meta(changelog): Update changelog for 9.3.0 #15540
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
The main thing this change does is to upgrade all the packages to use https://github.com/open-telemetry/opentelemetry-js/releases/tag/experimental%2Fv0.57.1 Other changes include: - Knex instrumentation bug fix: open-telemetry/opentelemetry-js-contrib#2650 - Fastify deprecation: open-telemetry/opentelemetry-js-contrib#2651
…-tests/test-applications/cloudflare-workers (#15327) Bumps [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest) from 1.5.0 to 1.6.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/vitest-dev/vitest/releases">vitest's releases</a>.</em></p> <blockquote> <h2>v1.6.1</h2> <p>This release includes security patches for:</p> <ul> <li><a href="https://github.com/vitest-dev/vitest/security/advisories/GHSA-9crc-q9x8-hgqq">Remote Code Execution when accessing a malicious website while Vitest API server is listening | CVE-2025-24964</a></li> </ul> <h3> 🐞 Bug Fixes</h3> <ul> <li>backport <a href="https://redirect.github.com/vitest-dev/vitest/issues/7317">vitest-dev/vitest#7317</a> to v1 - by <a href="https://github.com/hi-ogawa"><code>@hi-ogawa</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/pull/7319">vitest-dev/vitest#7319</a></li> </ul> <h5> <a href="https://github.com/vitest-dev/vitest/compare/v1.6.0...v1.6.1">View changes on GitHub</a></h5> <h2>v1.6.0</h2> <h3> 🚀 Features</h3> <ul> <li>Support standalone mode - by <a href="https://github.com/sheremet-va"><code>@sheremet-va</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/5565">vitest-dev/vitest#5565</a> <a href="https://github.com/vitest-dev/vitest/commit/bdce0a29"><!-- raw HTML omitted -->(bdce0)<!-- raw HTML omitted --></a></li> <li>Custom "snapshotEnvironment" option - by <a href="https://github.com/sheremet-va"><code>@sheremet-va</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/5449">vitest-dev/vitest#5449</a> <a href="https://github.com/vitest-dev/vitest/commit/30f728bc"><!-- raw HTML omitted -->(30f72)<!-- raw HTML omitted --></a></li> <li><strong>benchmark</strong>: Support comparing benchmark result - by <a href="https://github.com/hi-ogawa"><code>@hi-ogawa</code></a> and <a href="https://github.com/sheremet-va"><code>@sheremet-va</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/5398">vitest-dev/vitest#5398</a> <a href="https://github.com/vitest-dev/vitest/commit/f8d3d22e"><!-- raw HTML omitted -->(f8d3d)<!-- raw HTML omitted --></a></li> <li><strong>browser</strong>: Allow injecting scripts - by <a href="https://github.com/sheremet-va"><code>@sheremet-va</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/5656">vitest-dev/vitest#5656</a> <a href="https://github.com/vitest-dev/vitest/commit/21e58bd8"><!-- raw HTML omitted -->(21e58)<!-- raw HTML omitted --></a></li> <li><strong>reporter</strong>: Support <code>includeConsoleOutput</code> and <code>addFileAttribute</code> in junit - by <a href="https://github.com/hi-ogawa"><code>@hi-ogawa</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/5659">vitest-dev/vitest#5659</a> <a href="https://github.com/vitest-dev/vitest/commit/2f913222"><!-- raw HTML omitted -->(2f913)<!-- raw HTML omitted --></a></li> <li><strong>ui</strong>: Sort items by file name - by <a href="https://github.com/btea"><code>@btea</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/5652">vitest-dev/vitest#5652</a> <a href="https://github.com/vitest-dev/vitest/commit/1f7268fa"><!-- raw HTML omitted -->(1f726)<!-- raw HTML omitted --></a></li> </ul> <h3> 🐞 Bug Fixes</h3> <ul> <li>Keep order of arguments for .each in custom task collectors - by <a href="https://github.com/sheremet-va"><code>@sheremet-va</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/5640">vitest-dev/vitest#5640</a> <a href="https://github.com/vitest-dev/vitest/commit/7d57c116"><!-- raw HTML omitted -->(7d57c)<!-- raw HTML omitted --></a></li> <li>Call <code>resolveId('vitest')</code> after <code>buildStart</code> - by <a href="https://github.com/hi-ogawa"><code>@hi-ogawa</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/5646">vitest-dev/vitest#5646</a> <a href="https://github.com/vitest-dev/vitest/commit/f5faf423"><!-- raw HTML omitted -->(f5faf)<!-- raw HTML omitted --></a></li> <li>Hash the name of the file when caching - by <a href="https://github.com/sheremet-va"><code>@sheremet-va</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/5654">vitest-dev/vitest#5654</a> <a href="https://github.com/vitest-dev/vitest/commit/c9e68ced"><!-- raw HTML omitted -->(c9e68)<!-- raw HTML omitted --></a></li> <li>Don't panic on empty files in node_modules - by <a href="https://github.com/sheremet-va"><code>@sheremet-va</code></a> <a href="https://github.com/vitest-dev/vitest/commit/40c299fe"><!-- raw HTML omitted -->(40c29)<!-- raw HTML omitted --></a></li> <li>Use <code>toJSON</code> for error serialization - by <a href="https://github.com/hi-ogawa"><code>@hi-ogawa</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/5526">vitest-dev/vitest#5526</a> <a href="https://github.com/vitest-dev/vitest/commit/19a21e49"><!-- raw HTML omitted -->(19a21)<!-- raw HTML omitted --></a></li> <li><strong>coverage</strong>: <ul> <li>Exclude <code>*.test-d.*</code> by default - by <a href="https://github.com/MindfulPol"><code>@MindfulPol</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/5634">vitest-dev/vitest#5634</a> <a href="https://github.com/vitest-dev/vitest/commit/bfe8ad9d"><!-- raw HTML omitted -->(bfe8a)<!-- raw HTML omitted --></a></li> <li>Apply <code>vite-node</code>'s wrapper only to executed files - by <a href="https://github.com/AriPerkkio"><code>@AriPerkkio</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/5642">vitest-dev/vitest#5642</a> <a href="https://github.com/vitest-dev/vitest/commit/c9883f3e"><!-- raw HTML omitted -->(c9883)<!-- raw HTML omitted --></a></li> </ul> </li> <li><strong>vm</strong>: <ul> <li>Support network imports - by <a href="https://github.com/sheremet-va"><code>@sheremet-va</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/5610">vitest-dev/vitest#5610</a> <a href="https://github.com/vitest-dev/vitest/commit/103a6002"><!-- raw HTML omitted -->(103a6)<!-- raw HTML omitted --></a></li> </ul> </li> </ul> <h3> 🏎 Performance</h3> <ul> <li>Improve performance of forks pool - by <a href="https://github.com/sheremet-va"><code>@sheremet-va</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/5592">vitest-dev/vitest#5592</a> <a href="https://github.com/vitest-dev/vitest/commit/d8304bb4"><!-- raw HTML omitted -->(d8304)<!-- raw HTML omitted --></a></li> <li>Unnecessary rpc call when coverage is disabled - by <a href="https://github.com/AriPerkkio"><code>@AriPerkkio</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/5658">vitest-dev/vitest#5658</a> <a href="https://github.com/vitest-dev/vitest/commit/c571276a"><!-- raw HTML omitted -->(c5712)<!-- raw HTML omitted --></a></li> </ul> <h5> <a href="https://github.com/vitest-dev/vitest/compare/v1.5.3...v1.6.0">View changes on GitHub</a></h5> <h2>v1.5.3</h2> <h3> 🐞 Bug Fixes</h3> <ul> <li>Use package.json name for a workspace project if not provided - by <a href="https://github.com/sheremet-va"><code>@sheremet-va</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/5608">vitest-dev/vitest#5608</a> <a href="https://github.com/vitest-dev/vitest/commit/48fba190"><!-- raw HTML omitted -->(48fba)<!-- raw HTML omitted --></a></li> <li>Backport jest iterable equality within object - by <a href="https://github.com/sukovanej"><code>@sukovanej</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/5621">vitest-dev/vitest#5621</a> <a href="https://github.com/vitest-dev/vitest/commit/30e5dc1b"><!-- raw HTML omitted -->(30e5d)<!-- raw HTML omitted --></a></li> <li><strong>browser</strong>: Support benchmark - by <a href="https://github.com/hi-ogawa"><code>@hi-ogawa</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/5622">vitest-dev/vitest#5622</a> <a href="https://github.com/vitest-dev/vitest/commit/becabb5e"><!-- raw HTML omitted -->(becab)<!-- raw HTML omitted --></a></li> <li><strong>reporter</strong>: Use default error formatter for JUnit - by <a href="https://github.com/hi-ogawa"><code>@hi-ogawa</code></a> in <a href="https://redirect.github.com/vitest-dev/vitest/issues/5629">vitest-dev/vitest#5629</a> <a href="https://github.com/vitest-dev/vitest/commit/200609cc"><!-- raw HTML omitted -->(20060)<!-- raw HTML omitted --></a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/vitest-dev/vitest/commit/017e1ee6c66179568b758b4d1e1796f551dc1366"><code>017e1ee</code></a> chore: release v1.6.1</li> <li><a href="https://github.com/vitest-dev/vitest/commit/7ce9fbb4972d45c6fd34c843645ef6f549bbb241"><code>7ce9fbb</code></a> fix: backport <a href="https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/7317">#7317</a> to v1 (<a href="https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/7319">#7319</a>)</li> <li><a href="https://github.com/vitest-dev/vitest/commit/6b29f3ddc86060cf3265959d4ae32e90b186cb92"><code>6b29f3d</code></a> chore: release v1.6.0</li> <li><a href="https://github.com/vitest-dev/vitest/commit/f8d3d22e3b1f527475181d06d01f8d985462f83f"><code>f8d3d22</code></a> feat(benchmark): support comparing benchmark result (<a href="https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/5398">#5398</a>)</li> <li><a href="https://github.com/vitest-dev/vitest/commit/21e58bd890c4b770d8b015b25e598ae8455dbea8"><code>21e58bd</code></a> feat(browser): allow injecting scripts (<a href="https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/5656">#5656</a>)</li> <li><a href="https://github.com/vitest-dev/vitest/commit/30f728bc1a6c4cf794b184ff3ed0ee27888b924c"><code>30f728b</code></a> feat: custom "snapshotEnvironment" option (<a href="https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/5449">#5449</a>)</li> <li><a href="https://github.com/vitest-dev/vitest/commit/2f9132223870cee12ea84fe125e788a54207ccef"><code>2f91322</code></a> feat(reporter): support <code>includeConsoleOutput</code> and <code>addFileAttribute</code> in juni...</li> <li><a href="https://github.com/vitest-dev/vitest/commit/c571276a8cac01202e8960fa75d18c9d5c3c662a"><code>c571276</code></a> perf: unnecessary rpc call when coverage is disabled (<a href="https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/5658">#5658</a>)</li> <li><a href="https://github.com/vitest-dev/vitest/commit/bdce0a29db1b5a2766d583cef40277a2b3857659"><code>bdce0a2</code></a> feat: support standalone mode (<a href="https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest/issues/5565">#5565</a>)</li> <li><a href="https://github.com/vitest-dev/vitest/commit/40c299fe611b12a59f69745547b5d449aa83812b"><code>40c299f</code></a> fix: don't panic on empty files in node_modules</li> <li>Additional commits viewable in <a href="https://github.com/vitest-dev/vitest/commits/v1.6.1/packages/vitest">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/getsentry/sentry-javascript/network/alerts). </details> Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
security(gha): fix potential for shell injection
Co-authored-by: Luca Forstner <[email protected]>
This PR adds support for Shopify Hydrogen applications running on MiniOxygen runtime. ### What's updated **Issue with `node:async_hooks`** (#5610 (comment)) - `@sentry/cloudflare` has a new export path called `./request` to import only the request wrapper without involving `async.ts` which imports `node:async_hooks`. That fixes the build problems on the MiniOxygen environment. **Issue with imported empty modules on MiniOxygen** (Related: vitejs/vite#10612) - `@sentry/remix` has a new export path called `./cloudflare` to fix empty methods in the imported modules. The problem there seemed to be the re-exports that are somehow not resolved. So with this, I also updated the file structure of Remix SDK to separate the client/server/cloudflare code with their own per-folder `index` files. **Issue having `loader` and `action` spans** - This is currently [not supported](https://github.com/justindsmith/opentelemetry-instrumentations-js/tree/main/packages/instrumentation-remix#cloudflare-worker-warning) on `cloudflare` environments on the auto-instrumented flow. To support them, I re-introduced the span creation flow we were using before migration. That's a step back from #15074, but by default this logic is disabled. It's enabled by default when `instrumentBuild` is imported from `@sentry/remix/cloudflare`. **The root server spans are not parameterised** That's because we don't have the Remix routes information on `@sentry/cloudflare`'s request wrapper. I have tried updating the root span's name inside `@sentry/remix/cloudflare`'s logic and it works. But I have left it out for now, not to make this PR even more difficult to review.
and only warn about missing onRequestError when an instrumentation file exists
Co-authored-by: Luca Forstner <[email protected]>
…andler-2 fix(nextjs/instrumentation): warn about missing onRequestError handler
…/e2e-tests/test-applications/remix-hydrogen (#15489)
Jest didn't like usages of `import.meta.url` but now we're using Vitest, these hacks can be removed. Our Rollup config already converts this correctly when building our CommonJs output. --------- Co-authored-by: Abhijeet Prasad <[email protected]>
Before: `7.549 s` After: `Duration 3.10s (transform 2.32s, setup 0ms, collect 13.39s, tests 599ms, environment 4.11s, prepare 945ms)`
Jest is not being used, we can remove all jest related code from this package
…ons (#15283) This started to be an issue after we added support for descendant React Router routes. React Router does not limit users to only one way to declare routes. Currently, we provide instrumentation for 3 ways of declaring RR routes: | React Router v6/v7 | Sentry | |-----------------------|----------------------------------| | `useRoutes` | `Sentry.wrapUseRoutes` | | `<Routes />` | `Sentry.withReactRouterRouting` | | `createBrowserRouter` | `Sentry.wrapCreateBrowserRouter` | | `createHashRouter` | `Sentry.wrapCreateBrowserRouter` | | `createMemoryRouter` | `Sentry.wrapCreateMemoryRouter` | When users decide to declare their routes using more than one of these options together, we risk losing context while rebuilding parameterised span names. This PR adds: - Proper support and context sharing for cross-usage of route declarations - E2E tests for pairs of 2 and all three possible methods used together to declare descendant routes. - Adds another recursion break for the path rebuild method for cases when the rebuilt path has not changed in a deeper recursive call. (This fixes #15279, together with the updates mentioned above)
Before: `6.437 s` After: `1.23s` The first thing we did was migrate the `pretest.ts` script to use a vitest global setup instead. This is cleaner, and should ensure it never gets lost in refactors either. After that we did the conversion. The trickiest thing to change was `packages/gatsby/test/gatsby-node.test.ts`, as `gatsby-node.js` is a CJS file. This is tricky to patch properly with vitest for the spy. To get around this, we monkeypatch `Module._load` temporarily to load a stub which we defined in `vi.hoisted` (which hoists it to the top so it's always available).
We should not use Vitest globals except where they are required. This PR: - Disables `globals` in our root `vite.config.ts` - Fixes missing imports - Sets `globals: true` for React since there are load of test failures without it and I couldn't immedialy work out why
This PR adds the external contributor to the CHANGELOG.md file, so that they are credited for their contribution. See #15473 Co-authored-by: s1gr1d <[email protected]>
…ation` (#15434) Deprecate and rename the `inboundFiltersIntegration` to `eventFiltersIntegration` to improve the integration name and avoid ambiguity with the product.
- fix(snapshot): Do not attempt to load iframe at all if it is blocked See https://github.com/getsentry/rrweb/releases/tag/2.33.0
- Adds a vite plugin for react router that handles: - Updating sourcemap settings - Release injection - Telemetry Data - Adds a sentryOnBuildEnd hook that handles: - Creating releases - DebugId injection - Uploading sourcemaps - Deleting sourcemaps after upload closes #15188 --------- Co-authored-by: Sigrid Huemer <[email protected]>
closes #15505 --------- Co-authored-by: Charly Gomez <[email protected]>
Adds a craft entry for publishing `@sentry/react-router` to npm closes #14725
Updates all imports in readme to use `@sentry/react-router` ref #15191
This PR adds the external contributor to the CHANGELOG.md file, so that they are credited for their contribution. See #15519 Co-authored-by: chargome <[email protected]>
We've been filtering a specific "undefined is not an object" error that referenced "a.L" in our error filters. However, similar errors occured with other uppercase letters (e.g. `a.K`) - they all represent the same class of non-actionable error. This pr just updates the filter to use a regex for this pattern. ref getsentry/sentry#85531
While trying to debug the tedious integration, I figured it would be nice to internals of the envelope item when receiving mismatched envelope items. This PR adds the the serialized envelope item to the error being thrown.
size-limit report 📦
|
|
Note that the failing nextjs-e2e test is optional and already fixed with the upcoming canary |
andreiborza
approved these changes
Feb 28, 2025
s1gr1d
approved these changes
Feb 28, 2025
|
|
||
| ### Important Changes | ||
|
|
||
| With this release we're publishing two new SDKs in **experimental alpha** stage: |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
No description provided.