (incl. Tracing) 36.49 KB
    @ sentry/vue 26.41 KB
    @ sentry/vue (incl. Tracing) 35.31 KB
    @ sentry/svelte 22.44 KB
    CDN Bundle 23.52 KB
    CDN Bundle (incl. Tracing) 35.21 KB
    CDN Bundle (incl. Tracing, Replay) 69.31 KB
    CDN Bundle (incl. Tracing, Replay, Feedback) 74.51 KB
    CDN Bundle - uncompressed 69.02 KB
    CDN Bundle (incl. Tracing) - uncompressed 104.04 KB
    CDN Bundle (incl. Tracing, Replay) - uncompressed 214.43 KB
    CDN Bundle (incl. Tracing, Replay, Feedback) - uncompressed 227.15 KB
    @ sentry/nextjs (client) 36.37 KB
    @ sentry/sveltekit (client) 34.1 KB
    @ sentry/node 130.79 KB
    @ sentry/node - without tracing 91.88 KB
    @ sentry/aws-serverless 117.05 KB
  • 8.16.0 - 2024-07-09

    Important Changes

    • feat(nextjs): Use spans generated by Next.js for App Router (#12729)

    Previously, the @ sentry/nextjs SDK automatically recorded spans in the form of transactions for each of your top-level
    server components (pages, layouts, ...). This approach had a few drawbacks, the main ones being that traces didn't have
    a root span, and more importantly, if you had data stream to the client, its duration was not captured because the
    server component spans had finished before the data could finish streaming.

    With this release, we will capture the duration of App Router requests in their entirety as a single transaction with
    server component spans being descendants of that transaction. This means you will get more data that is also more
    accurate. Note that this does not apply to the Edge runtime. For the Edge runtime, the SDK will emit transactions as it
    has before.

    Generally speaking, this change means that you will see less transactions and more spans in Sentry. You will no
    longer receive server component transactions like Page Server Component (/path/to/route) (unless using the Edge
    runtime), and you will instead receive transactions for your App Router SSR requests that look like
    GET /path/to/route.

    If you are on Sentry SaaS, this may have an effect on your quota consumption: Less transactions, more spans.

    • - feat(nestjs): Add nest cron monitoring support (#12781)

    The @ sentry/nestjs SDK now includes a @ SentryCron decorator that can be used to augment the native NestJS @ Cron
    decorator to send check-ins to Sentry before and after each cron job run:

    import { Cron } from '@ nestjs/schedule';
    import { SentryCron, MonitorConfig } from '@ sentry/nestjs';
    import type { MonitorConfig } from '@ sentry/types';

    const monitorConfig: MonitorConfig = {
    schedule: {
    type: 'crontab',
    value: '* * * * *',
    },
    checkinMargin: 2, // In minutes. Optional.
    maxRuntime: 10, // In minutes. Optional.
    timezone: 'America/Los_Angeles', // Optional.
    };

    export class MyCronService {
    @Cron('* * * * *')
    @SentryCron('my-monitor-slug', monitorConfig)
    handleCron() {
    // Your cron job logic here
    }
    }

    Other Changes

    • feat(node): Allow to pass instrumentation config to httpIntegration (#12761)
    • feat(nuxt): Add server error hook (#12796)
    • feat(nuxt): Inject sentry config with Nuxt addPluginTemplate (#12760)
    • fix: Apply stack frame metadata before event processors (#12799)
    • fix(feedback): Add missing h import in ScreenshotEditor (#12784)
    • fix(node): Ensure autoSessionTracking is enabled by default (#12790)
    • ref(feedback): Let CropCorner inherit the existing h prop (#12814)
    • ref(otel): Ensure we never swallow args for ContextManager (#12798)

    Bundle size 📦

    Path Size
    @ sentry/browser 22.29 KB
    @ sentry/browser (incl. Tracing) 33.44 KB
    @ sentry/browser (incl. Tracing, Replay) 69.19 KB
    @ sentry/browser (incl. Tracing, Replay) - with treeshaking flags 62.52 KB
    @ sentry/browser (incl. Tracing, Replay with Canvas) 73.25 KB
    @ sentry/browser (incl. Tracing, Replay, Feedback) 85.88 KB
    @ sentry/browser (incl. Tracing, Replay, Feedback, metrics) 87.74 KB
    @ sentry/browser (incl. metrics) 26.58 KB
    @ sentry/browser (incl. Feedback) 38.97 KB
    @ sentry/browser (incl. sendFeedback) 26.92 KB
    @ sentry/browser (incl. FeedbackAsync) 31.53 KB
    @ sentry/react 25.04 KB
    @ sentry/react (incl. Tracing) 36.48 KB
    @ sentry/vue 26.4 KB
    @ sentry/vue (incl. Tracing) 35.3 KB
    @ sentry/svelte 22.43 KB
    CDN Bundle 23.51 KB
    CDN Bundle (incl. Tracing) 35.2 KB
    CDN Bundle (incl. Tracing, Replay) 69.31 KB
    CDN Bundle (incl. Tracing, Replay, Feedback) 74.5 KB
    CDN Bundle - uncompressed 69 KB
    CDN Bundle (incl. Tracing) - uncompressed 104.02 KB
    CDN Bundle (incl. Tracing, Replay) - uncompressed 214.41 KB
    CDN Bundle (incl. Tracing, Replay, Feedback) - uncompressed 227.12 KB
    @ sentry/nextjs (client) 36.36 KB
    @ sentry/sveltekit (client) 34.09 KB
    @ sentry/node 130.86 KB
    @ sentry/node - without tracing 91.88 KB
    @ sentry/aws-serverless 117.05 KB
  • 8.15.0 - 2024-07-05
    • feat(core): allow unregistering callback through on (#11710)
    • feat(nestjs): Add function-level span decorator to nestjs (#12721)
    • feat(otel): Export & use spanTimeInputToSeconds for otel span exporter (#12699)
    • fix(core): Pass origin as referrer for lazyLoadIntegration (#12766)
    • fix(deno): Publish from build directory (#12773)
    • fix(hapi): Specify error channel to filter boom errors (#12725)
    • fix(react): Revert back to jsxRuntime: 'classic' to prevent breaking react 17 (#12775)
    • fix(tracing): Report dropped spans for transactions (#12751)
    • ref(scope): Delete unused public getStack() (#12737)

    Work in this release was contributed by @ arturovt and @ jaulz. Thank you for your contributions!

    Bundle size 📦

    Path Size
    @ sentry/browser 22.28 KB
    @ sentry/browser (incl. Tracing) 33.43 KB
    @ sentry/browser (incl. Tracing, Replay) 69.18 KB
    @ sentry/browser (incl. Tracing, Replay) - with treeshaking flags 62.51 KB
    @ sentry/browser (incl. Tracing, Replay with Canvas) 73.24 KB
    @ sentry/browser (incl. Tracing, Replay, Feedback) 85.87 KB
    @ sentry/browser (incl. Tracing, Replay, Feedback, metrics) 87.73 KB
    @ sentry/browser (incl. metrics) 26.57 KB
    @ sentry/browser (incl. Feedback) 38.93 KB
    @ sentry/browser (incl. sendFeedback) 26.9 KB
    @ sentry/browser (incl. FeedbackAsync) 31.52 KB
    @ sentry/react 25.02 KB
    @ sentry/react (incl. Tracing) 36.46 KB
    @ sentry/vue 26.39 KB
    @ sentry/vue (incl. Tracing) 35.29 KB
    @ sentry/svelte 22.41 KB
    CDN Bundle 23.5 KB
    CDN Bundle (incl. Tracing) 35.19 KB
    CDN Bundle (incl. Tracing, Replay) 69.29 KB
    CDN Bundle (incl. Tracing, Replay, Feedback) 74.48 KB
    CDN Bundle - uncompressed 68.97 KB
    CDN Bundle (incl. Tracing) - uncompressed 103.98 KB
    CDN Bundle (incl. Tracing, Replay) - uncompressed 214.38 KB
    CDN Bundle (incl. Tracing, Replay, Feedback) - uncompressed 227.09 KB
    @ sentry/nextjs (client) 36.35 KB
    @ sentry/sveltekit (client) 34.07 KB
    @ sentry/node 130.73 KB
    @ sentry/node - without tracing 91.75 KB
    @ sentry/aws-serverless 116.92 KB
  • 8.14.0 - 2024-07-04

    Important Changes

    • feat(nestjs): Filter 4xx errors (#12695)

    The @ sentry/nestjs SDK no longer captures 4xx errors automatically.

    Other Changes

    • chore(react): Remove private namespace JSX (#12691)
    • feat(deps): bump @ opentelemetry/propagator-aws-xray from 1.25.0 to 1.25.1 (#12719)
    • feat(deps): bump @ prisma/instrumentation from 5.16.0 to 5.16.1 (#12718)
    • feat(node): Add registerEsmLoaderHooks option (#12684)
    • feat(opentelemetry): Expose sampling helper (#12674)
    • fix(browser): Make sure measure spans have valid start timestamps (#12648)
    • fix(hapi): Widen type definitions (#12710)
    • fix(nextjs): Attempt to ignore critical dependency warnings (#12694)
    • fix(react): Fix React jsx runtime import for esm (#12740)
    • fix(replay): Start replay in afterAllSetup instead of next tick (#12709)

    Work in this release was contributed by @ quisido. Thank you for your contribution!

    Bundle size 📦

    Path Size
    @ sentry/browser 22.22 KB
    @ sentry/browser (incl. Tracing) 33.38 KB
    @ sentry/browser (incl. Tracing, Replay) 69.12 KB
    @ sentry/browser (incl. Tracing, Replay) - with treeshaking flags 62.45 KB
    @ sentry/browser (incl. Tracing, Replay with Canvas) 73.18 KB
    @ sentry/browser (incl. Tracing, Replay, Feedback) 85.8 KB
    @ sentry/browser (incl. Tracing, Replay, Feedback, metrics) 87.66 KB
    @ sentry/browser (incl. metrics) 26.5 KB
    @ sentry/browser (incl. Feedback) 38.86 KB
    @ sentry/browser (incl. sendFeedback) 26.85 KB
    @ sentry/browser (incl. FeedbackAsync) 31.45 KB
    @ sentry/react 24.97 KB
    @ sentry/react (incl. Tracing) 36.43 KB
    @ sentry/vue 26.33 KB
    @ sentry/vue (incl. Tracing) 35.24 KB
    @ sentry/svelte 22.36 KB
    CDN Bundle 23.42 KB
    CDN Bundle (incl. Tracing) 35.12 KB
    CDN Bundle (incl. Tracing, Replay) 69.22 KB
    CDN Bundle (incl. Tracing, Replay, Feedback) 74.41 KB
    CDN Bundle - uncompressed 68.8 KB
    CDN Bundle (incl. Tracing) - uncompressed 103.82 KB
    CDN Bundle (incl. Tracing, Replay) - uncompressed 214.21 KB
    CDN Bundle (incl. Tracing, Replay, Feedback) - uncompressed 226.92 KB
    @ sentry/nextjs (client) 36.3 KB
    @ sentry/sveltekit (client) 34.02 KB
    @ sentry/node 130.68 KB
    @ sentry/node - without tracing 91.71 KB
    @ sentry/aws-serverless 116.88 KB
  • 8.13.0 - 2024-06-27

    Important Changes

    • feat(nestjs): Add Nest SDK This release adds a dedicated SDK for NestJS (@ sentry/nestjs)
      in alpha state. The SDK is a drop-in replacement for the Sentry Node SDK (@ sentry/node) supporting the same set of
      features. See the docs for how to use the SDK.

    Other Changes

    • deps: Bump bundler plugins to 2.20.1 (#12641)
    • deps(nextjs): Remove react peer dep and allow rc (#12670)
    • feat: Update OTEL deps (#12635)
    • feat(deps): bump @ prisma/instrumentation from 5.15.0 to 5.15.1 (#12627)
    • feat(node): Add context info for missing instrumentation (#12639)
    • fix(feedback): Improve feedback error message (#12647)

    Bundle size 📦

    Path Size
    @ sentry/browser 22.22 KB
    @ sentry/browser (incl. Tracing) 33.31 KB
    @ sentry/browser (incl. Tracing, Replay) 69.09 KB
    @ sentry/browser (incl. Tracing, Replay) - with treeshaking flags 62.42 KB
    @ sentry/browser (incl. Tracing, Replay with Canvas) 73.15 KB
    @ sentry/browser (incl. Tracing, Replay, Feedback) 85.75 KB
    @ sentry/browser (incl. Tracing, Replay, Feedback, metrics) 87.61 KB
    @ sentry/browser (incl. metrics) 26.5 KB
    @ sentry/browser (incl. Feedback) 38.86 KB
    @ sentry/browser (incl. sendFeedback) 26.84 KB
    @ sentry/browser (incl. FeedbackAsync) 31.45 KB
    @ sentry/react 24.97 KB
    @ sentry/react (incl. Tracing) 36.36 KB
    @ sentry/vue 26.33 KB
    @ sentry/vue (incl. Tracing) 35.17 KB
    @ sentry/svelte 22.36 KB
    CDN Bundle 23.42 KB
    CDN Bundle (incl. Tracing) 35.05 KB
    CDN Bundle (incl. Tracing, Replay) 69.18 KB
    CDN Bundle (incl. Tracing, Replay, Feedback) 74.38 KB
    CDN Bundle - uncompressed 68.8 KB
    CDN Bundle (incl. Tracing) - uncompressed 103.66 KB
    CDN Bundle (incl. Tracing, Replay) - uncompressed 214.13 KB
    CDN Bundle (incl. Tracing, Replay, Feedback) - uncompressed 226.84 KB
    @ sentry/nextjs (client) 36.24 KB
    @ sentry/sveltekit (client) 33.95 KB
    @ sentry/node 130.61 KB
    @ sentry/node - without tracing 91.63 KB
    @ sentry/aws-serverless 116.8 KB
  • 8.12.0 - 2024-06-25

    Important Changes

    • feat(solid): Remove need to pass router hooks to solid integration (breaking)

    This release introduces breaking changes to the @ sentry/solid package (which is currently out in alpha).

    We've made it easier to get started with the solid router integration by removing the need to pass use* hooks
    explicitly to solidRouterBrowserTracingIntegration. Import solidRouterBrowserTracingIntegration from
    @ sentry/solid/solidrouter and add it to Sentry.init

    import * as Sentry from '@ sentry/solid';
    import { solidRouterBrowserTracingIntegration, withSentryRouterRouting } from '@ sentry/solid/solidrouter';
    import { Router } from '@ solidjs/router';

    Sentry.init({
    dsn: 'PUBLIC_DSN',
    integrations: [solidRouterBrowserTracingIntegration()],
    tracesSampleRate: 1.0, // Capture 100% of the transactions
    });

    const SentryRouter = withSentryRouterRouting(Router);

    • feat(core): Return client from init method (#12585)

    Sentry.init() now returns a client directly, so you don't need to explicitly call getClient() anymore:

    const client = Sentry.init();
    • feat(nextjs): Add deleteSourcemapsAfterUpload option (#12457)

    This adds an easy way to delete sourcemaps immediately after uploading them:

    module.exports = withSentryConfig(nextConfig, {
      sourcemaps: {
        deleteSourcemapsAfterUpload: true,
      },
    });
    • feat(node): Allow to configure maxSpanWaitDuration (#12610)

    Adds configuration option for the max. duration in seconds that the SDK will wait for parent spans to be finished before
    discarding a span. The SDK will automatically clean up spans that have no finished parent after this duration. This is
    necessary to prevent memory leaks in case of parent spans that are never finished or otherwise dropped/missing. However,
    if you have very long-running spans in your application, a shorter duration might cause spans to be discarded too early.
    In this case, you can increase this duration to a value that fits your expected data.

    Other Changes

    • feat(feedback): Extra check for iPad in screenshot support (#12593)
    • fix(bundle): Ensure CDN bundles do not overwrite window.Sentry (#12580)
    • fix(feedback): Inject preact from feedbackModal into feedbackScreenshot integration (#12535)
    • fix(node): Re-throw errors from koa middleware (#12609)
    • fix(remix): Mark isRemixV2 as optional in exposed types. (#12614)
    • ref(node): Add error message to NodeFetch log (#12612)

    Work in this release was contributed by @ n4bb12. Thank you for your contribution!

    Bundle size 📦

    Path Size
    @ sentry/browser 22.22 KB
    @ sentry/browser (incl. Tracing) 33.31 KB
    @ sentry/browser (incl. Tracing, Replay) 69.09 KB
    @ sentry/browser (incl. Tracing, Replay) - with treeshaking flags 62.42 KB
    @ sentry/browser (incl. Tracing, Replay with Canvas) 73.15 KB
    @ sentry/browser (incl. Tracing, Replay, Feedback) 85.76 KB
    @ sentry/browser (incl. Tracing, Replay, Feedback, metrics) 87.62 KB
    @ sentry/browser (incl. metrics) 26.5 KB
    @ sentry/browser (incl. Feedback) 38.87 KB
    @ sentry/browser (incl. sendFeedback) 26.85 KB
    @ sentry/browser (incl. FeedbackAsync) 31.45 KB
    @ sentry/react 24.97 KB
    @ sentry/react (incl. Tracing) 36.36 KB
    @ sentry/vue 26.33 KB
    @ sentry/vue (incl. Tracing) 35.17 KB
    @ sentry/svelte 22.36 KB
    CDN Bundle 23.42 KB
    CDN Bundle (incl. Tracing) 35.05 KB
    CDN Bundle (incl. Tracing, Replay) 69.18 KB
    CDN Bundle (incl. Tracing, Replay, Feedback) 74.38 KB
    CDN Bundle - uncompressed 68.8 KB
    CDN Bundle (incl. Tracing) - uncompressed 103.66 KB
    CDN Bundle (incl. Tracing, Replay) - uncompressed 214.13 KB
    CDN Bundle (incl. Tracing, Replay, Feedback) - uncompressed 226.79 KB
    @ sentry/nextjs (client) 36.24 KB
    @ sentry/sveltekit (client) 33.95 KB
    @ sentry/node 113.27 KB
    @ sentry/node - without tracing 90.65 KB
    @ sentry/aws-serverless 99.74 KB
  • 8.12.0-beta.0 - 2024-06-24
  • 8.11.0 - 2024-06-21
  • 8.10.0 - 2024-06-19
  • 8.9.2 - 2024-06-12
  • 8.9.1 - 2024-06-11
  • 8.9.0 - 2024-06-11
  • 8.8.0 - 2024-06-07
  • 8.7.0 - 2024-05-29
  • 8.6.0 - 2024-05-29
  • 8.5.0 - 2024-05-27
  • 8.4.0 - 2024-05-23
  • 8.3.0 - 2024-05-22
  • 8.2.1 - 2024-05-16
  • 8.2.0 - 2024-05-16
  • 8.1.0 - 2024-05-16
  • 8.0.0 - 2024-05-13
  • 8.0.0-rc.3 - 2024-05-10
  • 8.0.0-rc.2 - 2024-05-08
  • 8.0.0-rc.1 - 2024-05-07
  • 8.0.0-rc.0 - 2024-05-06
  • 8.0.0-beta.6 - 2024-05-03
  • 8.0.0-beta.5 - 2024-04-30
  • 8.0.0-beta.4 - 2024-04-24
  • 8.0.0-beta.3 - 2024-04-19
  • 8.0.0-beta.2 - 2024-04-17
  • 8.0.0-beta.1 - 2024-04-15
  • 8.0.0-alpha.9 - 2024-04-08
  • 8.0.0-alpha.8 - 2024-04-08
  • 8.0.0-alpha.7 - 2024-03-27
  • 8.0.0-alpha.5 - 2024-03-22
  • 8.0.0-alpha.4 - 2024-03-14
  • 8.0.0-alpha.3 - 2024-03-14
  • 8.0.0-alpha.2 - 2024-03-05
  • 7.118.0 - 2024-06-21
  • 7.117.0 - 2024-06-10
  • 7.116.0 - 2024-05-17
  • 7.115.0 - 2024-05-16
  • 7.114.0 - 2024-05-08
  • 7.113.0 - 2024-05-02
  • 7.112.2 - 2024-04-24
  • 7.112.1 - 2024-04-23
  • 7.112.0 - 2024-04-23
  • 7.111.0 - 2024-04-18
  • 7.110.1 - 2024-04-15
  • 7.110.0 - 2024-04-11
  • 7.109.0 - 2024-03-28
  • 7.108.0 - 2024-03-22
  • 7.107.0 - 2024-03-14
  • 7.106.1 - 2024-03-11
  • 7.106.0 - 2024-03-08
  • 7.105.0 - 2024-03-04
  • 7.104.0 - 2024-02-29
  • 7.103.0 - 2024-02-27
  • 7.102.1 - 2024-02-22
  • 7.102.0 - 2024-02-20
  • 7.101.1 - 2024-02-15
  • 7.101.0 - 2024-02-13
  • 7.100.1 - 2024-02-07
  • 7.100.0 - 2024-02-06
  • 7.99.0 - 2024-01-30
  • 7.98.0 - 2024-01-25
  • 7.97.0 - 2024-01-25
  • 7.95.0 - 2024-01-23
  • 7.94.1 - 2024-01-19
  • 7.93.0 - 2024-01-10
  • 7.92.0 - 2024-01-04
  • 7.91.0 - 2023-12-22
  • 7.90.0 - 2023-12-20
  • 7.89.0 - 2023-12-19
  • 7.88.0 - 2023-12-14
  • 7.87.0 - 2023-12-13
  • 7.86.0 - 2023-12-07
  • 7.85.0 - 2023-12-04
  • 7.84.0 - 2023-11-30
  • 7.83.0 - 2023-11-28
  • 7.82.0 - 2023-11-27
  • 7.81.1 - 2023-11-21
  • 7.81.0 - 2023-11-20
  • 7.80.2-alpha.1 - 2023-11-15
  • 7.80.2-alpha.0 - 2023-11-14
  • 7.80.1 - 2023-11-14
  • 7.80.0 - 2023-11-09
  • 7.79.0 - 2023-11-08
  • 7.78.0 - 2023-11-08
  • 7.77.0 - 2023-10-31
  • 7.76.0 - 2023-10-27
  • 7.75.1 - 2023-10-25
  • 7.75.0 - 2023-10-24
  • 7.74.2-alpha.1 - 2023-10-23
  • 7.74.2-alpha.0 - 2023-10-19
  • 7.74.1 - 2023-10-17
  • 7.74.0 - 2023-10-13
  • 7.73.0 - 2023-10-02
  • 7.72.0 - 2023-09-26
  • 7.71.0 - 2023-09-25
  • 7.70.0 - 2023-09-20
  • 7.70.0-beta.1 - 2023-09-15
  • 7.70.0-beta.0 - 2023-09-14
  • 7.69.0 - 2023-09-13
  • 7.68.0 - 2023-09-06
  • 7.67.0 - 2023-09-05
  • 7.67.0-beta.0 - 2023-08-31
  • 7.66.0 - 2023-08-30
  • 7.66.0-alpha.0 - 2023-08-29
  • 7.65.0 - 2023-08-28
  • 7.65.0-alpha.0 - 2023-08-16
  • 7.64.0 - 2023-08-14
  • 7.64.0-alpha.0 - 2023-08-11
  • 7.63.0 - 2023-08-10
  • 7.62.0 - 2023-08-09
  • 7.61.1 - 2023-08-04
  • 7.61.0 - 2023-07-31
  • 7.60.1 - 2023-07-26
  • 7.60.0 - 2023-07-21
  • 7.59.3 - 2023-07-19
  • 7.59.2 - 2023-07-18
  • 7.59.1 - 2023-07-18
  • 7.59.0-beta.1 - 2023-07-17
  • 7.59.0-beta.0 - 2023-07-13
  • 7.58.1 - 2023-07-13
  • 7.58.0 - 2023-07-12
  • 7.57.0 - 2023-06-28
  • 7.57.0-beta.0 - 2023-06-21
  • 7.56.0 - 2023-06-19
  • 7.55.2 - 2023-06-14
  • 7.55.1 - 2023-06-14
  • 7.55.0 - 2023-06-13
  • 7.54.0 - 2023-06-01
  • 7.53.1 - 2023-05-24
  • 7.53.0 - 2023-05-23
  • 7.52.1 - 2023-05-15
  • 7.52.0 - 2023-05-15
  • 7.51.2 - 2023-05-08
  • 7.51.1 - 2023-05-08
  • 7.51.0 - 2023-05-04
  • 7.50.0 - 2023-04-27
  • 7.49.0 - 2023-04-20
  • 7.48.0 - 2023-04-14
  • 7.47.0 - 2023-04-05
  • 7.46.0 - 2023-03-30
  • 7.45.0 - 2023-03-24
  • 7.44.2 - 2023-03-21
  • 7.44.1 - 2023-03-20
  • 7.44.0 - 2023-03-20
  • 7.43.0 - 2023-03-13
  • 7.42.0 - 2023-03-09
  • 7.41.0 - 2023-03-06
  • 7.40.0 - 2023-03-01
  • 7.39.0 - 2023-02-27
  • 7.38.0 - 2023-02-17
  • 7.37.2 - 2023-02-13
  • 7.37.1 - 2023-02-10
  • 7.37.0 - 2023-02-09
  • 7.36.0 - 2023-02-02
  • 7.35.0 - 2023-02-01
  • 7.34.0 - 2023-01-26
  • 7.34.0-beta.0 - 2023-01-25
  • 7.33.0 - 2023-01-24
  • 7.32.1 - 2023-01-23
  • 7.32.0 - 2023-01-23
  • 7.31.1 - 2023-01-17
  • 7.31.0 - 2023-01-16
  • 7.30.0 - 2023-01-10
  • 7.29.0 - 2023-01-04
  • 7.28.1 - 2022-12-22
  • 7.28.0 - 2022-12-20
  • 7.27.0 - 2022-12-16
  • 7.26.0 - 2022-12-13
  • 7.25.0 - 2022-12-12
  • 7.24.2 - 2022-12-07
  • 7.24.1 - 2022-12-07
  • 7.24.0 - 2022-12-07
  • 7.23.0 - 2022-12-01
  • 7.22.0 - 2022-11-29
  • 7.21.1 - 2022-11-23
  • 7.21.0 - 2022-11-22
  • 7.20.1 - 2022-11-21
  • 7.20.0 - 2022-11-17
  • 7.19.0 - 2022-11-10
  • 7.18.0 - 2022-11-08
  • 7.17.4 - 2022-11-03
  • 7.17.3 - 2022-10-31
  • 7.17.2 - 2022-10-28
  • 7.17.1 - 2022-10-27
  • 7.17.0 - 2022-10-27
  • 7.16.0 - 2022-10-19
from @sentry/react GitHub release notes

Important

  • Warning: This PR contains a major version upgrade, and may be a breaking change.
  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

Snyk has created this PR to upgrade @sentry/react from 7.16.0 to 8.17.0.

See this package in npm:
@sentry/react

See this project in Snyk:
https://app.snyk.io/org/q1blue-rxw/project/5b430cad-b455-40c7-a7ff-af5a8804e8ca?utm_source=github&utm_medium=referral&page=upgrade-pr
Copy link

changeset-bot bot commented Aug 1, 2024

⚠️ No Changeset found

Latest commit: 39b9108

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

Copy link

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package New capabilities Transitives Size Publisher
npm/@djagger/echartsx@0.0.22 None +1 59.7 kB djagger
npm/@docusaurus/core@2.1.0 Transitive: environment, eval, filesystem, network, shell, unsafe +324 32.8 MB slorber
npm/@docusaurus/module-type-aliases@2.1.0 Transitive: filesystem, shell +16 2.23 MB slorber
npm/@docusaurus/plugin-client-redirects@2.1.0 filesystem Transitive: environment, eval, shell, unsafe +215 20.9 MB slorber
npm/@docusaurus/plugin-google-gtag@2.1.0 environment Transitive: eval, filesystem, shell, unsafe +213 20.5 MB slorber
npm/@docusaurus/preset-classic@2.1.0 environment Transitive: eval, filesystem, network, shell, unsafe +270 25.6 MB slorber
npm/@docusaurus/theme-search-algolia@2.1.0 filesystem Transitive: environment, eval, network, shell, unsafe +287 27.2 MB slorber
npm/@emotion/react@11.10.4 environment Transitive: filesystem, unsafe +68 13.7 MB emotion-release-bot
npm/@emotion/server@11.10.0 environment +8 197 kB emotion-release-bot
npm/@emotion/styled@11.10.4 environment Transitive: filesystem, unsafe +65 13.2 MB emotion-release-bot
npm/@geo-maps/countries-land-10km@0.6.0 None 0 1.06 MB simonepri
npm/@makotot/ghostui@2.0.0 environment 0 151 kB makotot
npm/@mdx-js/react@1.6.22 None 0 15.5 kB johno
npm/@mui/icons-material@5.10.9 None +5 20 MB hbjorbj
npm/@mui/lab@5.0.0-alpha.104 environment +20 9.92 MB michaldudak
npm/@mui/material@5.10.10 environment +22 18.1 MB michaldudak
npm/@mui/x-data-grid@5.17.8 environment +16 9.71 MB alexandrefauquette
npm/@primer/octicons-react@16.3.1 None 0 1.22 MB primer-css
npm/@sentry/react@8.17.0 Transitive: network +9 10.1 MB sentry-bot
npm/@sentry/tracing@7.16.0 None +4 2.83 MB sentry-bot
npm/@stackql/docusaurus-plugin-hubspot@1.0.1 environment 0 3.73 kB jeffreyaven
npm/@tidb-community/tracking-script@0.1.0 None +1 148 kB hustkiwi
npm/@tsconfig/docusaurus@1.0.6 None 0 2.69 kB typescript-deploys
npm/@types/d3-hierarchy@3.1.0 None 0 39.7 kB types
npm/@types/grecaptcha@3.0.4 None 0 8.75 kB types
npm/@types/is-hotkey@0.1.7 None 0 6.23 kB types
npm/@types/luxon@2.4.0 None 0 113 kB types
npm/@types/react-copy-to-clipboard@5.0.4 None +4 1.38 MB types
npm/@types/webpack-env@1.18.0 None 0 17.1 kB types
npm/@typescript-eslint/eslint-plugin@5.42.0 Transitive: environment, filesystem +28 5.13 MB jameshenry
npm/ace-builds@1.12.3 None 0 49.1 MB nightwing
npm/ahooks@3.7.2 None +6 2.95 MB taoweng
npm/animate.css@4.1.1 None 0 279 kB eltonmesquita
npm/axios@0.26.1 environment, network +1 427 kB jasonsaayman
npm/babel-plugin-direct-import@1.0.0 filesystem 0 27.2 kB umidbekk
npm/chart.js@3.9.1 None 0 21.1 MB chartjs-ci
npm/chartjs-plugin-datalabels@2.1.0 None 0 92.4 kB chartjs-ci
npm/clsx@1.2.1 None 0 5.67 kB lukeed
npm/country-code-emoji@2.3.0 None 0 11.3 kB thekelvinliu
npm/d3-hierarchy@3.1.2 None 0 136 kB mbostock
npm/date-fns@2.29.3 None 0 6.87 MB leshakoss
npm/deepmerge@4.2.2 None 0 30.1 kB tehshrike
npm/echarts-for-react@3.0.2 None +1 87.6 kB atool
npm/echarts-gl@2.0.9 Transitive: eval +1 17.9 MB lang
npm/echarts@5.4.0 environment, eval, network +1 41.6 MB 100pah
npm/eslint-plugin-import@2.26.0 filesystem, unsafe Transitive: environment, eval +33 3.21 MB ljharb
npm/eslint-plugin-n@15.4.0 filesystem +10 1.35 MB weiran.zsd
npm/eslint-plugin-promise@6.1.1 None 0 67.1 kB eslint-community-bot
npm/eslint-plugin-react@7.31.10 filesystem Transitive: environment, eval +30 3.09 MB ljharb
npm/eslint@8.26.0 filesystem Transitive: environment, eval, shell, unsafe +52 8.84 MB eslintbot
npm/human-format@1.0.0 None 0 14.4 kB julien-f
npm/is-hotkey@0.2.0 None 0 20 kB ianstormtaylor
npm/luxon@2.5.0 None 0 3.87 MB icambron

🚮 Removed packages: npm/@fastify/autoload@5.10.0, npm/@fastify/cookie@8.3.0, npm/@fastify/env@4.4.0, npm/@fastify/mysql@4.3.0, npm/@fastify/sensible@5.6.0, npm/@mailchimp/mailchimp_transactional@1.0.59, npm/@types/async@3.2.24, npm/@types/cron@2.4.0, npm/@types/html-minifier@4.0.5, npm/@types/luxon@3.4.2, npm/@types/mjml-react@2.0.10, npm/@types/mjml@4.7.4, npm/@types/node@18.19.42, npm/@types/nodemailer@6.4.15, npm/@types/react-dom@17.0.25, npm/@types/react@17.0.80, npm/@types/tap@15.0.11, npm/@typescript-eslint/eslint-plugin@5.62.0, npm/@typescript-eslint/parser@5.62.0, npm/ansi-regex@6.0.1, npm/ansi-styles@6.2.1, npm/async@3.2.5, npm/axios@0.27.2, npm/braces@3.0.3, npm/bufferutil@4.0.8, npm/canvas@2.11.2, npm/chalk@5.3.0, npm/commander@11.0.0, npm/concurrently@7.6.0, npm/cron@2.4.4, npm/dotenv@16.4.5, npm/encoding@0.1.13, npm/eslint-plugin-import@2.29.1, npm/eslint-plugin-n@15.7.0, npm/eslint-plugin-promise@6.6.0, npm/eslint-plugin-react@7.35.0, npm/eslint@8.57.0, npm/eventemitter3@5.0.1, npm/execa@7.2.0, npm/fastify-cli@5.9.0, npm/fastify-cron@1.3.1, npm/fastify-plugin@4.5.1, npm/fastify-tsconfig@1.0.1, npm/fastify@4.28.1, npm/fill-range@7.1.1, npm/html-minifier@4.0.0, npm/husky@8.0.3, npm/is-fullwidth-code-point@4.0.0, npm/is-stream@3.0.0, npm/lint-staged@13.3.0, npm/luxon@3.4.4, npm/mailing-core@0.8.19, npm/mailing@0.8.19, npm/merge-stream@2.0.0, npm/micromatch@4.0.5, npm/mjml-react@2.0.8, npm/mjml@4.15.3, npm/ms@2.1.2, npm/mysql2@2.3.3, npm/next@12.3.4, npm/nodemailer-postmark-transport@5.3.0, npm/nodemailer@6.9.14, npm/npm-run-path@5.3.0, npm/octokit@2.1.0, npm/path-key@3.1.1, npm/picomatch@2.3.1, npm/postmark@3.11.0, npm/react-dom@17.0.2, npm/react@17.0.2, npm/shebang-command@2.0.0, npm/shebang-regex@3.0.0, npm/signal-exit@3.0.7, npm/string-width@5.1.2, npm/strip-ansi@7.1.0, npm/tap@16.3.10, npm/to-regex-range@5.0.1, npm/which@2.0.2, npm/wrap-ansi@8.1.0, npm/yaml@2.3.1

View full report↗︎

Copy link

🚨 Potential security issues detected. Learn more about Socket for GitHub ↗︎

To accept the risk, merge this PR and you will not be notified again.

Alert Package NoteSourceCI
Install scripts npm/core-js-pure@3.26.0
  • Install script: postinstall
  • Source: node -e "try{require('./postinstall')}catch(e){}"
🚫

View full report↗︎

Next steps

What is an install script?

Install scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.

Packages should not be running non-essential scripts during install and there are often solutions to problems people solve with install scripts that can be run at publish time instead.

Take a deeper look at the dependency

Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev.

Remove the package

If you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency.

Mark a package as acceptable risk

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of ecosystem/package-name@version specifiers. e.g. @SocketSecurity ignore npm/foo@1.0.0 or ignore all packages with @SocketSecurity ignore-all

  • @SocketSecurity ignore npm/core-js-pure@3.26.0

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants