Skip to content

Bump the dev-dependencies group across 1 directory with 6 updates #527

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
dependabot wants to merge 1 commit into from
Closed

Bump the dev-dependencies group across 1 directory with 6 updates #527

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 2, 2025
edited
Loading

Updates the requirements on @sentry/browser, caniuse-lite, @sentry/cli, @wordpress/eslint-plugin, prettier and web-ext to permit the latest version.
Updates @sentry/browser to 10.27.0

Release notes

Sourced from @​sentry/browser's releases.

10.27.0

Important Changes

  • feat(deps): Bump OpenTelemetry (#18239)

    • Bump @​opentelemetry/context-async-hooks from ^2.1.0 to ^2.2.0
    • Bump @​opentelemetry/core from ^2.1.0 to ^2.2.0
    • Bump @​opentelemetry/resources from ^2.1.0 to ^2.2.0
    • Bump @​opentelemetry/sdk-trace-base from ^2.1.0 to ^2.2.0
    • Bump @​opentelemetry/sdk-trace-node from ^2.1.0 to ^2.2.0
    • Bump @​opentelemetry/instrumentation from 0.204.0 to 0.208.0
    • Bump @​opentelemetry/instrumentation-amqplib from 0.51.0 to 0.55.0
    • Bump @​opentelemetry/instrumentation-aws-sdk from 0.59.0 to 0.64.0
    • Bump @​opentelemetry/instrumentation-connect from 0.48.0 to 0.52.0
    • Bump @​opentelemetry/instrumentation-dataloader from 0.22.0 to 0.26.0
    • Bump @​opentelemetry/instrumentation-express from 0.53.0 to 0.57.0
    • Bump @​opentelemetry/instrumentation-fs from 0.24.0 to 0.28.0
    • Bump @​opentelemetry/instrumentation-generic-pool from 0.48.0 to 0.52.0
    • Bump @​opentelemetry/instrumentation-graphql from 0.52.0 to 0.56.0
    • Bump @​opentelemetry/instrumentation-hapi from 0.51.0 to 0.55.0
    • Bump @​opentelemetry/instrumentation-http from 0.204.0 to 0.208.0
    • Bump @​opentelemetry/instrumentation-ioredis from 0.52.0 to 0.56.0
    • Bump @​opentelemetry/instrumentation-kafkajs from 0.14.0 to 0.18.0
    • Bump @​opentelemetry/instrumentation-knex from 0.49.0 to 0.53.0
    • Bump @​opentelemetry/instrumentation-koa from 0.52.0 to 0.57.0
    • Bump @​opentelemetry/instrumentation-lru-memoizer from 0.49.0 to 0.53.0
    • Bump @​opentelemetry/instrumentation-mongodb from 0.57.0 to 0.61.0
    • Bump @​opentelemetry/instrumentation-mongoose from 0.51.0 to 0.55.0
    • Bump @​opentelemetry/instrumentation-mysql from 0.50.0 to 0.54.0
    • Bump @​opentelemetry/instrumentation-mysql2 from 0.51.0 to 0.55.0
    • Bump @​opentelemetry/instrumentation-nestjs-core from 0.50.0 to 0.55.0
    • Bump @​opentelemetry/instrumentation-pg from 0.57.0 to 0.61.0
    • Bump @​opentelemetry/instrumentation-redis from 0.53.0 to 0.57.0
    • Bump @​opentelemetry/instrumentation-tedious from 0.23.0 to 0.27.0
    • Bump @​opentelemetry/instrumentation-undici from 0.15.0 to 0.19.0
    • Bump @​prisma/instrumentation from 6.15.0 to 6.19.0

  • feat(browserprofiling): Add manual mode and deprecate old profiling (#18189)

    Adds the manual lifecycle mode for UI profiling (the default mode), allowing profiles to be captured manually with Sentry.uiProfiler.startProfiler() and Sentry.uiProfiler.stopProfiler(). The previous transaction-based profiling is with profilesSampleRate is now deprecated in favor of the new UI Profiling with profileSessionSampleRate.

