Skip to content

Bump the frontend group with 3 updates #16769

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Bump the frontend group with 3 updates #16769

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 1, 2025

Bumps the frontend group with 3 updates: @sentry/browser, caniuse-lite and webpack.

Updates @sentry/browser from 10.12.0 to 10.17.0

Release notes

Sourced from @​sentry/browser's releases.

10.17.0

Important Changes

  • feat(nuxt): Implement server middleware instrumentation (#17796)

    This release introduces instrumentation for Nuxt middleware, ensuring that all middleware handlers are automatically wrapped with tracing and error reporting functionality.

  • fix(aws-serverless): Take http_proxy into account when choosing useLayerExtension default (#17817)

    The default setting for useLayerExtension now considers the http_proxy environment variable. When http_proxy is set, useLayerExtension will be off by default. If you use a http_proxy but would still like to make use of the Sentry Lambda extension, exempt localhost in a no_proxy environment variable.

Other Changes

  • feat(node): Split up http integration into composable parts (#17524)
  • fix(core): Remove check and always respect ai.telemetry.functionId for Vercel AI gen spans (#17811)
  • doc(core): Fix outdated JSDoc in beforeSendSpan (#17815)
  • ci: Do not run dependabot on e2e test applications (#17813)
  • docs: Reword changelog for google gen ai integration (#17805)

Bundle size 📦

Path Size
@​sentry/browser 23.67 KB
@​sentry/browser - with treeshaking flags 22.21 KB
@​sentry/browser (incl. Tracing) 39.48 KB
@​sentry/browser (incl. Tracing, Replay) 76.96 KB
@​sentry/browser (incl. Tracing, Replay) - with treeshaking flags 66.85 KB
@​sentry/browser (incl. Tracing, Replay with Canvas) 81.52 KB
@​sentry/browser (incl. Tracing, Replay, Feedback) 93.43 KB
@​sentry/browser (incl. Feedback) 39.99 KB
@​sentry/browser (incl. sendFeedback) 28.21 KB
@​sentry/browser (incl. FeedbackAsync) 33.03 KB
@​sentry/react 25.35 KB
@​sentry/react (incl. Tracing) 41.4 KB
@​sentry/vue 28.07 KB
@​sentry/vue (incl. Tracing) 41.24 KB
@​sentry/svelte 23.69 KB
CDN Bundle 25.15 KB
CDN Bundle (incl. Tracing) 39.37 KB
CDN Bundle (incl. Tracing, Replay) 74.76 KB

... (truncated)

Changelog

Sourced from @​sentry/browser's changelog.

10.17.0

Important Changes

  • feat(nuxt): Implement server middleware instrumentation (#17796)

    This release introduces instrumentation for Nuxt middleware, ensuring that all middleware handlers are automatically wrapped with tracing and error reporting functionality.

  • fix(aws-serverless): Take http_proxy into account when choosing useLayerExtension default (#17817)

    The default setting for useLayerExtension now considers the http_proxy environment variable. When http_proxy is set, useLayerExtension will be off by default. If you use a http_proxy but would still like to make use of the Sentry Lambda extension, exempt localhost in a no_proxy environment variable.

Other Changes

  • feat(node): Split up http integration into composable parts (#17524)
  • fix(core): Remove check and always respect ai.telemetry.functionId for Vercel AI gen spans (#17811)
  • doc(core): Fix outdated JSDoc in beforeSendSpan (#17815)
  • ci: Do not run dependabot on e2e test applications (#17813)
  • docs: Reword changelog for google gen ai integration (#17805)

10.16.0

  • feat(logs): Add internal replay_is_buffering flag (#17752)
  • feat(react-router): Update loadContext type to be compatible with middleware (#17758)
  • feat(replay/logs): Only attach sampled replay Ids to logs (#17750)
  • fix(browser): Use current start timestamp for CLS span when CLS is 0 (#17800)
  • fix(core): Prevent instrumentAnthropicAiClient breaking MessageStream api (#17754)
  • fix(nextjs): Don't use chalk in turbopack config file (#17806)
  • fix(react): Do not send additional navigation span on pageload (#17799)
  • build(aws): Ensure AWS build cache does not keep old files (#17776)
  • chore: Add publish_release command (#17797)
  • ref(aws-serverless): Add resolution for import-in-the-middle when building the Lambda layer (#17780)
  • ref(aws-serverless): Improve README with better examples (#17787)
  • ref(core): Improve promise buffer (#17788)
  • Revert "test(e2e): Pin [email protected] due to @vercel/nft incompatibility (#17777)" (#17784)
  • test(e2e): Pin [email protected] due to @vercel/nft incompatibility (#17777)
  • test(nextjs): Add route handler tests for turbopack (#17515)

... (truncated)

Commits
  • eb6e294 release: 10.17.0
  • 7dd3a82 Merge pull request #17827 from getsentry/prepare-release/10.17.0
  • 7b7ba0d meta(changelog): Update changelog for 10.17.0
  • 264ad0b feat(nuxt): Implement server middleware instrumentation (#17796)
  • 11ea830 fix(aws-serverless): Take http_proxy into account when choosing `useLayerEx...
  • e966cdc doc(core): Fix outdated JSDoc in beforeSendSpan (#17815)
  • 7b40a95 feat(node): Split up http integration into composable parts (#17524)
  • 4a9946c ci: Do not run dependabot on e2e test applications (#17813)
  • 68a4eb3 Merge pull request #17812 from getsentry/master
  • 559d8a5 Merge branch 'release/10.16.0'
  • Additional commits viewable in compare view

Updates caniuse-lite from 1.0.30001743 to 1.0.30001746

Commits

Updates webpack from 5.101.3 to 5.102.0

Release notes

Sourced from webpack's releases.

v5.102.0

Features

  • Added static analyze for dynamic imports
  • Added support for import file from "./file.ext" with { type: "bytes" } to get the content as Uint8Array (look at example)
  • Added support for import file from "./file.ext" with { type: "text" } to get the content as text (look at example)
  • Added the snapshot.contextModule to configure snapshots options for context modules
  • Added the extractSourceMap option to implement the capabilities of loading source maps by comment, you don't need source-map-loader (look at example)
  • The topLevelAwait experiment is now stable (you can remove experiments.topLevelAwait from your webpack.config.js)
  • The layers experiment is now stable (you can remove experiments.layers from your webpack.config.js)
  • Added function matcher support in rule options

Fixes

  • Fixed conflicts caused by multiple concatenate modules
  • Ignore import failure during HMR update with ES modules output
  • Keep render module order consistent
  • Prevent inlining modules that have this exports
  • Removed unused timeout attribute of script tag
  • Supported UMD chunk format to work in web workers
  • Improved CommonJs bundle to ES module library
  • Use es-lexer for mjs files for build dependencies
  • Fixed support __non_webpack_require__ for ES modules
  • Properly handle external modules for CSS
  • AssetsByChunkName included assets from chunk.auxiliaryFiles
  • Use createRequire only when output is ES module and target is node
  • Typescript types

Performance Improvements

  • Avoid extra calls for snapshot
  • A avoid extra jobs for build dependencies
  • Move import attributes to own dependencies
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the frontend group with 3 updates
996d9ae 
Bumps the frontend group with 3 updates: [@sentry/browser](https://github.com/getsentry/sentry-javascript), [caniuse-lite](https://github.com/browserslist/caniuse-lite) and [webpack](https://github.com/webpack/webpack).


Updates `@sentry/browser` from 10.12.0 to 10.17.0
- [Release notes](https://github.com/getsentry/sentry-javascript/releases)
- [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md)
- [Commits](getsentry/sentry-javascript@10.12.0...10.17.0)

Updates `caniuse-lite` from 1.0.30001743 to 1.0.30001746
- [Commits](browserslist/caniuse-lite@1.0.30001743...1.0.30001746)

Updates `webpack` from 5.101.3 to 5.102.0
- [Release notes](https://github.com/webpack/webpack/releases)
- [Commits](webpack/webpack@v5.101.3...v5.102.0)

---
updated-dependencies:
- dependency-name: "@sentry/browser"
  dependency-version: 10.17.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: frontend
- dependency-name: caniuse-lite
  dependency-version: 1.0.30001746
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: frontend
- dependency-name: webpack
  dependency-version: 5.102.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: frontend
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file Frontend HTML, CSS, JS... client side stuff labels Oct 1, 2025
@dependabot dependabot bot requested a review from a team as a code owner October 1, 2025 02:03
@dependabot dependabot bot added dependencies Pull requests that update a dependency file Frontend HTML, CSS, JS... client side stuff labels Oct 1, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file Frontend HTML, CSS, JS... client side stuff
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants