[Snyk] Upgrade @sentry/react from 7.16.0 to 8.13.0

[q1blue]

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade @sentry/react from 7.16.0 to 8.13.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

⚠️ Warning: This PR contains major version upgrade(s), and may be a breaking change.

• The recommended version is 187 versions ahead of your current version.

• The recommended version was released on 21 days ago.

Release notes

Package name: @sentry/react

• 8.13.0 - 2024-06-27
  

  Important Changes

  • feat(nestjs): Add Nest SDK This release adds a dedicated SDK for NestJS (@ sentry/nestjs)
    in alpha state. The SDK is a drop-in replacement for the Sentry Node SDK (@ sentry/node) supporting the same set of
    features. See the docs for how to use the SDK.

  Other Changes

  • deps: Bump bundler plugins to 2.20.1 (#12641)
  • deps(nextjs): Remove react peer dep and allow rc (#12670)
  • feat: Update OTEL deps (#12635)
  • feat(deps): bump @ prisma/instrumentation from 5.15.0 to 5.15.1 (#12627)
  • feat(node): Add context info for missing instrumentation (#12639)
  • fix(feedback): Improve feedback error message (#12647)

  Bundle size 📦

  Path	Size
  @ sentry/browser	22.22 KB
  @ sentry/browser (incl. Tracing)	33.31 KB
  @ sentry/browser (incl. Tracing, Replay)	69.09 KB
  @ sentry/browser (incl. Tracing, Replay) - with treeshaking flags	62.42 KB
  @ sentry/browser (incl. Tracing, Replay with Canvas)	73.15 KB
  @ sentry/browser (incl. Tracing, Replay, Feedback)	85.75 KB
  @ sentry/browser (incl. Tracing, Replay, Feedback, metrics)	87.61 KB
  @ sentry/browser (incl. metrics)	26.5 KB
  @ sentry/browser (incl. Feedback)	38.86 KB
  @ sentry/browser (incl. sendFeedback)	26.84 KB
  @ sentry/browser (incl. FeedbackAsync)	31.45 KB
  @ sentry/react	24.97 KB
  @ sentry/react (incl. Tracing)	36.36 KB
  @ sentry/vue	26.33 KB
  @ sentry/vue (incl. Tracing)	35.17 KB
  @ sentry/svelte	22.36 KB
  CDN Bundle	23.42 KB
  CDN Bundle (incl. Tracing)	35.05 KB
  CDN Bundle (incl. Tracing, Replay)	69.18 KB
  CDN Bundle (incl. Tracing, Replay, Feedback)	74.38 KB
  CDN Bundle - uncompressed	68.8 KB
  CDN Bundle (incl. Tracing) - uncompressed	103.66 KB
  CDN Bundle (incl. Tracing, Replay) - uncompressed	214.13 KB
  CDN Bundle (incl. Tracing, Replay, Feedback) - uncompressed	226.84 KB
  @ sentry/nextjs (client)	36.24 KB
  @ sentry/sveltekit (client)	33.95 KB
  @ sentry/node	130.61 KB
  @ sentry/node - without tracing	91.63 KB
  @ sentry/aws-serverless	116.8 KB

• 8.12.0 - 2024-06-25
  

  Important Changes

  • feat(solid): Remove need to pass router hooks to solid integration (breaking)

  This release introduces breaking changes to the @ sentry/solid package (which is currently out in alpha).

  We've made it easier to get started with the solid router integration by removing the need to pass use* hooks
  explicitly to solidRouterBrowserTracingIntegration. Import solidRouterBrowserTracingIntegration from
  @ sentry/solid/solidrouter and add it to Sentry.init

  import * as Sentry from '@ sentry/solid';
  import { solidRouterBrowserTracingIntegration, withSentryRouterRouting } from '@ sentry/solid/solidrouter';
  import { Router } from '@ solidjs/router';

  Sentry.init({
  dsn: 'PUBLIC_DSN',
  integrations: [solidRouterBrowserTracingIntegration()],
  tracesSampleRate: 1.0, // Capture 100% of the transactions
  });

  const SentryRouter = withSentryRouterRouting(Router);

  • feat(core): Return client from init method (#12585)

  Sentry.init() now returns a client directly, so you don't need to explicitly call getClient() anymore:

  const client = Sentry.init();

  • feat(nextjs): Add deleteSourcemapsAfterUpload option (#12457)

  This adds an easy way to delete sourcemaps immediately after uploading them:

  module.exports = withSentryConfig(nextConfig, {
    sourcemaps: {
      deleteSourcemapsAfterUpload: true,
    },
  });

  • feat(node): Allow to configure maxSpanWaitDuration (#12610)

  Adds configuration option for the max. duration in seconds that the SDK will wait for parent spans to be finished before
  discarding a span. The SDK will automatically clean up spans that have no finished parent after this duration. This is
  necessary to prevent memory leaks in case of parent spans that are never finished or otherwise dropped/missing. However,
  if you have very long-running spans in your application, a shorter duration might cause spans to be discarded too early.
  In this case, you can increase this duration to a value that fits your expected data.

  Other Changes

  • feat(feedback): Extra check for iPad in screenshot support (#12593)
  • fix(bundle): Ensure CDN bundles do not overwrite window.Sentry (#12580)
  • fix(feedback): Inject preact from feedbackModal into feedbackScreenshot integration (#12535)
  • fix(node): Re-throw errors from koa middleware (#12609)
  • fix(remix): Mark isRemixV2 as optional in exposed types. (#12614)
  • ref(node): Add error message to NodeFetch log (#12612)

  Work in this release was contributed by @ n4bb12. Thank you for your contribution!

  Bundle size 📦

  Path	Size
  @ sentry/browser	22.22 KB
  @ sentry/browser (incl. Tracing)	33.31 KB
  @ sentry/browser (incl. Tracing, Replay)	69.09 KB
  @ sentry/browser (incl. Tracing, Replay) - with treeshaking flags	62.42 KB
  @ sentry/browser (incl. Tracing, Replay with Canvas)	73.15 KB
  @ sentry/browser (incl. Tracing, Replay, Feedback)	85.76 KB
  @ sentry/browser (incl. Tracing, Replay, Feedback, metrics)	87.62 KB
  @ sentry/browser (incl. metrics)	26.5 KB
  @ sentry/browser (incl. Feedback)	38.87 KB
  @ sentry/browser (incl. sendFeedback)	26.85 KB
  @ sentry/browser (incl. FeedbackAsync)	31.45 KB
  @ sentry/react	24.97 KB
  @ sentry/react (incl. Tracing)	36.36 KB
  @ sentry/vue	26.33 KB
  @ sentry/vue (incl. Tracing)	35.17 KB
  @ sentry/svelte	22.36 KB
  CDN Bundle	23.42 KB
  CDN Bundle (incl. Tracing)	35.05 KB
  CDN Bundle (incl. Tracing, Replay)	69.18 KB
  CDN Bundle (incl. Tracing, Replay, Feedback)	74.38 KB
  CDN Bundle - uncompressed	68.8 KB
  CDN Bundle (incl. Tracing) - uncompressed	103.66 KB
  CDN Bundle (incl. Tracing, Replay) - uncompressed	214.13 KB
  CDN Bundle (incl. Tracing, Replay, Feedback) - uncompressed	226.79 KB
  @ sentry/nextjs (client)	36.24 KB
  @ sentry/sveltekit (client)	33.95 KB
  @ sentry/node	113.27 KB
  @ sentry/node - without tracing	90.65 KB
  @ sentry/aws-serverless	99.74 KB

• 8.12.0-beta.0 - 2024-06-24
  

  This pre-release includes an rrweb version bump that
  includes quite a few upstream changes. We will test this on Sentry before a release.

  Bundle size 📦

  Path	Size
  @ sentry/browser	22.23 KB
  @ sentry/browser (incl. Tracing)	33.32 KB
  @ sentry/browser (incl. Tracing, Replay)	69.4 KB
  @ sentry/browser (incl. Tracing, Replay) - with treeshaking flags	62.7 KB
  @ sentry/browser (incl. Tracing, Replay with Canvas)	73.8 KB
  @ sentry/browser (incl. Tracing, Replay, Feedback)	85.67 KB
  @ sentry/browser (incl. Tracing, Replay, Feedback, metrics)	87.55 KB
  @ sentry/browser (incl. metrics)	26.51 KB
  @ sentry/browser (incl. Feedback)	38.46 KB
  @ sentry/browser (incl. sendFeedback)	26.86 KB
  @ sentry/browser (incl. FeedbackAsync)	31.46 KB
  @ sentry/react	24.97 KB
  @ sentry/react (incl. Tracing)	36.37 KB
  @ sentry/vue	26.33 KB
  @ sentry/vue (incl. Tracing)	35.17 KB
  @ sentry/svelte	22.36 KB
  CDN Bundle	23.43 KB
  CDN Bundle (incl. Tracing)	35.06 KB
  CDN Bundle (incl. Tracing, Replay)	69.48 KB
  CDN Bundle (incl. Tracing, Replay, Feedback)	74.74 KB
  CDN Bundle - uncompressed	68.81 KB
  CDN Bundle (incl. Tracing) - uncompressed	103.66 KB
  CDN Bundle (incl. Tracing, Replay) - uncompressed	215.52 KB
  CDN Bundle (incl. Tracing, Replay, Feedback) - uncompressed	228.18 KB
  @ sentry/nextjs (client)	36.24 KB
  @ sentry/sveltekit (client)	33.96 KB
  @ sentry/node	113.27 KB
  @ sentry/node - without tracing	90.67 KB
  @ sentry/aws-serverless	99.76 KB

• 8.11.0 - 2024-06-21
  

  Important Changes

  • feat(core): Add parentSpan option to startSpan* APIs (#12567)

  We've made it easier to create a span as a child of a specific span via the startSpan* APIs. This should allow you to
  explicitly manage the parent-child relationship of your spans better.

  Sentry.startSpan({ name: 'root' }, parent => {
  const span = Sentry.startInactiveSpan({ name: 'xxx', parentSpan: parent });

  Sentry.startSpan({ name: 'xxx', parentSpan: parent }, () => {});

  Sentry.startSpanManual({ name: 'xxx', parentSpan: parent }, () => {});
  });

  Other Changes

  • feat(node): Detect release from more providers (#12529)
  • fix(profiling-node): Use correct getGlobalScope import (#12564)
  • fix(profiling-node) sample timestamps need to be in seconds (#12563)
  • ref: Align @ sentry/node exports from framework SDKs. (#12589)

  Bundle size 📦

  Path	Size
  @ sentry/browser	22.22 KB
  @ sentry/browser (incl. Tracing)	33.31 KB
  @ sentry/browser (incl. Tracing, Replay)	69.09 KB
  @ sentry/browser (incl. Tracing, Replay) - with treeshaking flags	62.41 KB
  @ sentry/browser (incl. Tracing, Replay with Canvas)	73.14 KB
  @ sentry/browser (incl. Tracing, Replay, Feedback)	85.31 KB
  @ sentry/browser (incl. Tracing, Replay, Feedback, metrics)	87.17 KB
  @ sentry/browser (incl. metrics)	26.5 KB
  @ sentry/browser (incl. Feedback)	38.42 KB
  @ sentry/browser (incl. sendFeedback)	26.85 KB
  @ sentry/browser (incl. FeedbackAsync)	31.42 KB
  @ sentry/react	24.96 KB
  @ sentry/react (incl. Tracing)	36.35 KB
  @ sentry/vue	26.32 KB
  @ sentry/vue (incl. Tracing)	35.16 KB
  @ sentry/svelte	22.35 KB
  CDN Bundle	23.41 KB
  CDN Bundle (incl. Tracing)	35.04 KB
  CDN Bundle (incl. Tracing, Replay)	69.17 KB
  CDN Bundle (incl. Tracing, Replay, Feedback)	74.34 KB
  CDN Bundle - uncompressed	68.76 KB
  CDN Bundle (incl. Tracing) - uncompressed	103.61 KB
  CDN Bundle (incl. Tracing, Replay) - uncompressed	214.08 KB
  CDN Bundle (incl. Tracing, Replay, Feedback) - uncompressed	226.67 KB
  @ sentry/nextjs (client)	36.23 KB
  @ sentry/sveltekit (client)	33.95 KB
  @ sentry/node	112.99 KB
  @ sentry/node - without tracing	90.4 KB
  @ sentry/aws-serverless	99.48 KB

• 8.10.0 - 2024-06-19
• 8.9.2 - 2024-06-12
• 8.9.1 - 2024-06-11
• 8.9.0 - 2024-06-11
• 8.8.0 - 2024-06-07
• 8.7.0 - 2024-05-29
• 8.6.0 - 2024-05-29
• 8.5.0 - 2024-05-27
• 8.4.0 - 2024-05-23
• 8.3.0 - 2024-05-22
• 8.2.1 - 2024-05-16
• 8.2.0 - 2024-05-16
• 8.1.0 - 2024-05-16
• 8.0.0 - 2024-05-13
• 8.0.0-rc.3 - 2024-05-10
• 8.0.0-rc.2 - 2024-05-08
• 8.0.0-rc.1 - 2024-05-07
• 8.0.0-rc.0 - 2024-05-06
• 8.0.0-beta.6 - 2024-05-03
• 8.0.0-beta.5 - 2024-04-30
• 8.0.0-beta.4 - 2024-04-24
• 8.0.0-beta.3 - 2024-04-19
• 8.0.0-beta.2 - 2024-04-17
• 8.0.0-beta.1 - 2024-04-15
• 8.0.0-alpha.9 - 2024-04-08
• 8.0.0-alpha.8 - 2024-04-08
• 8.0.0-alpha.7 - 2024-03-27
• 8.0.0-alpha.5 - 2024-03-22
• 8.0.0-alpha.4 - 2024-03-14
• 8.0.0-alpha.3 - 2024-03-14
• 8.0.0-alpha.2 - 2024-03-05
• 7.118.0 - 2024-06-21
  
  • fix(v7/bundle): Ensure CDN bundles do not overwrite window.Sentry (#12579)

  Bundle size 📦

  Path	Size
  @ sentry/browser (incl. Tracing, Replay, Feedback) - Webpack (gzipped)	80.83 KB
  @ sentry/browser (incl. Tracing, Replay) - Webpack (gzipped)	71.77 KB
  @ sentry/browser (incl. Tracing, Replay with Canvas) - Webpack (gzipped)	76.02 KB
  @ sentry/browser (incl. Tracing, Replay) - Webpack with treeshaking flags (gzipped)	65.38 KB
  @ sentry/browser (incl. Tracing) - Webpack (gzipped)	35.64 KB
  @ sentry/browser (incl. browserTracingIntegration) - Webpack (gzipped)	35.53 KB
  @ sentry/browser (incl. Feedback) - Webpack (gzipped)	31.6 KB
  @ sentry/browser (incl. sendFeedback) - Webpack (gzipped)	31.61 KB
  @ sentry/browser - Webpack (gzipped)	22.78 KB
  @ sentry/browser (incl. Tracing, Replay, Feedback) - ES6 CDN Bundle (gzipped)	79.05 KB
  @ sentry/browser (incl. Tracing, Replay) - ES6 CDN Bundle (gzipped)	70.38 KB
  @ sentry/browser (incl. Tracing) - ES6 CDN Bundle (gzipped)	36.06 KB
  @ sentry/browser - ES6 CDN Bundle (gzipped)	25.29 KB
  @ sentry/browser (incl. Tracing, Replay) - ES6 CDN Bundle (minified & uncompressed)	221.51 KB
  @ sentry/browser (incl. Tracing) - ES6 CDN Bundle (minified & uncompressed)	109.1 KB
  @ sentry/browser - ES6 CDN Bundle (minified & uncompressed)	75.83 KB
  @ sentry/browser (incl. Tracing) - ES5 CDN Bundle (gzipped)	39.34 KB
  @ sentry/react (incl. Tracing, Replay) - Webpack (gzipped)	72.27 KB
  @ sentry/react - Webpack (gzipped)	22.81 KB
  @ sentry/nextjs Client (incl. Tracing, Replay) - Webpack (gzipped)	90.03 KB
  @ sentry/nextjs Client - Webpack (gzipped)	54.15 KB
  @ sentry-internal/feedback - Webpack (gzipped)	17.34 KB

• 7.117.0 - 2024-06-10
• 7.116.0 - 2024-05-17
• 7.115.0 - 2024-05-16
• 7.114.0 - 2024-05-08
• 7.113.0 - 2024-05-02
• 7.112.2 - 2024-04-24
• 7.112.1 - 2024-04-23
• 7.112.0 - 2024-04-23
• 7.111.0 - 2024-04-18
• 7.110.1 - 2024-04-15
• 7.110.0 - 2024-04-11
• 7.109.0 - 2024-03-28
• 7.108.0 - 2024-03-22
• 7.107.0 - 2024-03-14
• 7.106.1 - 2024-03-11
• 7.106.0 - 2024-03-08
• 7.105.0 - 2024-03-04
• 7.104.0 - 2024-02-29
• 7.103.0 - 2024-02-27
• 7.102.1 - 2024-02-22
• 7.102.0 - 2024-02-20
• 7.101.1 - 2024-02-15
• 7.101.0 - 2024-02-13
• 7.100.1 - 2024-02-07
• 7.100.0 - 2024-02-06
• 7.99.0 - 2024-01-30
• 7.98.0 - 2024-01-25
• 7.97.0 - 2024-01-25
• 7.95.0 - 2024-01-23
• 7.94.1 - 2024-01-19
• 7.93.0 - 2024-01-10
• 7.92.0 - 2024-01-04
• 7.91.0 - 2023-12-22
• 7.90.0 - 2023-12-20
• 7.89.0 - 2023-12-19
• 7.88.0 - 2023-12-14
• 7.87.0 - 2023-12-13
• 7.86.0 - 2023-12-07
• 7.85.0 - 2023-12-04
• 7.84.0 - 2023-11-30
• 7.83.0 - 2023-11-28
• 7.82.0 - 2023-11-27
• 7.81.1 - 2023-11-21
• 7.81.0 - 2023-11-20
• 7.80.2-alpha.1 - 2023-11-15
• 7.80.2-alpha.0 - 2023-11-14
• 7.80.1 - 2023-11-14
• 7.80.0 - 2023-11-09
• 7.79.0 - 2023-11-08
• 7.78.0 - 2023-11-08
• 7.77.0 - 2023-10-31
• 7.76.0 - 2023-10-27
• 7.75.1 - 2023-10-25
• 7.75.0 - 2023-10-24
• 7.74.2-alpha.1 - 2023-10-23
• 7.74.2-alpha.0 - 2023-10-19
• 7.74.1 - 2023-10-17
• 7.74.0 - 2023-10-13
• 7.73.0 - 2023-10-02
• 7.72.0 - 2023-09-26
• 7.71.0 - 2023-09-25
• 7.70.0 - 2023-09-20
• 7.70.0-beta.1 - 2023-09-15
• 7.70.0-beta.0 - 2023-09-14
• 7.69.0 - 2023-09-13
• 7.68.0 - 2023-09-06
• 7.67.0 - 2023-09-05
• 7.67.0-beta.0 - 2023-08-31
• 7.66.0 - 2023-08-30
• 7.66.0-alpha.0 - 2023-08-29
• 7.65.0 - 2023-08-28
• 7.65.0-alpha.0 - 2023-08-16
• 7.64.0 - 2023-08-14
• 7.64.0-alpha.0 - 2023-08-11
• 7.63.0 - 2023-08-10
• 7.62.0 - 2023-08-09
• 7.61.1 - 2023-08-04
• 7.61.0 - 2023-07-31
• 7.60.1 - 2023-07-26
• 7.60.0 - 2023-07-21
• 7.59.3 - 2023-07-19
• 7.59.2 - 2023-07-18
• 7.59.1 - 2023-07-18
• 7.59.0-beta.1 - 2023-07-17
• 7.59.0-beta.0 - 2023-07-13
• 7.58.1 - 2023-07-13
• 7.58.0 - 2023-07-12
• 7.57.0 - 2023-06-28
• 7.57.0-beta.0 - 2023-06-21
• 7.56.0 - 2023-06-19
• 7.55.2 - 2023-06-14
• 7.55.1 - 2023-06-14
• 7.55.0 - 2023-06-13
• 7.54.0 - 2023-06-01
• 7.53.1 - 2023-05-24
• 7.53.0 - 2023-05-23
• 7.52.1 - 2023-05-15
• 7.52.0 - 2023-05-15
• 7.51.2 - 2023-05-08
• 7.51.1 - 2023-05-08
• 7.51.0 - 2023-05-04
• 7.50.0 - 2023-04-27
• 7.49.0 - 2023-04-20
• 7.48.0 - 2023-04-14
• 7.47.0 - 2023-04-05
• 7.46.0 - 2023-03-30
• 7.45.0 - 2023-03-24
• 7.44.2 - 2023-03-21
• 7.44.1 - 2023-03-20
• 7.44.0 - 2023-03-20
• 7.43.0 - 2023-03-13
• 7.42.0 - 2023-03-09
• 7.41.0 - 2023-03-06
• 7.40.0 - 2023-03-01
• 7.39.0 - 2023-02-27
• 7.38.0 - 2023-02-17
• 7.37.2 - 2023-02-13
• 7.37.1 - 2023-02-10
• 7.37.0 - 2023-02-09
• 7.36.0 - 2023-02-02
• 7.35.0 - 2023-02-01
• 7.34.0 - 2023-01-26
• 7.34.0-beta.0 - 2023-01-25
• 7.33.0 - 2023-01-24
• 7.32.1 - 2023-01-23
• 7.32.0 - 2023-01-23
• 7.31.1 - 2023-01-17
• 7.31.0 - 2023-01-16
• 7.30.0 - 2023-01-10
• 7.29.0 - 2023-01-04
• 7.28.1 - 2022-12-22
• 7.28.0 - 2022-12-20
• 7.27.0 - 2022-12-16
• 7.26.0 - 2022-12-13
• 7.25.0 - 2022-12-12
• 7.24.2 - 2022-12-07
• 7.24.1 - 2022-12-07
• 7.24.0 - 2022-12-07
• 7.23.0 - 2022-12-01
• 7.22.0 - 2022-11-29
• 7.21.1 - 2022-11-23
• 7.21.0 - 2022-11-22
• 7.20.1 - 2022-11-21
• 7.20.0 - 2022-11-17
• 7.19.0 - 2022-11-10
• 7.18.0 - 2022-11-08
• 7.17.4 - 2022-11-03
• 7.17.3 - 2022-10-31
• 7.17.2 - 2022-10-28
• 7.17.1 - 2022-10-27
• 7.17.0 - 2022-10-27
• 7.16.0 - 2022-10-19

from @sentry/react GitHub release notes

---

Important

• Warning: This PR contains a major version upgrade, and may be a breaking change.
• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[changeset-bot]

⚠️ No Changeset found

Latest commit: b47892b

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/@babel/compat-data@7.16.0	None	0	49.5 kB	nicolo-ribaudo
npm/@babel/core@7.16.0	environment, filesystem, unsafe	0	176 kB	nicolo-ribaudo
npm/@babel/generator@7.16.0	None	0	118 kB	nicolo-ribaudo
npm/@babel/helper-annotate-as-pure@7.16.0	None	0	2.68 kB	nicolo-ribaudo
npm/@babel/helper-builder-binary-assignment-operator-visitor@7.16.0	None	0	3.39 kB	nicolo-ribaudo
npm/@babel/helper-compilation-targets@7.16.3	None	0	16.8 kB	nicolo-ribaudo
npm/@babel/helper-create-class-features-plugin@7.16.0	None	0	52 kB	nicolo-ribaudo
npm/@babel/helper-create-regexp-features-plugin@7.16.0	None	0	7.54 kB	nicolo-ribaudo
npm/@babel/helper-define-polyfill-provider@0.2.4	None	0	202 kB	nicolo-ribaudo
npm/@babel/helper-explode-assignable-expression@7.16.0	None	0	4.32 kB	nicolo-ribaudo
npm/@babel/helper-function-name@7.16.0	None	0	6.47 kB	nicolo-ribaudo
npm/@babel/helper-get-function-arity@7.16.0	None	0	2.54 kB	nicolo-ribaudo
npm/@babel/helper-hoist-variables@7.16.0	None	0	3.45 kB	nicolo-ribaudo
npm/@babel/helper-member-expression-to-functions@7.16.0	None	0	49.6 kB	nicolo-ribaudo
npm/@babel/helper-module-imports@7.16.0	None	0	16.3 kB	nicolo-ribaudo
npm/@babel/helper-module-transforms@7.16.0	None	0	39.8 kB	nicolo-ribaudo
npm/@babel/helper-optimise-call-expression@7.16.0	None	0	3.29 kB	nicolo-ribaudo
npm/@babel/helper-plugin-utils@7.14.5	None	0	4.42 kB	nicolo-ribaudo
npm/@babel/helper-remap-async-to-generator@7.16.0	None	0	4.25 kB	nicolo-ribaudo
npm/@babel/helper-replace-supers@7.16.0	None	0	9.86 kB	nicolo-ribaudo
npm/@babel/helper-simple-access@7.16.0	None	0	5.01 kB	nicolo-ribaudo
npm/@babel/helper-skip-transparent-expression-wrappers@7.16.0	None	0	3.24 kB	nicolo-ribaudo
npm/@babel/helper-split-export-declaration@7.16.0	None	0	4.33 kB	nicolo-ribaudo
npm/@babel/helper-validator-identifier@7.15.7	None	0	19 kB	nicolo-ribaudo
npm/@babel/helper-validator-option@7.14.5	None	0	4.53 kB	nicolo-ribaudo
npm/@babel/helper-wrap-function@7.16.0	None	0	5.3 kB	nicolo-ribaudo
npm/@babel/helpers@7.16.3	None	0	88.8 kB	nicolo-ribaudo
npm/@babel/highlight@7.16.0	None	0	4.87 kB	nicolo-ribaudo
npm/@babel/parser@7.16.3	None	0	1.65 MB	nicolo-ribaudo
npm/@babel/plugin-bugfix-safari-id-destructuring-collision-in-function-expression@7.16.2	None	0	7.66 kB	nicolo-ribaudo
npm/@babel/plugin-bugfix-v8-spread-parameters-in-optional-chaining@7.16.0	None	0	9.87 kB	nicolo-ribaudo
npm/@babel/plugin-proposal-async-generator-functions@7.16.0	None	0	7.45 kB	nicolo-ribaudo
npm/@babel/plugin-proposal-class-properties@7.16.0	None	0	3.32 kB	nicolo-ribaudo
npm/@babel/plugin-proposal-class-static-block@7.16.0	None	0	4.3 kB	nicolo-ribaudo
npm/@babel/plugin-proposal-dynamic-import@7.16.0	None	0	3.65 kB	nicolo-ribaudo
npm/@babel/plugin-proposal-export-namespace-from@7.16.0	None	0	4.22 kB	nicolo-ribaudo
npm/@babel/plugin-proposal-json-strings@7.16.0	None	0	3.42 kB	nicolo-ribaudo
npm/@babel/plugin-proposal-logical-assignment-operators@7.16.0	None	0	4.52 kB	nicolo-ribaudo
npm/@babel/plugin-proposal-nullish-coalescing-operator@7.16.0	None	0	4.38 kB	nicolo-ribaudo
npm/@babel/plugin-proposal-numeric-separator@7.16.0	None	0	3.28 kB	nicolo-ribaudo
npm/@babel/plugin-proposal-object-rest-spread@7.16.0	None	0	21.2 kB	nicolo-ribaudo
npm/@babel/plugin-proposal-optional-catch-binding@7.16.0	None	0	3.21 kB	nicolo-ribaudo
npm/@babel/plugin-proposal-optional-chaining@7.16.0	None	0	30.5 kB	nicolo-ribaudo
npm/@babel/plugin-proposal-private-methods@7.16.0	None	0	3.15 kB	nicolo-ribaudo
npm/@babel/plugin-proposal-private-property-in-object@7.16.0	None	0	7.17 kB	nicolo-ribaudo
npm/@babel/plugin-proposal-unicode-property-regex@7.16.0	None	0	3.46 kB	nicolo-ribaudo
npm/@babel/plugin-transform-arrow-functions@7.16.0	None	0	3.16 kB	nicolo-ribaudo
npm/@babel/plugin-transform-async-to-generator@7.16.0	None	0	4.02 kB	nicolo-ribaudo
npm/@babel/plugin-transform-block-scoped-functions@7.16.0	None	0	3.71 kB	nicolo-ribaudo
npm/@babel/plugin-transform-block-scoping@7.16.0	None	0	27.2 kB	nicolo-ribaudo
npm/@babel/plugin-transform-classes@7.16.0	None	0	26.1 kB	nicolo-ribaudo
npm/@babel/plugin-transform-computed-properties@7.16.0	None	0	7.69 kB	nicolo-ribaudo
npm/@babel/plugin-transform-destructuring@7.16.0	None	0	20.8 kB	nicolo-ribaudo
npm/@babel/plugin-transform-dotall-regex@7.16.0	None	0	3.11 kB	nicolo-ribaudo
npm/@babel/plugin-transform-duplicate-keys@7.16.0	None	0	4.24 kB	nicolo-ribaudo
npm/@babel/plugin-transform-exponentiation-operator@7.16.0	None	0	3.31 kB	nicolo-ribaudo
npm/@babel/plugin-transform-for-of@7.16.0	None	0	14.7 kB	nicolo-ribaudo
npm/@babel/plugin-transform-function-name@7.16.0	None	0	3.39 kB	nicolo-ribaudo
npm/@babel/plugin-transform-literals@7.16.0	None	0	3.02 kB	nicolo-ribaudo
npm/@babel/plugin-transform-member-expression-literals@7.16.0	None	0	3.26 kB	nicolo-ribaudo
npm/@babel/plugin-transform-modules-amd@7.16.0	None	0	7.87 kB	nicolo-ribaudo
npm/@babel/plugin-transform-modules-commonjs@7.16.0	None	0	9.82 kB	nicolo-ribaudo
npm/@babel/plugin-transform-modules-systemjs@7.16.0	None	0	20.7 kB	nicolo-ribaudo
npm/@babel/plugin-transform-modules-umd@7.16.0	None	0	9.37 kB	nicolo-ribaudo
npm/@babel/plugin-transform-named-capturing-groups-regex@7.16.0	None	0	3.25 kB	nicolo-ribaudo
npm/@babel/plugin-transform-new-target@7.16.0	None	0	4.42 kB	nicolo-ribaudo
npm/@babel/plugin-transform-object-super@7.16.0	None	0	3.65 kB	nicolo-ribaudo
npm/@babel/plugin-transform-parameters@7.16.3	None	0	17.9 kB	nicolo-ribaudo
npm/@babel/plugin-transform-property-literals@7.16.0	None	0	3.13 kB	nicolo-ribaudo
npm/@babel/plugin-transform-regenerator@7.16.0	None	0	2.58 kB	nicolo-ribaudo
npm/@babel/plugin-transform-reserved-words@7.16.0	None	0	2.94 kB	nicolo-ribaudo
npm/@babel/plugin-transform-runtime@7.16.0	unsafe	0	13.4 kB	nicolo-ribaudo
npm/@babel/plugin-transform-shorthand-properties@7.16.0	None	0	3.94 kB	nicolo-ribaudo
npm/@babel/plugin-transform-spread@7.16.0	None	0	7.61 kB	nicolo-ribaudo
npm/@babel/plugin-transform-sticky-regex@7.16.0	None	0	3.08 kB	nicolo-ribaudo
npm/@babel/plugin-transform-template-literals@7.16.0	None	0	6.14 kB	nicolo-ribaudo
npm/@babel/plugin-transform-typeof-symbol@7.16.0	None	0	4.89 kB	nicolo-ribaudo
npm/@babel/plugin-transform-unicode-escapes@7.16.0	None	0	5.99 kB	nicolo-ribaudo
npm/@babel/plugin-transform-unicode-regex@7.16.0	None	0	2.94 kB	nicolo-ribaudo
npm/@babel/preset-env@7.16.0	environment	0	49.4 kB	nicolo-ribaudo
npm/@babel/runtime@7.16.3	None	0	149 kB	nicolo-ribaudo
npm/@babel/template@7.16.0	None	0	21.4 kB	nicolo-ribaudo
npm/@babel/traverse@7.16.3	None	0	152 kB	nicolo-ribaudo
npm/@babel/types@7.16.0	environment	0	1.03 MB	nicolo-ribaudo
npm/@csstools/convert-colors@1.4.0	None	0	63.2 kB	jonathantneal
npm/@gar/promisify@1.1.2	None	0	3.1 kB	gar
npm/@npmcli/fs@1.0.0	filesystem	0	24.2 kB	nlf
npm/@npmcli/move-file@1.1.2	filesystem	0	7.89 kB	nlf
npm/@rails/actioncable@6.1.4	None	0	40.3 kB	rafaelfranca
npm/@rails/activestorage@6.1.4	None	0	63.5 kB	rafaelfranca
npm/@rails/ujs@6.1.4	None	0	40.4 kB	rafaelfranca
npm/@rails/webpacker@5.4.3	environment, filesystem, network	0	61.3 kB	dhh
npm/@types/json-schema@7.0.9	None	0	32.2 kB	types
npm/@types/minimatch@3.0.5	None	0	8.2 kB	types
npm/@types/node@16.11.7	None	0	1.65 MB	types
npm/@types/parse-json@4.0.0	None	0	2.74 kB	types
npm/@types/q@1.5.5	None	0	32.2 kB	types
npm/@webassemblyjs/ast@1.9.0	None	0	180 kB	xtuc
npm/@webassemblyjs/floating-point-hex-parser@1.9.0	None	0	6.37 kB	xtuc
npm/@webassemblyjs/helper-api-error@1.9.0	None	0	6.1 kB	xtuc
npm/@webassemblyjs/helper-buffer@1.9.0	None	0	8.7 kB	xtuc
npm/@webassemblyjs/helper-code-frame@1.9.0	None	0	4.28 kB	xtuc
npm/@webassemblyjs/helper-fsm@1.9.0	None	0	9.07 kB	xtuc
npm/@webassemblyjs/helper-module-context@1.9.0	None	0	29.8 kB	xtuc
npm/@webassemblyjs/helper-wasm-bytecode@1.9.0	None	0	24.2 kB	xtuc
npm/@webassemblyjs/helper-wasm-section@1.9.0	None	0	19 kB	xtuc
npm/@webassemblyjs/ieee754@1.9.0	None	0	5.19 kB	xtuc
npm/@webassemblyjs/leb128@1.9.0	None	0	46.1 kB	xtuc
npm/@webassemblyjs/utf8@1.9.0	None	0	11.2 kB	xtuc
npm/@webassemblyjs/wasm-edit@1.9.0	None	0	29.4 kB	xtuc
npm/@webassemblyjs/wasm-gen@1.9.0	None	0	23.9 kB	xtuc
npm/@webassemblyjs/wasm-opt@1.9.0	None	0	9.34 kB	xtuc
npm/@webassemblyjs/wasm-parser@1.9.0	None	0	122 kB	xtuc
npm/@webassemblyjs/wast-parser@1.9.0	None	0	137 kB	xtuc
npm/@webassemblyjs/wast-printer@1.9.0	None	0	37.3 kB	xtuc
npm/@xtuc/ieee754@1.2.0	None	0	8.57 kB	xtuc
npm/@xtuc/long@4.2.2	None	0	190 kB	xtuc
npm/accepts@1.3.7	None	0	16.6 kB	dougwilson
npm/acorn@6.4.2	None	0	1.19 MB	marijn
npm/ajv-errors@1.0.1	None	0	41.7 kB	esp
npm/ajv-keywords@3.5.2	None	0	72.9 kB	esp
npm/ajv@6.12.6	eval	0	929 kB	esp
npm/alphanum-sort@1.0.2	None	0	6.4 kB	trysound
npm/ansi-colors@3.2.4	environment	0	21.2 kB	jonschlinkert
npm/ansi-html-community@0.0.8	None	0	20.1 kB	mahdyar
npm/ansi-regex@4.1.0	None	0	5.14 kB	sindresorhus
npm/anymatch@3.1.2	None	0	9.54 kB	paulmillr
npm/arr-diff@4.0.0	None	0	7.9 kB	jonschlinkert
npm/arr-flatten@1.1.0	None	0	6.88 kB	jonschlinkert
npm/arr-union@3.1.0	None	0	6.66 kB	jonschlinkert
npm/array-flatten@1.1.1	None	0	4.42 kB	blakeembrey
npm/array-union@1.0.2	None	0	2.47 kB	sindresorhus
npm/array-uniq@1.0.3	None	0	3.57 kB	sindresorhus
npm/array-unique@0.3.2	None	0	7.16 kB	jonschlinkert
npm/asn1.js@5.4.1	None	0	49.8 kB	indutny
npm/assert@1.5.0	None	0	37.5 kB	goto-bus-stop
npm/assign-symbols@1.0.0	None	0	5.85 kB	phated
npm/async-limiter@1.0.1	None	0	6.9 kB	strml
npm/async@2.6.3	None	0	541 kB	aearly
npm/atob@2.1.2	None	0	36.2 kB	coolaj86
npm/autoprefixer@9.8.8	environment	0	289 kB	ai
npm/babel-loader@8.2.3	filesystem	0	41.7 kB	nicolo-ribaudo
npm/babel-plugin-dynamic-import-node@2.3.3	None	0	12.4 kB	ljharb
npm/babel-plugin-polyfill-corejs2@0.2.3	None	0	81.2 kB	nicolo-ribaudo
npm/babel-plugin-polyfill-corejs3@0.3.0	None	0	152 kB	nicolo-ribaudo
npm/babel-plugin-polyfill-regenerator@0.2.3	None	0	6.81 kB	nicolo-ribaudo
npm/base@0.11.2	None	0	32.7 kB	jonschlinkert
npm/batch@0.6.1	None	0	7.29 kB	dougwilson
npm/big.js@5.2.2	None	0	63.9 kB	mikemcl
npm/binary-extensions@2.2.0	None	0	5.36 kB	sindresorhus
npm/bn.js@4.12.0	None	0	95.7 kB	fanatid
npm/body-parser@1.19.0	network	0	56.4 kB	dougwilson
npm/bonjour@3.5.0	network	0	31.5 kB	watson
npm/boolbase@1.0.0	None	0	1.33 kB	feedic
npm/braces@2.3.2	None	0	59.7 kB	jonschlinkert
npm/brorand@1.1.0	None	0	3.52 kB	indutny
npm/browserify-aes@1.2.0	None	0	29.8 kB	cwmma
npm/browserify-cipher@1.0.1	None	0	6.45 kB	cwmma
npm/browserify-des@1.0.2	None	0	6.27 kB	cwmma
npm/browserify-rsa@4.1.0	None	0	3.68 kB	cwmma
npm/browserify-sign@4.2.1	None	0	14.5 kB	cwmma
npm/browserify-zlib@0.2.0	None	0	192 kB	dignifiedquire
npm/browserslist@4.17.6	environment, filesystem	0	68.7 kB	ai
npm/buffer-indexof@1.1.1	None	0	18.5 kB	soldair
npm/buffer-xor@1.0.3	None	0	4.83 kB	dcousens
npm/builtin-status-codes@3.0.0	network	0	4.5 kB	bendrucker
npm/bytes@3.0.0	None	0	10.8 kB	dougwilson
npm/cacache@15.3.0	filesystem	0	76.3 kB	nlf
npm/cache-base@1.0.1	None	0	16.4 kB	jonschlinkert
npm/call-bind@1.0.2	None	0	14.7 kB	ljharb
npm/caniuse-api@3.0.0	None	0	12.2 kB	nyalab
npm/caniuse-lite@1.0.30001280	None	0	1.43 MB	caniuse-lite
npm/case-sensitive-paths-webpack-plugin@2.4.0	None	0	25.9 kB	urthen
npm/chokidar@3.5.2	environment, filesystem	0	89.8 kB	paulmillr
npm/chrome-trace-event@1.0.3	None	0	14.2 kB	samccone
npm/cipher-base@1.0.4	None	0	7.95 kB	cwmma
npm/class-utils@0.3.6	None	0	19 kB	jonschlinkert
npm/cliui@5.0.0	None	0	14.8 kB	bcoe
npm/coa@2.0.2	environment, filesystem	0	72.5 kB	qfox
npm/collection-visit@1.0.0	None	0	6.85 kB	jonschlinkert
npm/color-string@1.6.0	None	0	10.2 kB	qix
npm/color@3.2.1	None	0	16.6 kB	qix
npm/commander@2.20.3	filesystem, shell	0	62.4 kB	abetomo
npm/commondir@1.0.1	None	0	4.79 kB	substack
npm/component-emitter@1.3.0	None	0	8 kB	nami-doc
npm/compressible@2.0.18	None	0	7.36 kB	dougwilson
npm/compression-webpack-plugin@4.0.1	None	0	41.3 kB	evilebottnawi
npm/compression@1.7.4	None	0	23.3 kB	dougwilson
npm/connect-history-api-fallback@1.6.0	None	0	11.5 kB	bripkens
npm/console-browserify@1.2.0	None	0	10.3 kB	goto-bus-stop
npm/constants-browserify@1.0.0	None	0	7.46 kB	juliangruber
npm/content-disposition@0.5.3	None	0	19.1 kB	dougwilson
npm/content-type@1.0.4	None	0	10.2 kB	dougwilson
npm/convert-source-map@1.8.0	filesystem	0	10.3 kB	thlorenz
npm/cookie-signature@1.0.6	None	0	3.94 kB	natevw
npm/cookie@0.4.0	None	0	17.9 kB	dougwilson
npm/copy-descriptor@0.1.1	None	0	4.15 kB	jonschlinkert
npm/core-js-compat@3.19.1	None	0	355 kB	zloirock
npm/core-js@3.19.1	environment, eval, filesystem	0	818 kB	zloirock
npm/create-ecdh@4.0.4	None	0	5.4 kB	cwmma
npm/create-hash@1.2.0	None	0	5.21 kB	cwmma
npm/create-hmac@1.1.7	None	0	5.81 kB	cwmma
npm/cross-spawn@6.0.5	environment, filesystem, shell	0	21.4 kB	satazor
npm/crypto-browserify@3.12.0	None	0	53.5 kB	cwmma
npm/css-blank-pseudo@0.1.4	None	0	64 kB	jonathantneal
npm/css-color-names@0.0.4	None	0	5.33 kB	bahamas10
npm/css-declaration-sorter@4.0.1	filesystem	0	29.3 kB	siilwyn
npm/css-has-pseudo@0.10.0	None	0	56.4 kB	jonathantneal
npm/css-loader@3.6.0	None	0	91.7 kB	evilebottnawi
npm/css-prefers-color-scheme@3.1.1	None	0	40.9 kB	jonathantneal
npm/css-select@2.1.0	None	0	53.7 kB	feedic

🚮 Removed packages: npm/@djagger/echartsx@0.0.22, npm/@docusaurus/core@2.1.0, npm/@docusaurus/module-type-aliases@2.1.0, npm/@docusaurus/plugin-client-redirects@2.1.0, npm/@docusaurus/plugin-google-gtag@2.1.0, npm/@docusaurus/preset-classic@2.1.0, npm/@docusaurus/theme-search-algolia@2.1.0, npm/@emotion/react@11.10.4, npm/@emotion/server@11.10.0, npm/@emotion/styled@11.10.4, npm/@geo-maps/countries-land-10km@0.6.0, npm/@makotot/ghostui@2.0.0, npm/@mdx-js/react@1.6.22, npm/@mui/icons-material@5.10.9, npm/@mui/lab@5.0.0-alpha.104, npm/@mui/material@5.10.10, npm/@mui/x-data-grid@5.17.8

View full report↗︎

[socket-security]

🚨 Potential security issues detected. Learn more about Socket for GitHub ↗︎

To accept the risk, merge this PR and you will not be notified again.

Alert	Package	Note	Source	CI
Install scripts	npm/core-js@3.19.1	Install script: postinstall Source: node -e "try{require('./postinstall')}catch(e){}"	etl/yarn.lock	🚫

View full report↗︎

Next steps

What is an install script?

Install scripts are run when the package is installed. The majority of malware in npm is hidden in install scripts.

Packages should not be running non-essential scripts during install and there are often solutions to problems people solve with install scripts that can be run at publish time instead.

Take a deeper look at the dependency

Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support [AT] socket [DOT] dev.

Remove the package

If you happen to install a dependency that Socket reports as Known Malware you should immediately remove it and select a different dependency. For other alert types, you may may wish to investigate alternative packages or consider if there are other ways to mitigate the specific risk posed by the dependency.

Mark a package as acceptable risk

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of ecosystem/package-name@version specifiers. e.g. @SocketSecurity ignore npm/foo@1.0.0 or ignore all packages with @SocketSecurity ignore-all

• @SocketSecurity ignore npm/core-js@3.19.1