Bump @sentry/react from 8.55.0 to 10.15.0#64
Conversation
Bumps [@sentry/react](https://github.com/getsentry/sentry-javascript) from 8.55.0 to 10.15.0. - [Release notes](https://github.com/getsentry/sentry-javascript/releases) - [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md) - [Commits](getsentry/sentry-javascript@8.55.0...10.15.0) --- updated-dependencies: - dependency-name: "@sentry/react" dependency-version: 10.15.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
✓ Safe to upgradeI recommend merging this upgrade because @sentry/react is a completely unused dependency in this codebase - it exists in package.json but has no imports, initializations, or usage anywhere in the source code. The application currently uses basic console.error() logging instead of Sentry's error tracking. While the upgrade introduces 25 breaking changes, 19 deprecations, and 5 security fixes, none of these affect this codebase since Sentry is not actually implemented. The upgrade will pull in the latest security patches without any code changes required. What we checked
Dependency UsageThe @sentry/react package is listed as a dependency in package.json but is completely unused throughout the codebase. This represents dead code that should be removed, as the application currently relies on basic console.error() logging instead of Sentry's error tracking functionality. Changes SummaryFound 1 important update View all changes@sentry/react (8.55.0 → 10.15.0) References (3)[1]: @sentry/react is listed as a dependency but completely unused - represents dead code that should eventually be removed [2]: Application uses console.error() for error handling instead of Sentry - no Sentry imports or usage found anywhere in codebase [3]: Upgrade includes 5 high-severity security fixes for injection vulnerabilities, but they don't affect this codebase since Sentry is unused (more) fossabot analyzed this PR using static analysis and dependency research. |
🤖 Dependabot Metadata:
|
|
Superseded by #65. |
Bumps @sentry/react from 8.55.0 to 10.15.0.
Release notes
Sourced from
@sentry/react's releases.... (truncated)
Changelog
Sourced from
@sentry/react's changelog.... (truncated)
Commits
d1366f4release: 10.15.02d54234Merge pull request #17756 from getsentry/prepare-release/10.15.075796c5meta(changelog): Update changelog for 10.15.034538c8feat(cloudflare): AddhonoIntegrationwith error-filtering function (#17743)e419420docs: Reword changelog for google gen ai instrumentation (#17753)105f78efix(browser): Improve handling of0andundefinedresource timing values ...678d6e8feat(aws): Enable Lambda extension by default when using the Lamba layer (#17...c084bd6ref(nextjs): Display build compatibility warning for webpack (#17746)16ee36achore: Add external contributor to CHANGELOG.md (#17745)01fa69dfeat(node): Add instrumentation for hono handler (#17428)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)