[Snyk] Upgrade @sentry/vue from 7.74.1 to 8.20.0

[WontonSam]

Snyk has created this PR to upgrade @sentry/vue from 7.74.1 to 8.20.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

⚠️ Warning: This PR contains major version upgrade(s), and may be a breaking change.

• The recommended version is 99 versions ahead of your current version.

• The recommended version was released on 23 days ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Access Control Bypass SNYK-JS-VITE-6182924	225	Proof of Concept
	Cross-site Request Forgery (CSRF) SNYK-JS-AXIOS-6032459	225	Proof of Concept
	Prototype Pollution SNYK-JS-AXIOS-6144788	225	No Known Exploit
	Server-side Request Forgery (SSRF) SNYK-JS-AXIOS-7361793	225	Proof of Concept
	Uncontrolled resource consumption SNYK-JS-BRACES-6838727	225	Proof of Concept
	Improper Input Validation SNYK-JS-FOLLOWREDIRECTS-6141137	225	Proof of Concept
	Inefficient Regular Expression Complexity SNYK-JS-MICROMATCH-6838728	225	No Known Exploit
	Improper Access Control SNYK-JS-VITE-6531286	225	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-AXIOS-6124857	225	Proof of Concept
	Template Injection SNYK-JS-DOMPURIFY-6474511	225	Proof of Concept
	Information Exposure SNYK-JS-FOLLOWREDIRECTS-6444610	225	Proof of Concept
	Cross-Site Scripting (XSS) SNYK-JS-VITE-6098386	225	Proof of Concept

Release notes

Package name: @sentry/vue

• 8.20.0 - 2024-07-24
  

  Important Changes

  • feat(node): Allow to pass registerEsmLoaderHooks to preload (#12998)

  You can write your own custom preload script and configure this in the preload options. registerEsmLoaderHooks can be
  passed as an option to preloadOpenTelemetry, which allows to exclude/include packages in the preload.

  • fix(node): Do not emit fetch spans when tracing is disabled (#13003)

  Sentry will not emit "fetch" spans if tracing is disabled. This is relevant for user who use their own sampler.

  Other Changes

  • feat(feedback): Trigger button aria label configuration (#13008)
  • feat(nestjs): Change nest sdk setup (#12920)
  • feat(node): Extend ESM hooks options for iitm v1.10.0 (#13016)
  • feat(node): Send client reports (#12951)
  • feat(nuxt): Automatically add BrowserTracing (#13005)
  • feat(nuxt): Setup source maps with vite config (#13018)
  • feat(replay): Improve public Replay APIs (#13000)

  Bundle size 📦

  Path	Size
  @ sentry/browser	22.31 KB
  @ sentry/browser (incl. Tracing)	33.72 KB
  @ sentry/browser (incl. Tracing, Replay)	69.82 KB
  @ sentry/browser (incl. Tracing, Replay) - with treeshaking flags	63.16 KB
  @ sentry/browser (incl. Tracing, Replay with Canvas)	74.21 KB
  @ sentry/browser (incl. Tracing, Replay, Feedback)	86.58 KB
  @ sentry/browser (incl. Tracing, Replay, Feedback, metrics)	88.45 KB
  @ sentry/browser (incl. metrics)	26.62 KB
  @ sentry/browser (incl. Feedback)	39.02 KB
  @ sentry/browser (incl. sendFeedback)	26.93 KB
  @ sentry/browser (incl. FeedbackAsync)	31.57 KB
  @ sentry/react	25.08 KB
  @ sentry/react (incl. Tracing)	36.8 KB
  @ sentry/vue	26.45 KB
  @ sentry/vue (incl. Tracing)	35.61 KB
  @ sentry/svelte	22.44 KB
  CDN Bundle	23.52 KB
  CDN Bundle (incl. Tracing)	35.5 KB
  CDN Bundle (incl. Tracing, Replay)	69.86 KB
  CDN Bundle (incl. Tracing, Replay, Feedback)	75.15 KB
  CDN Bundle - uncompressed	69 KB
  CDN Bundle (incl. Tracing) - uncompressed	105.1 KB
  CDN Bundle (incl. Tracing, Replay) - uncompressed	216.74 KB
  CDN Bundle (incl. Tracing, Replay, Feedback) - uncompressed	229.57 KB
  @ sentry/nextjs (client)	36.66 KB
  @ sentry/sveltekit (client)	34.39 KB
  @ sentry/node	111.76 KB
  @ sentry/node - without tracing	89.21 KB
  @ sentry/aws-serverless	98.34 KB

• 8.19.0 - 2024-07-19
  
  • feat(core): Align Span interface with OTEL (#12898)
  • feat(express): Allow to pass options to setupExpressErrorHandler (#12952)
  • feat(node): Add request parameter to httpIntegration ignore callbacks (#12930)
  • feat(vercel-edge): Add dedupe as default integration (#12957)
  • fix(angular): Remove afterSendEvent listener once root injector is destroyed (#12786)
  • fix(browser): Fix bug causing unintentional dropping of transactions (#12933)
  • fix(feedback): Add a missing call of Actor.appendToDom method when DOMContentLoaded event is triggered (#12973)
  • fix(node): Pass inferred name & attributes to tracesSampler (#12945)

  Work in this release was contributed by @ jaspreet57 and @ arturovt. Thank you for your contribution!

  Bundle size 📦

  Path	Size
  @ sentry/browser	22.3 KB
  @ sentry/browser (incl. Tracing)	33.72 KB
  @ sentry/browser (incl. Tracing, Replay)	69.81 KB
  @ sentry/browser (incl. Tracing, Replay) - with treeshaking flags	63.11 KB
  @ sentry/browser (incl. Tracing, Replay with Canvas)	74.2 KB
  @ sentry/browser (incl. Tracing, Replay, Feedback)	86.52 KB
  @ sentry/browser (incl. Tracing, Replay, Feedback, metrics)	88.39 KB
  @ sentry/browser (incl. metrics)	26.62 KB
  @ sentry/browser (incl. Feedback)	38.98 KB
  @ sentry/browser (incl. sendFeedback)	26.93 KB
  @ sentry/browser (incl. FeedbackAsync)	31.54 KB
  @ sentry/react	25.07 KB
  @ sentry/react (incl. Tracing)	36.79 KB
  @ sentry/vue	26.44 KB
  @ sentry/vue (incl. Tracing)	35.6 KB
  @ sentry/svelte	22.44 KB
  CDN Bundle	23.52 KB
  CDN Bundle (incl. Tracing)	35.5 KB
  CDN Bundle (incl. Tracing, Replay)	69.91 KB
  CDN Bundle (incl. Tracing, Replay, Feedback)	75.17 KB
  CDN Bundle - uncompressed	69 KB
  CDN Bundle (incl. Tracing) - uncompressed	105.1 KB
  CDN Bundle (incl. Tracing, Replay) - uncompressed	216.88 KB
  CDN Bundle (incl. Tracing, Replay, Feedback) - uncompressed	229.6 KB
  @ sentry/nextjs (client)	36.65 KB
  @ sentry/sveltekit (client)	34.37 KB
  @ sentry/node	111.29 KB
  @ sentry/node - without tracing	88.71 KB
  @ sentry/aws-serverless	97.88 KB

• 8.18.0 - 2024-07-16
  

  Important Changes

  • ref: Deprecate enableTracing (12897)

  The enableTracing option has been deprecated and will be removed in the next major version. We recommend removing it
  in favor of the tracesSampleRate and tracesSampler options. If you want to enable performance monitoring, please set
  the tracesSampleRate to a sample rate of your choice, or provide a sampling function as tracesSampler option
  instead. If you want to disable performance monitoring, remove the tracesSampler and tracesSampleRate options.

  Other Changes

  • feat(node): Expose exclude and include options for ESM loader (#12910)
  • feat(browser): Add user agent to INP standalone span attributes (#12896)
  • feat(nextjs): Add experimental_captureRequestError for onRequestError hook (#12885)
  • feat(replay): Bump rrweb to 2.25.0 (#12478)
  • feat(tracing): Add long animation frame tracing (#12646)
  • fix: Cleanup hooks when they are not used anymore (#12852)
  • fix(angular): Guard ErrorEvent check in ErrorHandler to avoid throwing in Node environments (#12892)
  • fix(inp): Ensure INP spans have correct transaction (#12871)
  • fix(nestjs): Do not make SentryTraced() decorated functions async (#12879)
  • fix(nextjs): Support automatic instrumentation for app directory with custom page extensions (#12858)
  • fix(node): Ensure correct URL is passed to ignoreIncomingRequests callback (#12929)
  • fix(otel): Do not add otel.kind: INTERNAL attribute (#12841)
  • fix(solidstart): Set proper sentry origin for solid router integration when used in solidstart sdk (#12919)
  • fix(sveltekit): Add Vite peer dep for proper type resolution (#12926)
  • fix(tracing): Ensure you can pass null as parentSpan in startSpan* (#12928)
  • ref(core): Small bundle size improvement (#12830)

  Work in this release was contributed by @ GitSquared, @ ziyadkhalil and @ mcous. Thank you for your contributions!

  Bundle size 📦

  Path	Size
  @ sentry/browser	22.3 KB
  @ sentry/browser (incl. Tracing)	33.69 KB
  @ sentry/browser (incl. Tracing, Replay)	69.77 KB
  @ sentry/browser (incl. Tracing, Replay) - with treeshaking flags	63.08 KB
  @ sentry/browser (incl. Tracing, Replay with Canvas)	74.17 KB
  @ sentry/browser (incl. Tracing, Replay, Feedback)	86.49 KB
  @ sentry/browser (incl. Tracing, Replay, Feedback, metrics)	88.36 KB
  @ sentry/browser (incl. metrics)	26.59 KB
  @ sentry/browser (incl. Feedback)	38.98 KB
  @ sentry/browser (incl. sendFeedback)	26.93 KB
  @ sentry/browser (incl. FeedbackAsync)	31.54 KB
  @ sentry/react	25.06 KB
  @ sentry/react (incl. Tracing)	36.75 KB
  @ sentry/vue	26.41 KB
  @ sentry/vue (incl. Tracing)	35.57 KB
  @ sentry/svelte	22.44 KB
  CDN Bundle	23.52 KB
  CDN Bundle (incl. Tracing)	35.47 KB
  CDN Bundle (incl. Tracing, Replay)	69.87 KB
  CDN Bundle (incl. Tracing, Replay, Feedback)	75.14 KB
  CDN Bundle - uncompressed	69 KB
  CDN Bundle (incl. Tracing) - uncompressed	104.93 KB
  CDN Bundle (incl. Tracing, Replay) - uncompressed	216.71 KB
  CDN Bundle (incl. Tracing, Replay, Feedback) - uncompressed	229.43 KB
  @ sentry/nextjs (client)	36.61 KB
  @ sentry/sveltekit (client)	34.34 KB
  @ sentry/node	130.83 KB
  @ sentry/node - without tracing	91.91 KB
  @ sentry/aws-serverless	117.08 KB

• 8.17.0 - 2024-07-10
• 8.16.0 - 2024-07-09
• 8.15.0 - 2024-07-05
• 8.14.0 - 2024-07-04
• 8.13.0 - 2024-06-27
• 8.12.0 - 2024-06-25
• 8.12.0-beta.0 - 2024-06-24
• 8.11.0 - 2024-06-21
• 8.10.0 - 2024-06-19
• 8.9.2 - 2024-06-12
• 8.9.1 - 2024-06-11
• 8.8.0 - 2024-06-07
• 8.7.0 - 2024-05-29
• 8.6.0 - 2024-05-29
• 8.5.0 - 2024-05-27
• 8.4.0 - 2024-05-23
• 8.3.0 - 2024-05-22
• 8.2.1 - 2024-05-16
• 8.2.0 - 2024-05-16
• 8.1.0 - 2024-05-16
• 8.0.0 - 2024-05-13
• 8.0.0-rc.3 - 2024-05-10
• 8.0.0-rc.2 - 2024-05-08
• 8.0.0-rc.1 - 2024-05-07
• 8.0.0-rc.0 - 2024-05-06
• 8.0.0-beta.6 - 2024-05-03
• 8.0.0-beta.5 - 2024-04-30
• 8.0.0-beta.4 - 2024-04-24
• 8.0.0-beta.3 - 2024-04-19
• 8.0.0-beta.2 - 2024-04-17
• 8.0.0-beta.1 - 2024-04-15
• 8.0.0-alpha.9 - 2024-04-08
• 8.0.0-alpha.8 - 2024-04-08
• 8.0.0-alpha.7 - 2024-03-27
• 8.0.0-alpha.5 - 2024-03-22
• 8.0.0-alpha.4 - 2024-03-14
• 8.0.0-alpha.3 - 2024-03-14
• 8.0.0-alpha.2 - 2024-03-05
• 7.119.0 - 2024-08-14
  
  • backport(tracing): Report dropped spans for transactions (#13343)

  Bundle size 📦

  Path	Size
  @ sentry/browser (incl. Tracing, Replay, Feedback) - Webpack (gzipped)	80.96 KB
  @ sentry/browser (incl. Tracing, Replay) - Webpack (gzipped)	71.89 KB
  @ sentry/browser (incl. Tracing, Replay with Canvas) - Webpack (gzipped)	76.14 KB
  @ sentry/browser (incl. Tracing, Replay) - Webpack with treeshaking flags (gzipped)	65.52 KB
  @ sentry/browser (incl. Tracing) - Webpack (gzipped)	35.77 KB
  @ sentry/browser (incl. browserTracingIntegration) - Webpack (gzipped)	35.66 KB
  @ sentry/browser (incl. Feedback) - Webpack (gzipped)	31.71 KB
  @ sentry/browser (incl. sendFeedback) - Webpack (gzipped)	31.72 KB
  @ sentry/browser - Webpack (gzipped)	22.91 KB
  @ sentry/browser (incl. Tracing, Replay, Feedback) - ES6 CDN Bundle (gzipped)	79.17 KB
  @ sentry/browser (incl. Tracing, Replay) - ES6 CDN Bundle (gzipped)	70.49 KB
  @ sentry/browser (incl. Tracing) - ES6 CDN Bundle (gzipped)	36.17 KB
  @ sentry/browser - ES6 CDN Bundle (gzipped)	25.41 KB
  @ sentry/browser (incl. Tracing, Replay) - ES6 CDN Bundle (minified & uncompressed)	221.92 KB
  @ sentry/browser (incl. Tracing) - ES6 CDN Bundle (minified & uncompressed)	109.52 KB
  @ sentry/browser - ES6 CDN Bundle (minified & uncompressed)	76.24 KB
  @ sentry/browser (incl. Tracing) - ES5 CDN Bundle (gzipped)	39.45 KB
  @ sentry/react (incl. Tracing, Replay) - Webpack (gzipped)	72.4 KB
  @ sentry/react - Webpack (gzipped)	22.94 KB
  @ sentry/nextjs Client (incl. Tracing, Replay) - Webpack (gzipped)	90.16 KB
  @ sentry/nextjs Client - Webpack (gzipped)	54.27 KB
  @ sentry-internal/feedback - Webpack (gzipped)	17.34 KB

• 7.118.0 - 2024-06-21
• 7.117.0 - 2024-06-10
• 7.116.0 - 2024-05-17
• 7.115.0 - 2024-05-16
• 7.114.0 - 2024-05-08
• 7.113.0 - 2024-05-02
• 7.112.2 - 2024-04-24
• 7.112.1 - 2024-04-23
• 7.112.0 - 2024-04-23
• 7.111.0 - 2024-04-18
• 7.110.1 - 2024-04-15
• 7.110.0 - 2024-04-11
• 7.109.0 - 2024-03-28
• 7.108.0 - 2024-03-22
• 7.107.0 - 2024-03-14
• 7.106.1 - 2024-03-11
• 7.106.0 - 2024-03-08
• 7.105.0 - 2024-03-04
• 7.104.0 - 2024-02-29
• 7.103.0 - 2024-02-27
• 7.102.1 - 2024-02-22
• 7.102.0 - 2024-02-20
• 7.101.1 - 2024-02-15
• 7.101.0 - 2024-02-13
• 7.100.1 - 2024-02-07
• 7.100.0 - 2024-02-06
• 7.99.0 - 2024-01-30
• 7.98.0 - 2024-01-25
• 7.97.0 - 2024-01-25
• 7.95.0 - 2024-01-23
• 7.94.1 - 2024-01-19
• 7.93.0 - 2024-01-10
• 7.92.0 - 2024-01-04
• 7.91.0 - 2023-12-22
• 7.90.0 - 2023-12-20
• 7.89.0 - 2023-12-19
• 7.88.0 - 2023-12-14
• 7.87.0 - 2023-12-13
• 7.86.0 - 2023-12-07
• 7.85.0 - 2023-12-04
• 7.84.0 - 2023-11-30
• 7.83.0 - 2023-11-28
• 7.82.0 - 2023-11-27
• 7.81.1 - 2023-11-21
• 7.81.0 - 2023-11-20
• 7.80.2-alpha.1 - 2023-11-15
• 7.80.2-alpha.0 - 2023-11-14
• 7.80.1 - 2023-11-14
• 7.80.0 - 2023-11-09
• 7.79.0 - 2023-11-08
• 7.78.0 - 2023-11-08
• 7.77.0 - 2023-10-31
• 7.76.0 - 2023-10-27
• 7.75.1 - 2023-10-25
• 7.75.0 - 2023-10-24
• 7.74.2-alpha.1 - 2023-10-23
• 7.74.2-alpha.0 - 2023-10-19
• 7.74.1 - 2023-10-17

from @sentry/vue GitHub release notes

---

Important

• Warning: This PR contains a major version upgrade, and may be a breaking change.
• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[google-cla]

Thanks for your pull request! It looks like this may be your first contribution to a Google open source project. Before we can look at your pull request, you'll need to sign a Contributor License Agreement (CLA).

View this failed invocation of the CLA check for more information.

For the most up to date status, view the checks section at the bottom of the pull request.