build(deps): bump the dependencies group across 1 directory with 13 updates

[dependabot]

Bumps the dependencies group with 13 updates in the / directory:

Package	From	To
@sentry/node	10.51.0	10.52.0
@types/node	25.6.0	25.6.2
amqplib	1.0.5	1.0.6
bullmq	5.76.5	5.76.6
express-rate-limit	8.5.0	8.5.1
graphql	16.13.2	16.14.0
puppeteer	24.42.0	24.43.0
rate-limiter-flexible	11.0.2	11.1.0
stripe	22.1.0	22.1.1
@opentelemetry/sdk-node	0.216.0	0.217.0
@opentelemetry/auto-instrumentations-node	0.74.0	0.75.0
@opentelemetry/exporter-trace-otlp-http	0.216.0	0.217.0
jest	30.3.0	30.4.0

Updates @sentry/node from 10.51.0 to 10.52.0

Release notes

Sourced from @​sentry/node's releases.

10.52.0

Important Changes

• Beta release of the official Hono Sentry SDK

  This release marks the beta release of the @sentry/hono Sentry SDK. For details on how to use it, check out the Sentry Hono SDK docs. Please reach out on GitHub if you have any feedback or concerns.

• feat(browser): Add ingest_settings to v2 log envelope payload (#20453)

  Inference of user data (e.g. IP address, browser name/version) on log events is now gated behind the sendDefaultPii option. Previously, this data was always inferred by default.

Other Changes

• docs(hono): Add new docs link and move to BETA release (#20666)
• feat(browser): Add ingest_settings to v2 metrics envelope payload (#20454)
• feat(browser): Migrate spotlight event processor to ignoreSpans (#20595)
• feat(cloudflare): Capture request body via httpServerIntegration (#20614)
• feat(cloudflare): Support rpc trace propagation for WorkerEntrypoint (#20523)
• feat(cloudflare): Support tracing for queue producer (#20529)
• feat(core): Apply request data to segment spans in span streaming (#20654)
• feat(core): Migrate Vercel AI event processor to span streaming (#20608)
• feat(deno): Add processSegmentSpan to Deno context integration (#20613)
• feat(http): Portable node:http client instrumentation (#20393)
• feat(nitro): Add unstorage tracing channel instrumentation (#20615)
• feat(node-core): Add processSegmentSpan to node context integration (#20678)
• feat(node): Use diagnostics_channel for redis >= 5.12.0 (#20573)
• feat(node): Vendor ioredis, redis instrumentations (#20510)
• feat(replay): Reset replay id from DSC on session expiry/refresh (#20129)
• fix: Bump fast-xml-parser to fix vulnerability (#20644)
• fix: Bump vite versions to fix vulnerability (#20646)
• fix(core): Drain buffers in flush() when there is no transport (#20207)
• fix(core): Guard against undefined chained in copyProps (#20637)
• fix(deps): Bump rollup-plugin-license to fix lodash vulnerabilities (#20636)
• fix(deps): Bump transitive deps for medium security fixes (#20683)
• fix(hono): Do not capture 3xx and 4xx errors and add tests (#20640)
• fix(nextjs): Skip build modification when SRI is enabled (#20694)
• fix(opentelemetry): Respect OTEL_SERVICE_NAME, OTEL_RESOURCE_ATTRIBUTES (#20509)

• chore: Remove bundle-analyzer-scenarios dev packages (#20680)
• chore(deps): Bump @​hono/node-server from 1.19.10 to 1.19.13 (#20117)
• chore(deps): Bump @​nestjs packages to fix path-to-regexp ReDoS (#20642)
• chore(deps): Bump axios from 1.15.0 to 1.15.2 (#20665)
• chore(deps): Bump ip-address from 10.1.0 to 10.2.0 (#20695)
• chore(deps): Bump simple-git from 3.33.0 to 3.36.0 (#20696)
• chore(deps): Bump vulnerable testem version (#20634)

... (truncated)

Changelog

Sourced from @​sentry/node's changelog.

10.52.0

Important Changes

• Beta release of the official Hono Sentry SDK

  This release marks the beta release of the @sentry/hono Sentry SDK. For details on how to use it, check out the Sentry Hono SDK docs. Please reach out on GitHub if you have any feedback or concerns.

• feat(browser): Add ingest_settings to v2 log envelope payload (#20453)

  Inference of user data (e.g. IP address, browser name/version) on log events is now gated behind the sendDefaultPii option. Previously, this data was always inferred by default.

Other Changes

• docs(hono): Add new docs link and move to BETA release (#20666)
• feat(browser): Add ingest_settings to v2 metrics envelope payload (#20454)
• feat(browser): Migrate spotlight event processor to ignoreSpans (#20595)
• feat(cloudflare): Capture request body via httpServerIntegration (#20614)
• feat(cloudflare): Support rpc trace propagation for WorkerEntrypoint (#20523)
• feat(cloudflare): Support tracing for queue producer (#20529)
• feat(core): Apply request data to segment spans in span streaming (#20654)
• feat(core): Migrate Vercel AI event processor to span streaming (#20608)
• feat(deno): Add processSegmentSpan to Deno context integration (#20613)
• feat(http): Portable node:http client instrumentation (#20393)
• feat(nitro): Add unstorage tracing channel instrumentation (#20615)
• feat(node-core): Add processSegmentSpan to node context integration (#20678)
• feat(node): Use diagnostics_channel for redis >= 5.12.0 (#20573)
• feat(node): Vendor ioredis, redis instrumentations (#20510)
• feat(replay): Reset replay id from DSC on session expiry/refresh (#20129)
• fix: Bump fast-xml-parser to fix vulnerability (#20644)
• fix: Bump vite versions to fix vulnerability (#20646)
• fix(core): Drain buffers in flush() when there is no transport (#20207)
• fix(core): Guard against undefined chained in copyProps (#20637)
• fix(deps): Bump rollup-plugin-license to fix lodash vulnerabilities (#20636)
• fix(deps): Bump transitive deps for medium security fixes (#20683)
• fix(hono): Do not capture 3xx and 4xx errors and add tests (#20640)
• fix(nextjs): Skip build modification when SRI is enabled (#20694)
• fix(opentelemetry): Respect OTEL_SERVICE_NAME, OTEL_RESOURCE_ATTRIBUTES (#20509)

• chore: Remove bundle-analyzer-scenarios dev packages (#20680)
• chore(deps): Bump @​hono/node-server from 1.19.10 to 1.19.13 (#20117)
• chore(deps): Bump @​nestjs packages to fix path-to-regexp ReDoS (#20642)
• chore(deps): Bump axios from 1.15.0 to 1.15.2 (#20665)
• chore(deps): Bump ip-address from 10.1.0 to 10.2.0 (#20695)
• chore(deps): Bump simple-git from 3.33.0 to 3.36.0 (#20696)

... (truncated)

Commits

• 4b911e0 release: 10.52.0
• 781f31c Merge pull request #20707 from getsentry/prepare-release/10.52.0
• 11a64f6 meta(changelog): Update changelog for 10.52.0
• e185818 feat(node-core): Add processSegmentSpan to node context integration (#20678)
• 7e49571 feat(node): use diagnostics_channel for redis >= 5.12.0 (#20573)
• a8ab715 feat(replay): Reset replay id from DSC on session expiry/refresh (#20129)
• 7efc03f feat(core): Apply request data to segment spans in span streaming (#20654)
• 01d0a70 feat(core): Migrate Vercel AI event processor to span streaming (#20608)
• 12cd3e5 fix(nextjs): Skip build modification when SRI is enabled (#20694)
• f1f534c fix(deps): Bump transitive deps for medium security fixes (#20683)
• Additional commits viewable in compare view

Updates @types/node from 25.6.0 to 25.6.2

Commits

• See full diff in compare view

Updates amqplib from 1.0.5 to 1.0.6

Changelog

Sourced from amqplib's changelog.

v1.0.6

• Fix channel.get() not invoking callback with error on channel close; previously only an error event was emitted (fixes #832). Note: if you use the callback API, ensure your channel.get() callbacks handle errors — they will now be invoked in error cases where previously they were not. If you use the promise API, the returned promise now rejects with a proper Error object (with .code, .classId and .methodId properties) rather than a raw close frame.

Commits

• 6c5ab91 1.0.6
• 727b054 Prep for release
• a8dc4d4 Update changelog with migration notes for #832 fix
• 0da5e2b Remove stale comment from Get from non-queue invokes error test
• 00a9bea Fix: channel.get() does not yield errors to the callback (#832)
• 83fb208 Update node 18 in makefile
• See full diff in compare view

Updates bullmq from 5.76.5 to 5.76.6

Release notes

Sourced from bullmq's releases.

v5.76.6

5.76.6 (2026-05-06)

Bug Fixes

• connection: reconnect wedged blocking cluster clients (#4151) (e94e8cd)

Commits

• e94e8cd fix(connection): reconnect wedged blocking cluster clients (#4151)
• 9214391 chore(deps): bump the npm_and_yarn group across 4 directories with 1 update (...
• 2932e7e chore(deps): update dependency msgpackr to v2 [security] (#4145)
• 9b1eabb chore(deps): update devdependencies (non-major) [security] (#4143)
• e14f4fa chore(deps): update github/codeql-action digest to e46ed2c (#4146)
• d58c194 chore(release): vpy2.25.1 (#4148)
• c9c0c0a fix(connection): deprecate skipWaitingForReady option as is not having any ef...
• d20a497 chore(deps): update eslint to v8.59.1 [security] (#4144)
• d0f9dda test(stalled): address race condition (#4139)
• f06e068 chore(release): 5.76.5 (#4142)
• See full diff in compare view

Updates express-rate-limit from 8.5.0 to 8.5.1

Release notes

Sourced from express-rate-limit's releases.

v8.5.1

You can view the changelog here.

Commits

• 50cc3f6 8.5.1
• 92c8e3e chore: bump ip-address library to latest (#626)
• See full diff in compare view

Updates graphql from 16.13.2 to 16.14.0

Release notes

Sourced from graphql's releases.

v16.14.0 (2026-05-03)

New Feature 🚀

• #4317 Allow configuration of the ofType introspection depth (@​Nols1000)
• #4521 Add experimental support for directives on directive definitions (@​BoD)

Bug Fix 🐞

• #4652 Fix valueFromAST variable own-property checks (@​abishekgiri)

Docs 📝

• #4706 Fix mistake in GraphQLError guidance (@​benjie)

Committers: 4

• Abishek Kumar Giri(@​abishekgiri)
• Benjie(@​benjie)
• Benoit 'BoD' Lubek(@​BoD)
• Nils-Börge Margotti(@​Nols1000)

Commits

• 57b385b chore(release): v16.14.0 (#4720)
• 85700ed Fix mistake in GraphQLError guidance (#4706)
• 8eb6383 Allow configuration of the ofType introspection depth (#4317)
• ad9c519 Add support for directives on directive definitions (#4521)
• db2987c fix(valueFromAST): restore variable own-property checks (#4652)
• See full diff in compare view

Updates puppeteer from 24.42.0 to 24.43.0

Release notes

Sourced from puppeteer's releases.

puppeteer-core: v24.43.0

24.43.0 (2026-05-06)

🎉 Features

• Implement allowlist (#14897) (e7e31f8)
• roll to Chrome 148.0.7778.56 (#14918) (65890b7)
• roll to Firefox 150.0 (#14900) (beab61b)
• support checkboxes and radios in locator.fill (#14939) (fec05a0)
• webmcp: Add support for untrustedContent WebMCPAnnotation (#14901) (0314942)

🛠️ Fixes

• Disable WebUIReloadButton experiment (#14925) (d9639e9)
• do not open DevTools if it is already open (#14922) (84c9d34)
• do not set global offline flag for allowlist (#14931) (d6a1003)
• roll to Chrome 148.0.7778.97 (#14929) (536eb11)
• roll to Firefox 150.0.1 (#14923) (50438cf)

Dependencies

• The following workspace dependencies were updated
  • dependencies
    • @​puppeteer/browsers bumped from 2.13.0 to 2.13.1

puppeteer: v24.43.0

24.43.0 (2026-05-06)

🎉 Features

• roll to Chrome 148.0.7778.56 (#14918) (65890b7)

Dependencies

• The following workspace dependencies were updated
  • dependencies
    • @​puppeteer/browsers bumped from 2.13.0 to 2.13.1
    • puppeteer-core bumped from 24.42.0 to 24.43.0

Changelog

Sourced from puppeteer's changelog.

24.43.0 (2026-05-06)

🎉 Features

• Implement allowlist (#14897) (e7e31f8)
• roll to Chrome 148.0.7778.56 (#14918) (65890b7)
• roll to Firefox 150.0 (#14900) (beab61b)
• support checkboxes and radios in locator.fill (#14939) (fec05a0)
• webmcp: Add support for untrustedContent WebMCPAnnotation (#14901) (0314942)

Dependencies

• The following workspace dependencies were updated
  • dependencies
    • @​puppeteer/browsers bumped from 2.13.0 to 2.13.1

🛠️ Fixes

• Disable WebUIReloadButton experiment (#14925) (d9639e9)
• do not open DevTools if it is already open (#14922) (84c9d34)
• do not set global offline flag for allowlist (#14931) (d6a1003)
• roll to Chrome 148.0.7778.97 (#14929) (536eb11)
• roll to Firefox 150.0.1 (#14923) (50438cf)

Commits

• 07e2a1d chore: release main (#14902)
• 8451125 chore: Add a special treatment for EPERM error for windows test (#14943)
• 924eb69 test: Add form node to an accessibility tree (#14942)
• e54b90a chore: add iframe blocking tests (#14926)
• fec05a0 feat: support checkboxes and radios in locator.fill (#14939)
• d6a1003 fix: do not set global offline flag for allowlist (#14931)
• 2ee0f10 chore(deps-dev): bump the dev-dependencies group with 5 updates (#14935)
• 7e57729 chore(deps): bump the all group in /website with 11 updates (#14936)
• e51242d chore(deps): bump github/codeql-action from 4.35.2 to 4.35.3 in the all group...
• 50438cf fix: roll to Firefox 150.0.1 (#14923)
• Additional commits viewable in compare view

Updates rate-limiter-flexible from 11.0.2 to 11.1.0

Release notes

Sourced from rate-limiter-flexible's releases.

Dump and restore for Memory limiter

What's Changed

• dump() and restore() for Memory limiter by @​man610 in animir/node-rate-limiter-flexible#361

This is a best-effort persistence mechanism for graceful restarts (SIGTERM/SIGINT), blue/green deploys, or writing a snapshot to disk on shutdown.

Use this when losing up to 1% of request counts won’t affect security or finances, such as in overload or DoS protection.

New Contributors

• @​man610 made their first contribution in animir/node-rate-limiter-flexible#361

Full Changelog: animir/node-rate-limiter-flexible@v11.0.2...v11.1.0

🔶

Commits

• 3c9c826 11.1.0
• 79a0418 update readme
• e9d99a1 Merge remote-tracking branch 'origin/master'
• 6c4eeb2 update ai docs
• f1bc96a Feat/40 dump restore (#361)
• See full diff in compare view

Updates stripe from 22.1.0 to 22.1.1

Release notes

Sourced from stripe's releases.

v22.1.1

• #2703 Export Decimal type from Stripe namespace

  • Added Stripe.Decimal as a usable type in the Stripe namespace, enabling type annotations like function takesDecimal(d: Stripe.Decimal).

• #2704 Fix file upload regression: restore multipart request data processor

  • Fixed file uploads failing with StripeInvalidRequestError on the /v1/files endpoint since v22.

See the changelog for more details.

Changelog

Sourced from stripe's changelog.

22.1.1 - 2026-05-06

• #2703 Export Decimal type from Stripe namespace

  • Added Stripe.Decimal as a usable type in the Stripe namespace, enabling type annotations like function takesDecimal(d: Stripe.Decimal).

• #2704 Fix file upload regression: restore multipart request data processor

  • Fixed file uploads failing with StripeInvalidRequestError on the /v1/files endpoint since v22.

Commits

• 1899375 Bump version to 22.1.1
• dae38ed Export Decimal type from Stripe namespace (#2703)
• fe46e5f Fix file upload regression: restore multipart request data processor (#2704)
• 8595acb Remove defunct RunKit badge from README (#2701)
• See full diff in compare view

Updates @opentelemetry/sdk-node from 0.216.0 to 0.217.0

Release notes

Sourced from @​opentelemetry/sdk-node's releases.

experimental/v0.217.0

0.217.0

🚀 Features

• feat(otlp-transformer): replace protobufjs trace serialization with custom implementation #6625 @​pichlermarc
• feat(configuration): auto-generate TypeScript types from OTel declarative config JSON schema (stable v1.0.0) using json-schema-to-typescript and ajv #6533 @​MikeGoldsmith
• feat(configuration, sdk-node): startNodeSDK() code path now uses log_level configuration to setup a DiagConsoleLogger #6668 @​trentm
  • Note that allowed values for log_level in a configuration YAML file are not the same set as for OTEL_LOG_LEVEL. Use log_level: trace to see all logs (equivalent of OTEL_LOG_LEVEL=ALL). Use log_level: fatal to effectively disable the SDK's internal diagnostic logger (equivalent of OTEL_LOG_LEVEL=NONE).
  • If log_level is not specified, a diagnostic console logger at "info" level will be setup.
  • An invalid YAML config file will now result in a noop OTel SDK.

🐛 Bug Fixes

• fix(configuration): do not validate OTEL_CONFIG_FILE value before using it for file config #6643 @​trentm
• fix(configuration): improve how 'additionalProperties' in JSON schema is translated to TS types #6650 @​trentm
• fix(configuration): remove stripMinItems and preprocessNullArrays from validation/parsing #6657 @​trentm
• fix(configuration): improve handling of enums in generated types #6659 @​trentm
• fix(configuration): improve the technique for removing '| null' on types the JSON Schema #6662 @​trentm
• fix(sampler-jaeger-remote): add missing axios dep #6656 @​trentm
• fix(exporter-prometheus): handle malformed URLs in Prometheus exporter request handler #6674 @​homanp

Commits

• 74cde1b chore: prepare next release (#6675)
• e8f439a fix: handle malformed URLs in Prometheus exporter request handler (#6674)
• ab3a2e2 feat(sdk-node, configuration): diag log handling updates for startNodeSDK(), ...
• d5b7d1e fix(deps): update dependency axios to v1.15.2 [security] (#6670)
• c163618 chore(deps): update github/codeql-action digest to e46ed2c (#6661)
• ec2bfbe chore(configuration): move config generation scripts into the configuration p...
• acc9ecd chore(configuration): cosmetic changes to generated types.ts (#6663)
• 8f008ec chore: Move inactive members to emeritus (#6649)
• 435431e fix(configuration): improve the technique for removing '| null' on types due ...
• 4222024 fix(configuration): improve handling of enums in generated types (#6659)
• Additional commits viewable in compare view

Updates @opentelemetry/auto-instrumentations-node from 0.74.0 to 0.75.0

Release notes

Sourced from @​opentelemetry/auto-instrumentations-node's releases.

auto-instrumentations-node: v0.75.0

0.75.0 (2026-05-06)

Features

• deps: update deps matching '@opentelemetry/*' (#3507) (e1ef3d1)

Dependencies

• The following workspace dependencies were updated
  • dependencies
    • @​opentelemetry/instrumentation-amqplib bumped from ^0.63.0 to ^0.64.0
    • @​opentelemetry/instrumentation-aws-lambda bumped from ^0.68.0 to ^0.69.0
    • @​opentelemetry/instrumentation-aws-sdk bumped from ^0.71.0 to ^0.72.0
    • @​opentelemetry/instrumentation-bunyan bumped from ^0.61.0 to ^0.62.0
    • @​opentelemetry/instrumentation-cassandra-driver bumped from ^0.61.0 to ^0.62.0
    • @​opentelemetry/instrumentation-connect bumped from ^0.59.0 to ^0.60.0
    • @​opentelemetry/instrumentation-cucumber bumped from ^0.32.0 to ^0.33.0
    • @​opentelemetry/instrumentation-dataloader bumped from ^0.33.0 to ^0.34.0
    • @​opentelemetry/instrumentation-dns bumped from ^0.59.0 to ^0.60.0
    • @​opentelemetry/instrumentation-express bumped from ^0.64.0 to ^0.65.0
    • @​opentelemetry/instrumentation-fs bumped from ^0.35.0 to ^0.36.0
    • @​opentelemetry/instrumentation-generic-pool bumped from ^0.59.0 to ^0.60.0
    • @​opentelemetry/instrumentation-graphql bumped from ^0.64.0 to ^0.65.0
    • @​opentelemetry/instrumentation-hapi bumped from ^0.62.0 to ^0.63.0
    • @​opentelemetry/instrumentation-ioredis bumped from ^0.64.0 to ^0.65.0
    • @​opentelemetry/instrumentation-kafkajs bumped from ^0.25.0 to ^0.26.0
    • @​opentelemetry/instrumentation-knex bumped from ^0.60.0 to ^0.61.0
    • @​opentelemetry/instrumentation-koa bumped from ^0.64.0 to ^0.65.0
    • @​opentelemetry/instrumentation-lru-memoizer bumped from ^0.60.0 to ^0.61.0
    • @​opentelemetry/instrumentation-memcached bumped from ^0.59.0 to ^0.60.0
    • @​opentelemetry/instrumentation-mongodb bumped from ^0.69.0 to ^0.70.0
    • @​opentelemetry/instrumentation-mongoose bumped from ^0.62.0 to ^0.63.0
    • @​opentelemetry/instrumentation-mysql bumped from ^0.62.0 to ^0.63.0
    • @​opentelemetry/instrumentation-mysql2 bumped from ^0.62.0 to ^0.63.0
    • @​opentelemetry/instrumentation-nestjs-core bumped from ^0.62.0 to ^0.63.0
    • @​opentelemetry/instrumentation-net bumped from ^0.60.0 to ^0.61.0
    • @​opentelemetry/instrumentation-openai bumped from ^0.14.0 to ^0.15.0
    • @​opentelemetry/instrumentation-oracledb bumped from ^0.41.0 to ^0.42.0
    • @​opentelemetry/instrumentation-pg bumped from ^0.68.0 to ^0.69.0
    • @​opentelemetry/instrumentation-pino bumped from ^0.62.0 to ^0.63.0
    • @​opentelemetry/instrumentation-redis bumped from ^0.64.0 to ^0.65.0
    • @​opentelemetry/instrumentation-restify bumped from ^0.61.0 to ^0.62.0
    • @​opentelemetry/instrumentation-router bumped from ^0.60.0 to ^0.61.0
    • @​opentelemetry/instrumentation-runtime-node bumped from ^0.29.0 to ^0.30.0
    • @​opentelemetry/instrumentation-socket.io bumped from ^0.63.0 to ^0.64.0
    • @​opentelemetry/instrumentation-tedious bumped from ^0.35.0 to ^0.36.0
    • @​opentelemetry/instrumentation-undici bumped from ^0.26.0 to ^0.27.0

... (truncated)

Changelog

Sourced from @​opentelemetry/auto-instrumentations-node's changelog.

0.75.0 (2026-05-06)

Features

• deps: update deps matching '@opentelemetry/*' (#3507) (e1ef3d1)

Dependencies

• The following workspace dependencies were updated
  • dependencies
    • @​opentelemetry/instrumentation-amqplib bumped from ^0.63.0 to ^0.64.0
    • @​opentelemetry/instrumentation-aws-lambda bumped from ^0.68.0 to ^0.69.0
    • @​opentelemetry/instrumentation-aws-sdk bumped from ^0.71.0 to ^0.72.0
    • @​opentelemetry/instrumentation-bunyan bumped from ^0.61.0 to ^0.62.0
    • @​opentelemetry/instrumentation-cassandra-driver bumped from ^0.61.0 to ^0.62.0
    • @​opentelemetry/instrumentation-connect bumped from ^0.59.0 to ^0.60.0
    • @​opentelemetry/instrumentation-cucumber bumped from ^0.32.0 to ^0.33.0
    • @​opentelemetry/instrumentation-dataloader bumped from ^0.33.0 to ^0.34.0
    • @​opentelemetry/instrumentation-dns bumped from ^0.59.0 to ^0.60.0
    • @​opentelemetry/instrumentation-express bumped from ^0.64.0 to ^0.65.0
    • @​opentelemetry/instrumentation-fs bumped from ^0.35.0 to ^0.36.0
    • @​opentelemetry/instrumentation-generic-pool bumped from ^0.59.0 to ^0.60.0
    • @​opentelemetry/instrumentation-graphql bumped from ^0.64.0 to ^0.65.0
    • @​opentelemetry/instrumentation-hapi bumped from ^0.62.0 to ^0.63.0
    • @​opentelemetry/instrumentation-ioredis bumped from ^0.64.0 to ^0.65.0
    • @​opentelemetry/instrumentation-kafkajs bumped from ^0.25.0 to ^0.26.0
    • @​opentelemetry/instrumentation-knex bumped from ^0.60.0 to ^0.61.0
    • @​opentelemetry/instrumentation-koa bumped from ^0.64.0 to ^0.65.0
    • @​opentelemetry/instrumentation-lru-memoizer bumped from ^0.60.0 to ^0.61.0
    • @​opentelemetry/instrumentation-memcached bumped from ^0.59.0 to ^0.60.0
    • @​opentelemetry/instrumentation-mongodb bumped from ^0.69.0 to ^0.70.0
    • @​opentelemetry/instrumentation-mongoose bumped from ^0.62.0 to ^0.63.0
    • @​opentelemetry/instrumentation-mysql bumped from ^0.62.0 to ^0.63.0
    • @​opentelemetry/instrumentation-mysql2 bumped from ^0.62.0 to ^0.63.0
    • @​opentelemetry/instrumentation-nestjs-core bumped from ^0.62.0 to ^0.63.0
    • @​opentelemetry/instrumentation-net bumped from ^0.60.0 to ^0.61.0
    • @​opentelemetry/instrumentation-openai bumped from ^0.14.0 to ^0.15.0
    • @​opentelemetry/instrumentation-oracledb bumped from ^0.41.0 to ^0.42.0
    • @​opentelemetry/instrumentation-pg bumped from ^0.68.0 to ^0.69.0
    • @​opentelemetry/instrumentation-pino bumped from ^0.62.0 to ^0.63.0
    • @​opentelemetry/instrumentation-redis bumped from ^0.64.0 to ^0.65.0
    • @​opentelemetry/instrumentation-restify bumped from ^0.61.0 to ^0.62.0
    • @​opentelemetry/instrumentation-router bumped from ^0.60.0 to ^0.61.0
    • @​opentelemetry/instrumentation-runtime-node bumped from ^0.29.0 to ^0.30.0
    • @​opentelemetry/instrumentation-socket.io bumped from ^0.63.0 to ^0.64.0
    • @​opentelemetry/instrumentation-tedious bumped from ^0.35.0 to ^0.36.0
    • @​opentelemetry/instrumentation-undici bumped from ^0.26.0 to ^0.27.0
    • @​opentelemetry/instrumentation-winston bumped from ^0.60.0 to ^0.61.0

... (truncated)

Commits

• b68fb6d chore: release main (#3498)
• e1ef3d1 feat(deps): update deps matching '@opentelemetry/*' (#3507)
• See full diff in compare view

Updates @opentelemetry/exporter-trace-otlp-http from 0.216.0 to 0.217.0

Release notes

Sourced from @​opentelemetry/exporter-trace-otlp-http's releases.

experimental/v0.217.0

0.217.0

🚀 Features

• feat(otlp-transformer): replace protobufjs trace serialization with custom implementation #6625 @​pichlermarc
• feat(configuration): auto-generate TypeScript types from OTel declarative config JSON schema (stable v1.0.0) using json-schema-to-typescript and ajv #6533 @​MikeGoldsmith
• feat(configuration, sdk-node): startNodeSDK() code path now uses log_level configuration to setup a DiagConsoleLogger #6668 @​trentm
  • Note that allowed values for log_level in a configuration YAML file are not the same set as for OTEL_LOG_LEVEL. Use log_level: trace to see all logs (equivalent of OTEL_LOG_LEVEL=ALL). Use log_level: fatal to effectively disable the SDK's internal diagnostic logger (equivalent of OTEL_LOG_LEVEL=NONE).
  • If log_level is not specified, a diagnostic console logger at "info" level will be setup.
  • An invalid YAML config file will now result in a noop OTel SDK.

🐛 Bug Fixes

• fix(configuration): do not validate OTEL_CONFIG_FILE value before using it for file config #6643 @​trentm
• fix(configuration): improve how 'additionalProperties' in JSON schema is translated to TS types #6650 @​trentm
• fix(configuration): remove stripMinItems and preprocessNullArrays from validation/parsing #6657 @​trentm
• fix(configuration): improve handling of enums in generated types #6659 @​trentm
• fix(configuration): improve the technique for removing '| null' on types the JSON Schema #6662 @​trentm
• fix(sampler-jaeger-remote): add missing axios dep #6656 @​trentm
• fix(exporter-prometheus): handle malformed URLs in Prometheus exporter request handler #6674 @​homanp

Commits

• 74cde1b chore: prepare next release (#6675)
• e8f439a fix: handle malformed URLs in Prometheus exporter request handler (#6674)
• ab3a2e2 feat(sdk-node, configuration): diag log handling updates for startNodeSDK(), ...
• d5b7d1e fix(deps): update dependency axios to v1.15.2 [security] (#6670)
• c163618 chore(deps): update github/codeql-action digest to e46ed2c (#6661)
• ec2bfbe chore(configuration): move config generation scripts into the configuration p...
• acc9ecd chore(configuration): cosmetic changes to generated types.ts (#6663)
• 8f008ec chore: Move inactive members to emeritus (#6649)
• 435431e fix(configuration): improve the technique for removing '| null' on types due ...
• 4222024 fix(configuration): improve handling of enums in generated types (#6659)
• Additional commits viewable in compare view

Updates jest from 30.3.0 to 30.4.0

Release notes

Sourced from jest's releases.

v30.4.0

Big release! 😀

Main feature is a rewrite of our custom runtime in preparation for stabilisation of native support of ESM. As part of that work require(esm) module is now supported on Node 24.9+ (still requires --experimental-vm-modules like before).

In addition we now support fake timers for the recently released Temporal API in Node v26.

React 19 is also supported proper...

Description has been truncated

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.