Other Changes

  • feat(core): Add gibibyte and pebibyte to InformationUnit type (#18241)
  • feat(core): Add scope attribute APIs (#18165)
  • feat(core): Re-add _experiments.enableLogs option (#18299)
  • feat(core): Use maxValueLength on error messages (#18301)
  • feat(deps): bump @​sentry/bundler-plugin-core from 4.3.0 to 4.6.1 (#18273)
  • feat(deps): bump @​sentry/cli from 2.56.0 to 2.58.2 (#18271)
  • feat(node): Add tracing support for AzureOpenAI (#18281)

... (truncated)

Changelog

Sourced from @​sentry/browser's changelog.

10.27.0

Important Changes

  • feat(deps): Bump OpenTelemetry (#18239)

    • Bump @​opentelemetry/context-async-hooks from ^2.1.0 to ^2.2.0
    • Bump @​opentelemetry/core from ^2.1.0 to ^2.2.0
    • Bump @​opentelemetry/resources from ^2.1.0 to ^2.2.0
    • Bump @​opentelemetry/sdk-trace-base from ^2.1.0 to ^2.2.0
    • Bump @​opentelemetry/sdk-trace-node from ^2.1.0 to ^2.2.0
    • Bump @​opentelemetry/instrumentation from 0.204.0 to 0.208.0
    • Bump @​opentelemetry/instrumentation-amqplib from 0.51.0 to 0.55.0
    • Bump @​opentelemetry/instrumentation-aws-sdk from 0.59.0 to 0.64.0
    • Bump @​opentelemetry/instrumentation-connect from 0.48.0 to 0.52.0
    • Bump @​opentelemetry/instrumentation-dataloader from 0.22.0 to 0.26.0
    • Bump @​opentelemetry/instrumentation-express from 0.53.0 to 0.57.0
    • Bump @​opentelemetry/instrumentation-fs from 0.24.0 to 0.28.0
    • Bump @​opentelemetry/instrumentation-generic-pool from 0.48.0 to 0.52.0
    • Bump @​opentelemetry/instrumentation-graphql from 0.52.0 to 0.56.0
    • Bump @​opentelemetry/instrumentation-hapi from 0.51.0 to 0.55.0
    • Bump @​opentelemetry/instrumentation-http from 0.204.0 to 0.208.0
    • Bump @​opentelemetry/instrumentation-ioredis from 0.52.0 to 0.56.0
    • Bump @​opentelemetry/instrumentation-kafkajs from 0.14.0 to 0.18.0
    • Bump @​opentelemetry/instrumentation-knex from 0.49.0 to 0.53.0
    • Bump @​opentelemetry/instrumentation-koa from 0.52.0 to 0.57.0
    • Bump @​opentelemetry/instrumentation-lru-memoizer from 0.49.0 to 0.53.0
    • Bump @​opentelemetry/instrumentation-mongodb from 0.57.0 to 0.61.0
    • Bump @​opentelemetry/instrumentation-mongoose from 0.51.0 to 0.55.0
    • Bump @​opentelemetry/instrumentation-mysql from 0.50.0 to 0.54.0
    • Bump @​opentelemetry/instrumentation-mysql2 from 0.51.0 to 0.55.0
    • Bump @​opentelemetry/instrumentation-nestjs-core from 0.50.0 to 0.55.0
    • Bump @​opentelemetry/instrumentation-pg from 0.57.0 to 0.61.0
    • Bump @​opentelemetry/instrumentation-redis from 0.53.0 to 0.57.0
    • Bump @​opentelemetry/instrumentation-tedious from 0.23.0 to 0.27.0
    • Bump @​opentelemetry/instrumentation-undici from 0.15.0 to 0.19.0
    • Bump @​prisma/instrumentation from 6.15.0 to 6.19.0

  • feat(browserprofiling): Add manual mode and deprecate old profiling (#18189)

    Adds the manual lifecycle mode for UI profiling (the default mode), allowing profiles to be captured manually with Sentry.uiProfiler.startProfiler() and Sentry.uiProfiler.stopProfiler(). The previous transaction-based profiling is with profilesSampleRate is now deprecated in favor of the new UI Profiling with profileSessionSampleRate.

Other Changes

  • feat(core): Add gibibyte and pebibyte to InformationUnit type (#18241)
  • feat(core): Add scope attribute APIs (#18165)
  • feat(core): Re-add _experiments.enableLogs option (#18299)
  • feat(core): Use maxValueLength on error messages (#18301)
  • feat(deps): bump @​sentry/bundler-plugin-core from 4.3.0 to 4.6.1 (#18273)
  • feat(deps): bump @​sentry/cli from 2.56.0 to 2.58.2 (#18271)

... (truncated)

Commits
  • 0b0151d release: 10.27.0
  • 930863e Merge pull request #18312 from getsentry/prepare-release/10.27.0
  • 02aa2ea meta(changelog): Update changelog for 10.27.0
  • 6ce620e fix(core): Always redact content of sensitive headers regardless of `sendDefa...
  • 235c865 feat(core): Re-add _experiments.enableLogs option (#18299)
  • 4b92c64 fix(nextjs): universal random tunnel path support (#18257)
  • 6240191 feat(core): Use maxValueLength on error messages (#18301)
  • 1525603 feat(browserprofiling): Add manual mode and deprecate old profiling (#18189)
  • 3d48cc6 chore: Add external contributor to CHANGELOG.md (#18300)
  • b8127fb doc(sveltekit): Update documentation link for SvelteKit guide (#18298)
  • Additional commits viewable in compare view

Updates caniuse-lite to 1.0.30001757

Commits

Updates @sentry/cli to 2.58.2

Release notes

Sourced from @​sentry/cli's releases.

2.58.2

Improvements

  • Added validation for the sentry-cli build upload command's --head-sha and --base-sha arguments (#2945). The CLI now validates that these are valid SHA1 sums. Passing an empty string is also allowed; this prevents the default values from being used, causing the values to instead be unset.

Fixes

  • Fixed a bug where providing empty-string values for the sentry-cli build upload command's --vcs-provider, --head-repo-name, --head-ref, --base-ref, and --base-repo-name arguments resulted in 400 errors (#2946). Now, setting these to empty strings instead explicitly clears the default value we would set otherwise, as expected.
Changelog

Sourced from @​sentry/cli's changelog.

2.58.2

Improvements

  • Added validation for the sentry-cli build upload command's --head-sha and --base-sha arguments (#2945). The CLI now validates that these are valid SHA1 sums. Passing an empty string is also allowed; this prevents the default values from being used, causing the values to instead be unset.

Fixes

  • Fixed a bug where providing empty-string values for the sentry-cli build upload command's --vcs-provider, --head-repo-name, --head-ref, --base-ref, and --base-repo-name arguments resulted in 400 errors (#2946). Now, setting these to empty strings instead explicitly clears the default value we would set otherwise, as expected.

2.58.1

Deprecations

  • Deprecated API key authentication (#2934, #2937). Users who are still using API keys to authenticate Sentry CLI should generate and use an Auth Token instead.

Improvements

  • The sentry-cli debug-files bundle-jvm no longer makes any HTTP requests to Sentry, meaning auth tokens are no longer needed, and the command can be run offline (#2926).

Fixes

  • Skip setting base_sha and base_ref when they equal head_sha during auto-inference, since comparing a commit to itself provides no meaningful baseline (#2924).
  • Improved error message when supplying a non-existent organization to sentry-cli sourcemaps upload. The error now correctly indicates the organization doesn't exist, rather than incorrectly suggesting the Sentry server lacks artifact bundle support (#2931).

2.58.0

New Features

  • Removed experimental status from the sentry-cli build upload commands (#2899, #2905). At the time of this release, build uploads are still in closed beta on the server side, so most customers cannot use this functionality quite yet.
  • Added CLI version metadata to build upload archives (#2890).

Deprecations

  • Deprecated the upload-proguard subcommand's --platform flag (#2863). This flag was a no-op for some time, so we will remove it in the next major.
  • Deprecated the upload-proguard subcommand's --android-manifest flag (#2891). This flag was a no-op for some time, so we will remove it in the next major.
  • Deprecated the sentry-cli sourcemaps upload command's --no-dedupe flag (#2913). The flag was no longer relevant for sourcemap uploads to modern Sentry servers and was made a no-op.

Fixes

  • Fixed autofilled git base metadata (--base-ref, --base-sha) when using the build upload subcommand in git repos. Previously this worked only in the context of GitHub workflows (#2897, #2898).

Performance

  • Slightly sped up the sentry-cli sourcemaps upload command by eliminating an HTTP request to the Sentry server, which was not required in most cases (#2913).

Internal changes

  • Migrated JavaScript wrapper to TypeScript for better type safety (#2910)

... (truncated)

Commits
  • b8965a3 release: 2.58.2
  • f99509f fix(build): Allow clearing string arguments to build upload (#2946)
  • a2cef20 ref(build): Add client-side validation for SHA fields (#2945)
  • c550aa7 ref(build): Move VcsInfo beside other build upload API types (#2944)
  • f303fd4 ref(build): Use VcsInfo directly in ChunkedBuildRequest (#2943)
  • 63b187c meta(cargo): Remove authors from Cargo.toml (#2939)
  • 1ccff9d build(npm): 🤖 Bump optional dependencies to 2.58.1
  • 4362cf6 Merge branch 'release/2.58.1'
  • b25423a release: 2.58.1
  • 7595ba9 chore(js): Deprecate apiKey field (#2937)
  • Additional commits viewable in compare view

Updates @wordpress/eslint-plugin to 22.22.0

Changelog

Sourced from @​wordpress/eslint-plugin's changelog.

22.22.0 (2025-11-26)

22.21.0 (2025-11-12)

Enhancements

  • Disabled import/no-unresolved, import/default, and import/named checks for TypeScript files when TypeScript is installed, since these issues are already checked by TypeScript.
  • Improved resolution behavior to support modern package export semantics by updating default import resolver to eslint-import-resolver-typescript, including for non-TypeScript files.

22.20.0 (2025-10-29)

22.19.0 (2025-10-17)

22.18.0 (2025-10-01)

22.17.0 (2025-09-17)

22.16.0 (2025-09-03)

22.15.0 (2025-08-20)

22.14.0 (2025-08-07)

22.13.0 (2025-07-23)

Enhancements

  • Added stricter ESLint checks for translator comments.
  • Supports unnamed (%s, %d, %f), positional (%1$s, etc.) and named placeholders.
  • Flags missing and extra/outdated placeholders.

22.12.0 (2025-06-25)

22.11.0 (2025-06-04)

22.10.0 (2025-05-22)

22.9.0 (2025-05-07)

22.8.0 (2025-04-11)

22.7.0 (2025-03-27)

22.6.0 (2025-03-13)

22.5.0 (2025-02-28)

22.4.0 (2025-02-12)

22.3.0 (2025-01-29)

... (truncated)

Commits
  • b35cf1a chore(release): publish
  • 01eaf58 Update changelog files
  • 77aa1f1 chore(release): publish
  • 26b6bac Update changelog files
  • d61fa7f Merge changes published in the Gutenberg plugin "release/22.1" branch
  • See full diff in compare view

Updates prettier to 3.7.3

Release notes

Sourced from prettier's releases.

3.7.3

What's Changed

🔗 Changelog

Changelog

Sourced from prettier's changelog.

3.7.3

diff

API: Fix prettier.getFileInfo() change that breaks VSCode extension (#18375 by @​fisker)

An internal refactor accidentally broke the VSCode extension plugin loading.

3.7.2

diff

JavaScript: Fix string print when switching quotes (#18351 by @​fisker)

// Input
console.log("A descriptor\\'s .kind must be \"method\" or \"field\".")
// Prettier 3.7.1
console.log('A descriptor\'s .kind must be "method" or "field".');
// Prettier 3.7.2
console.log('A descriptor\'s .kind must be "method" or "field".');

JavaScript: Preserve quote for embedded HTML attribute values (#18352 by @​kovsu)

// Input
const html = /* HTML */ ` <div class="${styles.banner}"></div> `;
// Prettier 3.7.1
const html = /* HTML */ &lt;div class=${styles.banner}&gt;&lt;/div&gt;;
// Prettier 3.7.2
const html = /* HTML */ &lt;div class=&quot;${styles.banner}&quot;&gt;&lt;/div&gt;;

TypeScript: Fix comment in empty type literal (#18364 by @​fisker)

// Input
export type XXX = {
  // tbd
};
// Prettier 3.7.1
</tr></table>

... (truncated)

Commits

Updates web-ext to 9.2.0

Release notes

Sourced from web-ext's releases.

9.2.0

main changes

  • Fixed: Ensured navigator.webdriver != true in launched Chromium (#3553)
  • Added: web-ext lint now supports Firefox 145 and 146 schemas

dependencies

  • Updated: dependency addons-linter to 9.2.0 (#3559)
  • Updated: dependency open to 11.0.0 (#3554)
  • Updated: dependency pino to 10.1.0 (#3538)

dev dependencies

  • Updated: dependency mocha to 11.7.5 (#3546)
  • Updated: dependency chai to 6.2.1 (#3550)

others

  • Migrate project to ESLint v9 (#3552)

See all changes: mozilla/web-ext@9.1.0...9.2.0

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the dev-dependencies group across 1 directory with 6 updates
69f749f 
Updates the requirements on [@sentry/browser](https://github.com/getsentry/sentry-javascript), [caniuse-lite](https://github.com/browserslist/caniuse-lite), [@sentry/cli](https://github.com/getsentry/sentry-cli), [@wordpress/eslint-plugin](https://github.com/WordPress/gutenberg/tree/HEAD/packages/eslint-plugin), [prettier](https://github.com/prettier/prettier) and [web-ext](https://github.com/mozilla/web-ext) to permit the latest version.

Updates `@sentry/browser` to 10.27.0
- [Release notes](https://github.com/getsentry/sentry-javascript/releases)
- [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md)
- [Commits](getsentry/sentry-javascript@10.24.0...10.27.0)

Updates `caniuse-lite` to 1.0.30001757
- [Commits](browserslist/caniuse-lite@1.0.30001754...1.0.30001757)

Updates `@sentry/cli` to 2.58.2
- [Release notes](https://github.com/getsentry/sentry-cli/releases)
- [Changelog](https://github.com/getsentry/sentry-cli/blob/master/CHANGELOG.md)
- [Commits](getsentry/sentry-cli@2.58.0...2.58.2)

Updates `@wordpress/eslint-plugin` to 22.22.0
- [Release notes](https://github.com/WordPress/gutenberg/releases)
- [Changelog](https://github.com/WordPress/gutenberg/blob/trunk/packages/eslint-plugin/CHANGELOG.md)
- [Commits](https://github.com/WordPress/gutenberg/commits/@wordpress/[email protected]/packages/eslint-plugin)

Updates `prettier` to 3.7.3
- [Release notes](https://github.com/prettier/prettier/releases)
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md)
- [Commits](prettier/prettier@3.6.2...3.7.3)

Updates `web-ext` to 9.2.0
- [Release notes](https://github.com/mozilla/web-ext/releases)
- [Commits](mozilla/web-ext@9.1.0...9.2.0)

---
updated-dependencies:
- dependency-name: "@sentry/browser"
  dependency-version: 10.27.0
  dependency-type: direct:production
  dependency-group: dev-dependencies
- dependency-name: caniuse-lite
  dependency-version: 1.0.30001757
  dependency-type: direct:production
  dependency-group: dev-dependencies
- dependency-name: "@sentry/cli"
  dependency-version: 2.58.2
  dependency-type: direct:development
  dependency-group: dev-dependencies
- dependency-name: "@wordpress/eslint-plugin"
  dependency-version: 22.22.0
  dependency-type: direct:development
  dependency-group: dev-dependencies
- dependency-name: prettier
  dependency-version: 3.7.3
  dependency-type: direct:development
  dependency-group: dev-dependencies
- dependency-name: web-ext
  dependency-version: 9.2.0
  dependency-type: direct:development
  dependency-group: dev-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Dec 2, 2025
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Dec 8, 2025

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Dec 8, 2025
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/dev-dependencies-1f4c7f4e9b branch December 8, 2025 23:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@bradp bradp

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@bradp