Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Upgrade @opentelemetry/sdk-node from 0.52.0 to 0.54.2 #763

Open
wants to merge 1 commit into
base: dev
Choose a base branch
from

Conversation

s-laugh
Copy link
Member

@s-laugh s-laugh commented Nov 30, 2024

snyk-top-banner

Snyk has created this PR to upgrade @opentelemetry/sdk-node from 0.52.0 to 0.54.2.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.


  • The recommended version is 5 versions ahead of your current version.

  • The recommended version was released on 23 days ago.

Release notes
Package name: @opentelemetry/sdk-node
  • 0.54.2 - 2024-11-07

    0.54.2

    🐛 (Bug Fix)

  • 0.54.1 - 2024-11-05

    0.54.1

    🐛 (Bug Fix)

    • fix(instrumentation-http): skip malformed forwarded headers. #5095 @ pmlanger
  • 0.54.0 - 2024-10-23

    0.54.0

    💥 Breaking Change

    • feat(exporter--otlp-)!: rewrite exporter config logic for testability #4971 @ pichlermarc
      • (user-facing) getDefaultUrl was intended for internal use has been removed from all exporters
      • (user-facing) getUrlFromConfig was intended for internal use and has been removed from all exporters
      • (user-facing) hostname was intended for internal use and has been removed from all exporters
      • (user-facing) url was intended for internal use and has been removed from all exporters
      • (user-facing) timeoutMillis was intended for internal use and has been removed from all exporters
      • (user-facing) onInit was intended for internal use and has been removed from all exporters
      • (user-facing) OTLP exporter config headers type changed from Partial<Record<string, unknown>> to Record<string, string>
    • feat(otlp-exporter-base)!: do not export functions that are intended for internal use #4971 @ pichlermarc
      • Drops the following functions and types that were intended for internal use from the package exports:
        • parseHeaders
        • appendResourcePathToUrl
        • appendResourcePathToUrlIfNeeded
        • configureExporterTimeout
        • invalidTimeout
    • feat(instrumentation-http)!: remove long deprecated options #5085 @ pichlermarc
      • ignoreIncomingPaths has been removed, use the more versatile ignoreIncomingRequestHook instead.
      • ignoreOutgoingUrls has been removed, use the more versatile ignoreOutgoingRequestHook instead.
      • isIgnored utility function was intended for internal use and has been removed without replacement.

    🚀 (Enhancement)

    • feat(api-logs): Add delegating no-op logger provider #4861 @ hectorhdzg
    • feat(instrumentation-http): Add support for Semantic Conventions 1.27+ #4940 #4978 #5026 @ dyladan
      • Applies to client and server spans and metrics
      • Generate spans and metrics compliant with Semantic Conventions 1.27+ when OTEL_SEMCONV_STABILITY_OPT_IN contains http or http/dup
      • Generate spans and metrics backwards compatible with previous attributes when OTEL_SEMCONV_STABILITY_OPT_IN contains http/dup or DOES NOT contain http

    🐛 (Bug Fix)

    • fix(sampler-jaeger-remote): fixes an issue where package could emit unhandled promise rejections @ Just-Sieb
    • fix(otlp-grpc-exporter-base): default compression to 'none' if env vars OTEL_EXPORTER_OTLP_TRACES_COMPRESSION and OTEL_EXPORTER_OTLP_COMPRESSION are falsy @ sjvans
    • fix(sdk-events): remove devDependencies to old @ opentelemetry/[email protected], @ opentelemetry/[email protected] packages #5013 @ pichlermarc
    • fix(sdk-logs): remove devDependencies to old @ opentelemetry/[email protected] #5013 @ pichlermarc
    • fix(sdk-logs): align LogRecord#setAttribute type with types from @ opentelemetry/[email protected] #5013 @ pichlermarc
    • fix(exporter--otlp-): fixes a bug where signal-specific environment variables would not be applied and the trace-specific one was used instead #4971 @ pichlermarc
      • Fixes:
        • OTEL_EXPORTER_OTLP_METRICS_COMPRESSION
        • OTEL_EXPORTER_OTLP_LOGS_COMPRESSION
        • OTEL_EXPORTER_OTLP_METRICS_CLIENT_CERTIFICATE
        • OTEL_EXPORTER_OTLP_LOGS_CLIENT_CERTIFICATE
        • OTEL_EXPORTER_OTLP_METRICS_CLIENT_KEY
        • OTEL_EXPORTER_OTLP_LOGS_CLIENT_KEY
        • OTEL_EXPORTER_OTLP_METRICS_INSECURE
        • OTEL_EXPORTER_OTLP_LOGS_INSECURE
    • fix(sdk-node): use warn instead of error on unknown OTEL_NODE_RESOURCE_DETECTORS values #5034
    • fix(exporter-logs-otlp-proto): Use correct config type in Node constructor
    • fix(instrumentation-http): Fix instrumentation of http.get, http.request, https.get, and https.request when used from ESM code and imported via the import defaultExport from 'http' style. #5024 @ trentm

    🏠 (Internal)

    • refactor(exporter-prometheus): replace MetricAttributes and MetricAttributeValues with Attributes and AttributeValues #4993

    • refactor(browser-detector): replace ResourceAttributes with Attributes #5004

    • refactor(sdk-logs): replace ResourceAttributes with Attributes #5005 @ david-luna

  • 0.53.0 - 2024-08-28

    0.53.0

    💥 Breaking Change

    • fix(instrumentation)!:remove unused description property from interface #4847 @ blumamir
    • feat(exporter--otlp-)!: use transport interface in node.js exporters #4743 @ pichlermarc
      • (user-facing) headers was intended for internal use has been removed from all exporters
      • (user-facing) compression was intended for internal use and has been removed from all exporters
      • (user-facing) hostname was intended for use in tests and is not used by any exporters, it will be removed in a future release
    • fix(exporter--otlp-)!: ensure User-Agent header cannot be overwritten by the user #4743 @ pichlermarc
      • allowing overrides of the User-Agent header was not specification compliant.
    • feat(exporter--otlp)!: remove environment-variable specific code from browser exporters
      • (user-facing) removes the ability to configure browser exporters by using process.env polyfills
    • feat(sdk-node)!: Automatically configure logs exporter #4740
    • feat(exporter--otlp-)!: use transport interface in browser exporters #4895 @ pichlermarc
      • (user-facing) protected headers property was intended for internal use has been removed from all exporters

    🚀 (Enhancement)

    • feat(otlp-transformer): Do not limit @ opentelemetry/api upper range peerDependency #4816 @ mydea
    • feat(instrumentation-http): Allow to opt-out of instrumenting incoming/outgoing requests #4643 @ mydea
    • feat(sampler-jaeger-remote): added support of jaeger-remote-sampler according to this spec #4534 @ legalimpurity

    🐛 (Bug Fix)

    • fix(instrumentation): ensure .setConfig() results in config.enabled defaulting to true #4941 @ trentm
    • fix(instrumentation-http): Ensure instrumentation of http.get and https.get work when used in ESM code #4857 @ trentm
    • fix(api-logs): align AnyValue to spec #4893 @ blumamir
    • fix(instrumentation): remove diag.debug() message for instrumentations that do not patch modules #4925 @ trentm

    🏠 (Internal)

    • refactor: Simplify the code for the getEnv function #4799 @ danstarns
    • refactor: remove "export *" in favor of explicit named exports #4880 @ robbkidd
      • Packages updated:
        • api-events
        • api-logs
        • opentelemetry-browser-detector
        • opentelemetry-exporter-prometheus
        • opentelemetry-instrumentation-fetch
        • opentelemetry-instrumentation-http
        • opentelemetry-instrumentation-xml-http-request
        • opentelemetry-instrumentation
  • 0.52.1 - 2024-06-20
  • 0.52.0 - 2024-06-05
from @opentelemetry/sdk-node GitHub release notes

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

Snyk has created this PR to upgrade @opentelemetry/sdk-node from 0.52.0 to 0.54.2.

See this package in npm:
@opentelemetry/sdk-node

See this project in Snyk:
https://app.snyk.io/org/p0nder0sa/project/60ffc669-57aa-416f-923d-9c5e8c2c64de?utm_source=github&utm_medium=referral&page=upgrade-pr
@s-laugh s-laugh requested a review from a team as a code owner November 30, 2024 06:40
Copy link

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants