Update npm package @sentry/browser to v7.119.1 [SECURITY]

[hash-worker]

This PR contains the following updates:

Package	Type	Update	Change
@sentry/browser (source)	dependencies	patch	7.119.0 -> 7.119.1

GitHub Vulnerability Alerts

GHSA-593m-55hh-j8gv

Impact

In case a Prototype Pollution vulnerability is present in a user's application or bundled libraries, the Sentry SDK could potentially serve as a gadget to exploit that vulnerability. The exploitability depends on the specific details of the underlying Prototype Pollution issue.

Note

This advisory does not indicate the presence of a Prototype Pollution within the Sentry SDK itself. Users are strongly advised to first address any Prototype Pollution vulnerabilities in their application, as they pose a more critical security risk.

Patches

The issue was patched in all Sentry JavaScript SDKs starting from the 8.33.0 version.
Also, the fix was backported to SDK v7 in 7.119.1.

References

• Prototype Pollution
• Prototype Pollution gadgets
• sentry-javascript#13838

---

Release Notes

getsentry/sentry-javascript (@​sentry/browser)

v7.119.1

Compare Source

• fix(browser/v7): Ensure wrap() only returns functions (#​13838 backport)

Work in this release contributed by @​legobeat. Thank you for your contribution!

---

Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Renovate Bot.

[github-actions]

Benchmark results

@rust/graph-benches – Integrations

representative_read_multiple_entities

Function	Value	Mean	Flame graphs
entity_by_property	depths: DT=0, PT=2, ET=2, E=2	$$55.3 \mathrm{ms} \pm 561 \mathrm{μs}\left({\color{gray}-1.831 \mathrm{\%}}\right) $$	Flame Graph
entity_by_property	depths: DT=0, PT=0, ET=2, E=2	$$51.7 \mathrm{ms} \pm 558 \mathrm{μs}\left({\color{gray}0.719 \mathrm{\%}}\right) $$	Flame Graph
entity_by_property	depths: DT=0, PT=0, ET=0, E=2	$$44.9 \mathrm{ms} \pm 395 \mathrm{μs}\left({\color{gray}0.095 \mathrm{\%}}\right) $$	Flame Graph
entity_by_property	depths: DT=255, PT=255, ET=255, E=255	$$68.9 \mathrm{ms} \pm 335 \mathrm{μs}\left({\color{gray}-1.525 \mathrm{\%}}\right) $$	Flame Graph
entity_by_property	depths: DT=2, PT=2, ET=2, E=2	$$60.8 \mathrm{ms} \pm 618 \mathrm{μs}\left({\color{gray}0.099 \mathrm{\%}}\right) $$	Flame Graph
entity_by_property	depths: DT=0, PT=0, ET=0, E=0	$$41.0 \mathrm{ms} \pm 294 \mathrm{μs}\left({\color{gray}0.188 \mathrm{\%}}\right) $$	Flame Graph
link_by_source_by_property	depths: DT=0, PT=2, ET=2, E=2	$$95.6 \mathrm{ms} \pm 723 \mathrm{μs}\left({\color{gray}-0.608 \mathrm{\%}}\right) $$	Flame Graph
link_by_source_by_property	depths: DT=0, PT=0, ET=2, E=2	$$91.2 \mathrm{ms} \pm 988 \mathrm{μs}\left({\color{gray}-0.379 \mathrm{\%}}\right) $$	Flame Graph
link_by_source_by_property	depths: DT=0, PT=0, ET=0, E=2	$$80.7 \mathrm{ms} \pm 807 \mathrm{μs}\left({\color{gray}-0.959 \mathrm{\%}}\right) $$	Flame Graph
link_by_source_by_property	depths: DT=255, PT=255, ET=255, E=255	$$110 \mathrm{ms} \pm 628 \mathrm{μs}\left({\color{gray}0.335 \mathrm{\%}}\right) $$	Flame Graph
link_by_source_by_property	depths: DT=2, PT=2, ET=2, E=2	$$101 \mathrm{ms} \pm 505 \mathrm{μs}\left({\color{gray}1.44 \mathrm{\%}}\right) $$	Flame Graph
link_by_source_by_property	depths: DT=0, PT=0, ET=0, E=0	$$42.7 \mathrm{ms} \pm 460 \mathrm{μs}\left({\color{gray}-2.035 \mathrm{\%}}\right) $$	Flame Graph

representative_read_entity

Function	Value	Mean	Flame graphs
entity_by_id	entity type ID: https://blockprotocol.org/@alice/types/entity-type/page/v/2	$$16.9 \mathrm{ms} \pm 209 \mathrm{μs}\left({\color{gray}-4.457 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	entity type ID: https://blockprotocol.org/@alice/types/entity-type/playlist/v/1	$$17.5 \mathrm{ms} \pm 216 \mathrm{μs}\left({\color{gray}2.79 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	entity type ID: https://blockprotocol.org/@alice/types/entity-type/organization/v/1	$$16.9 \mathrm{ms} \pm 244 \mathrm{μs}\left({\color{lightgreen}-30.089 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	entity type ID: https://blockprotocol.org/@alice/types/entity-type/song/v/1	$$17.1 \mathrm{ms} \pm 185 \mathrm{μs}\left({\color{gray}3.24 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	entity type ID: https://blockprotocol.org/@alice/types/entity-type/person/v/1	$$16.8 \mathrm{ms} \pm 210 \mathrm{μs}\left({\color{lightgreen}-7.548 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	entity type ID: https://blockprotocol.org/@alice/types/entity-type/book/v/1	$$15.7 \mathrm{ms} \pm 196 \mathrm{μs}\left({\color{gray}-2.815 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	entity type ID: https://blockprotocol.org/@alice/types/entity-type/uk-address/v/1	$$16.9 \mathrm{ms} \pm 219 \mathrm{μs}\left({\color{lightgreen}-28.501 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	entity type ID: https://blockprotocol.org/@alice/types/entity-type/building/v/1	$$16.3 \mathrm{ms} \pm 216 \mathrm{μs}\left({\color{gray}-3.370 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	entity type ID: https://blockprotocol.org/@alice/types/entity-type/block/v/1	$$16.7 \mathrm{ms} \pm 200 \mathrm{μs}\left({\color{gray}-0.733 \mathrm{\%}}\right) $$	Flame Graph

representative_read_entity_type

Function	Value	Mean	Flame graphs
get_entity_type_by_id	Account ID: d4e16033-c281-4cde-aa35-9085bf2e7579	$$1.42 \mathrm{ms} \pm 8.51 \mathrm{μs}\left({\color{gray}1.13 \mathrm{\%}}\right) $$	Flame Graph

scaling_read_entity_complete_zero_depth

Function	Value	Mean	Flame graphs
entity_by_id	10 entities	$$2.01 \mathrm{ms} \pm 8.26 \mathrm{μs}\left({\color{gray}-1.223 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	25 entities	$$2.49 \mathrm{ms} \pm 16.7 \mathrm{μs}\left({\color{gray}-2.514 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	5 entities	$$1.90 \mathrm{ms} \pm 9.48 \mathrm{μs}\left({\color{gray}-0.199 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	50 entities	$$4.06 \mathrm{ms} \pm 32.5 \mathrm{μs}\left({\color{red}6.04 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	1 entities	$$1.88 \mathrm{ms} \pm 9.98 \mathrm{μs}\left({\color{gray}0.757 \mathrm{\%}}\right) $$	Flame Graph

scaling_read_entity_complete_one_depth

Function	Value	Mean	Flame graphs
entity_by_id	10 entities	$$51.3 \mathrm{ms} \pm 220 \mathrm{μs}\left({\color{red}12.5 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	25 entities	$$70.5 \mathrm{ms} \pm 416 \mathrm{μs}\left({\color{gray}-0.172 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	5 entities	$$25.1 \mathrm{ms} \pm 210 \mathrm{μs}\left({\color{gray}0.344 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	50 entities	$$1.52 \mathrm{s} \pm 4.59 \mathrm{ms}\left({\color{red}455 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	1 entities	$$19.9 \mathrm{ms} \pm 118 \mathrm{μs}\left({\color{gray}0.003 \mathrm{\%}}\right) $$	Flame Graph

scaling_read_entity_linkless

Function	Value	Mean	Flame graphs
entity_by_id	10000 entities	$$12.7 \mathrm{ms} \pm 142 \mathrm{μs}\left({\color{red}39.2 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	10 entities	$$1.90 \mathrm{ms} \pm 5.76 \mathrm{μs}\left({\color{gray}0.385 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	100 entities	$$2.04 \mathrm{ms} \pm 10.1 \mathrm{μs}\left({\color{gray}0.491 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	1000 entities	$$2.79 \mathrm{ms} \pm 25.3 \mathrm{μs}\left({\color{lightgreen}-8.127 \mathrm{\%}}\right) $$	Flame Graph
entity_by_id	1 entities	$$1.87 \mathrm{ms} \pm 7.82 \mathrm{μs}\left({\color{gray}-0.826 \mathrm{\%}}\right) $$	Flame Graph