search

ZacharyDonnelly / RawBase

Online code editor and code storage
0 stars 0 forks source link

chore(deps): update dependency sentry-sdk to v1.14.0 [security] #219

Open renovate[bot] opened 1 year ago

renovate[bot] commented 1 year ago

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
sentry-sdk (changelog) ==1.5.12 -> ==1.14.0 age adoption passing confidence

GitHub Vulnerability Alerts

CVE-2023-28117

Impact

When using the Django integration of the Sentry SDK in a specific configuration it is possible to leak sensitive cookies values, including the session cookie to Sentry. These sensitive cookies could then be used by someone with access to your Sentry issues to impersonate or escalate their privileges within your application.

The below must be true in order for these sensitive values to be leaked:

  1. Your Sentry SDK configuration has sendDefaultPII set to True
  2. You are using a custom name for either of the cookies below in your Django settings.
  3. You are not configured in your organization or project settings to use our data scrubbing features to account for the custom cookie names

Patches

As of version 1.14.0, the Django integration of the sentry-sdk will detect the custom cookie names based on your Django settings and will remove the values from the payload before sending the data to Sentry.

Workarounds

If you can not update your sentry-sdk to a patched version than you can use the SDKs filtering mechanism to remove the cookies from the payload that is sent to Sentry. For error events this can be done with the before_send callback method and for performance related events (transactions) you can use the before_send_transaction callback method.

If you'd like to handle filtering of these values on the server-side, you can also use our advanced data scrubbing feature to account for the custom cookie names. Look for the $http.cookies, $http.headers, $request.cookies, or $request.headers fields to target with your scrubbing rule.

References

Credits

Release Notes

getsentry/sentry-python (sentry-sdk) ### [`v1.14.0`](https://redirect.github.com/getsentry/sentry-python/blob/HEAD/CHANGELOG.md#1140) [Compare Source](https://redirect.github.com/getsentry/sentry-python/compare/1.13.0...1.14.0) ##### Various fixes & improvements - Add `before_send_transaction` ([#​1840](https://redirect.github.com/getsentry/sentry-python/issues/1840)) by [@​antonpirker](https://redirect.github.com/antonpirker) Adds a hook (similar to `before_send`) that is called for all transaction events (performance releated data). Usage: ```python import sentry_sdk def strip_sensitive_data(event, hint): ``` ### modify event here (or return `None` if you want to drop the event entirely) return event sentry_sdk.init( ### ... before_send_transaction=strip_sensitive_data, ) ``` See also: https://docs.sentry.io/platforms/python/configuration/filtering/#using-platformidentifier-namebefore-send-transaction- - Django: Always remove values of Django session related cookies. (#​1842) by @​antonpirker - Profiling: Enable profiling for ASGI frameworks (#​1824) by @​Zylphrex - Profiling: Better gevent support (#​1822) by @​Zylphrex - Profiling: Add profile context to transaction (#​1860) by @​Zylphrex - Profiling: Use co_qualname in python 3.11 (#​1831) by @​Zylphrex - OpenTelemetry: fix Use dict for sentry-trace context instead of tuple (#​1847) by @​AbhiPrasad - OpenTelemetry: fix extra dependency (#​1825) by @​bernardotorres - OpenTelemetry: fix NoOpSpan updates scope (#​1834) by @​Zylphrex - OpenTelemetry: Make sure to noop when there is no DSN (#​1852) by @​antonpirker - FastAPI: Fix middleware being patched multiple times (#​1841) by @​JohnnyDeuss - Starlette: Avoid import of pkg_resource with Starlette integration (#​1836) by @​mgu - Removed code coverage target (#​1862) by @​antonpirker ``` ### [`v1.13.0`](https://redirect.github.com/getsentry/sentry-python/blob/HEAD/CHANGELOG.md#1130) [Compare Source](https://redirect.github.com/getsentry/sentry-python/compare/1.12.1...1.13.0) ##### Various fixes & improvements - Add Starlite integration ([#​1748](https://redirect.github.com/getsentry/sentry-python/issues/1748)) by [@​gazorby](https://redirect.github.com/gazorby) Adding support for the [Starlite](https://starlite-api.github.io/starlite/1.48/) framework. Unhandled errors are captured. Performance spans for Starlite middleware are also captured. Thanks [@​gazorby](https://redirect.github.com/gazorby) for the great work! Usage: ```python from starlite import Starlite, get import sentry_sdk from sentry_sdk.integrations.starlite import StarliteIntegration sentry_sdk.init( dsn="...", traces_sample_rate=1.0, integrations=[ StarliteIntegration(), ], ) @​get("/") def hello_world() -> dict[str, str]: """Keeping the tradition alive with hello world.""" bla = 1/0 # causing an error return {"hello": "world"} app = Starlite(route_handlers=[hello_world]) ``` - Profiling: Remove sample buffer from profiler ([#​1791](https://redirect.github.com/getsentry/sentry-python/issues/1791)) by [@​Zylphrex](https://redirect.github.com/Zylphrex) - