Skip to content

chore(deps): bump @opentelemetry/core and @sentry/bun#12

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/multi-bb5d496fd4
Open

chore(deps): bump @opentelemetry/core and @sentry/bun#12
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/multi-bb5d496fd4

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 17, 2026

Copy link
Copy Markdown

Bumps @opentelemetry/core to 2.8.0 and updates ancestor dependency @sentry/bun. These dependencies need to be updated together.

Updates @opentelemetry/core from 2.2.0 to 2.8.0

Release notes

Sourced from @​opentelemetry/core's releases.

v2.8.0

2.8.0

🚀 Features

  • feat(sdk-trace-base): pretty-print SpanImpl, Tracer, and BasicTracerProvider via util.inspect so they render through diag and console.log #6690 @​mcollina
  • feat(sdk-metrics): implement metric reader self-observability metrics #6449 @​anuraaga
  • feat(core): add hrTimeToSeconds #6449 @​anuraaga

🐛 Bug Fixes

  • fix(core): limit processing of incoming "baggage" header to 8192 bytes @​pichlermarc

v2.7.1

2.7.1

🐛 Bug Fixes

  • fix(core, api): defer trace state validation. Deprecate trace state implementation in api #6459 @​david-luna
    • important: this bug fix may be breaking for certain uses of TraceState
      • set now returns the same TraceState instance if key/value are invalid or makes the while trace state invalid.
      • unset now returns the same TraceState instance if key is not present.
      • best-effort parsing of invalid TraceStates has changed: when multiple keys with the same name are present, the most recent one will win.

🏠 Internal

v2.7.0

2.7.0

🚀 Features

  • feat(sdk-logs): implement log creation metrics #6433 @​anuraaga
  • feat(sdk-metrics): add the cardinalitySelector argument to PeriodicExportingMetricReaders #6460 @​starzlocker
  • feat(opentelemetry-core): add extra checks on internal merge function for safety #6587 @​maryliag

🐛 Bug Fixes

  • fix(opentelemetry-resources): do not discard OTEL_RESOURCE_ATTRIBUTES when it contains empty kv pairs

🏠 Internal

... (truncated)

Changelog

Sourced from @​opentelemetry/core's changelog.

2.8.0

🚀 Features

  • feat(sdk-trace-base): pretty-print SpanImpl, Tracer, and BasicTracerProvider via util.inspect so they render through diag and console.log #6690 @​mcollina
  • feat(sdk-metrics): implement metric reader self-observability metrics #6449 @​anuraaga
  • feat(core): add hrTimeToSeconds #6449 @​anuraaga

🐛 Bug Fixes

  • fix(core): limit processing of incoming "baggage" header to 8192 bytes @​pichlermarc

2.7.1

🐛 Bug Fixes

  • fix(core, api): defer trace state validation. Deprecate trace state implementation in api #6459 @​david-luna
    • important: this bug fix may be breaking for certain uses of TraceState
      • set now returns the same TraceState instance if key/value are invalid or makes the while trace state invalid.
      • unset now returns the same TraceState instance if key is not present.
      • best-effort parsing of invalid TraceStates has changed: when multiple keys with the same name are present, the most recent one will win.

🏠 Internal

2.7.0

🚀 Features

  • feat(sdk-logs): implement log creation metrics #6433 @​anuraaga
  • feat(sdk-metrics): add the cardinalitySelector argument to PeriodicExportingMetricReaders #6460 @​starzlocker
  • feat(opentelemetry-core): add extra checks on internal merge function for safety #6587 @​maryliag

🐛 Bug Fixes

  • fix(opentelemetry-resources): do not discard OTEL_RESOURCE_ATTRIBUTES when it contains empty kv pairs

🏠 Internal

2.6.1

🐛 Bug Fixes

... (truncated)

Commits
  • 13a035b chore: prepare next release (#6756)
  • 4b13587 Merge commit from fork
  • 71d195c chore(renovate): set minimumReleaseAge to 3 days (#6792)
  • 555fca6 Update renovate.json to use matchManagers (#6141)
  • b711a81 docs(otlp-exporter-base): add typedoc entry points so public API is indexed a...
  • da70402 fix(ci): supply-chain sec: disable caching in release-related workflow (#6790)
  • 002267b chore: complete the move to the smaller SPDX license header (#6791)
  • 056ef9c feat(sdk-metrics): implement metric reader metrics (#6449)
  • 3bd69ce fix(configuration): improve environment variable substitution to handle all t...
  • bfbda7c docs(exporter-trace-otlp-grpc): import CompressionAlgorithm from otlp-exporte...
  • Additional commits viewable in compare view

Updates @sentry/bun from 10.32.1 to 10.58.0

Release notes

Sourced from @​sentry/bun's releases.

10.58.0

Important Changes

  • feat(hono): Add support for the Deno runtime (#21450)

    @sentry/hono now supports the Deno runtime via a new @sentry/hono/deno entry point. Install @sentry/deno as a peer dependency and initialize Sentry through the sentry() middleware:

    import { Hono } from 'hono';
import { sentry } from '@sentry/hono/deno';
const app = new Hono();
app.use(
sentry(app, {
dsn: 'DSN', // or Deno.env.get('SENTRY_DSN')
tracesSampleRate: 1.0,
}),
);
Deno.serve(app.fetch);

  • feat(core): Extract objects as structured logs in consoleLoggingIntegration (#21385)

    The consoleLoggingIntegration now extracts structured log attributes when the first argument is a plain object.

    // Object keys become log attributes
console.log({ userId: 123, action: 'login' }, 'User logged in');
// → attributes: { userId: 123, action: "login" }
// Non-object first args use template + parameters (unchanged)
console.log('Hello', 'world', 123);
// → sentry.message.template: "Hello {} {}"

  • feat(react-router): Stabilize the instrumentation API (#21470)

    React Router's instrumentation API is now stable — the @experimental markers have been removed from createSentryServerInstrumentation, createSentryClientInstrumentation, and the related helpers and types. The manual server wrappers wrapServerLoader and wrapServerAction are now deprecated in favor of it. Export instrumentations = [Sentry.createSentryServerInstrumentation()] from your entry.server.tsx to instrument all loaders and actions without wrapping them individually.

Other Changes

  • feat(hono): Add HTTP connection info to server spans (#21408)
  • feat(node-core): Attach log message and fields to pino error events (#21422)
  • feat(react-router): Always build client instrumentation and deprecate useInstrumentationAPI (#21432)
  • feat(react-router): Rename client navigation roots from the route pattern (#21463)
  • fix(astro): Resolve middleware export types (#21414)

... (truncated)

Changelog

Sourced from @​sentry/bun's changelog.

10.58.0

Important Changes

  • feat(hono): Add support for the Deno runtime (#21450)

    @sentry/hono now supports the Deno runtime via a new @sentry/hono/deno entry point. Install @sentry/deno as a peer dependency and initialize Sentry through the sentry() middleware:

    import { Hono } from 'hono';
import { sentry } from '@sentry/hono/deno';
const app = new Hono();
app.use(
sentry(app, {
dsn: 'DSN', // or Deno.env.get('SENTRY_DSN')
tracesSampleRate: 1.0,
}),
);
Deno.serve(app.fetch);

  • feat(core): Extract objects as structured logs in consoleLoggingIntegration (#21385)

    The consoleLoggingIntegration now extracts structured log attributes when the first argument is a plain object.

    // Object keys become log attributes
console.log({ userId: 123, action: 'login' }, 'User logged in');
// → attributes: { userId: 123, action: "login" }
// Non-object first args use template + parameters (unchanged)
console.log('Hello', 'world', 123);
// → sentry.message.template: "Hello {} {}"

  • feat(react-router): Stabilize the instrumentation API (#21470)

    React Router's instrumentation API is now stable — the @experimental markers have been removed from createSentryServerInstrumentation, createSentryClientInstrumentation, and the related helpers and types. The manual server wrappers wrapServerLoader and wrapServerAction are now deprecated in favor of it. Export instrumentations = [Sentry.createSentryServerInstrumentation()] from your entry.server.tsx to instrument all loaders and actions without wrapping them individually.

Other Changes

  • feat(hono): Add HTTP connection info to server spans (#21408)
  • feat(node-core): Attach log message and fields to pino error events (#21422)
  • feat(react-router): Always build client instrumentation and deprecate useInstrumentationAPI (#21432)
  • feat(react-router): Rename client navigation roots from the route pattern (#21463)

... (truncated)

Commits
  • 29a6f45 release: 10.58.0
  • 7fa42c9 Merge pull request #21530 from getsentry/prepare-release/10.58.0
  • 0486221 meta(changelog): Update changelog for 10.58.0
  • 66b04b6 chore(deps): Bump nx to 22.7.5 (#21527)
  • d8dcc45 ref(node): Migrate vendored generic-pool instrumentation to Sentry APIs (#21523)
  • b35c4de test(node): Replace lru-memoizer fake unit test with integration coverage (#2...
  • 0d3f1b1 fix(nextjs): Mark redirect server actions as ok instead of internal_error...
  • 1bf2bad ref(node): Streamline dataloader instrumentation (#21475)
  • 0a6e864 test: Skip nuxt-5 E2E test (#21524)
  • 73024d4 test(astro): Add Astro 7 e2e app (#21471)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
chore(deps): bump @opentelemetry/core and @sentry/bun
be3e2d2 
Bumps [@opentelemetry/core](https://github.com/open-telemetry/opentelemetry-js) to 2.8.0 and updates ancestor dependency [@sentry/bun](https://github.com/getsentry/sentry-javascript). These dependencies need to be updated together.


Updates `@opentelemetry/core` from 2.2.0 to 2.8.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-js/releases)
- [Changelog](https://github.com/open-telemetry/opentelemetry-js/blob/main/CHANGELOG.md)
- [Commits](open-telemetry/opentelemetry-js@v2.2.0...v2.8.0)

Updates `@sentry/bun` from 10.32.1 to 10.58.0
- [Release notes](https://github.com/getsentry/sentry-javascript/releases)
- [Changelog](https://github.com/getsentry/sentry-javascript/blob/develop/CHANGELOG.md)
- [Commits](getsentry/sentry-javascript@10.32.1...10.58.0)

---
updated-dependencies:
- dependency-name: "@opentelemetry/core"
  dependency-version: 2.8.0
  dependency-type: indirect
- dependency-name: "@sentry/bun"
  dependency-version: 10.58.0
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jun 17, 2026
@greptile-apps

greptile-apps Bot commented Jun 17, 2026

Copy link
Copy Markdown

PR author is in the excluded authors list.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants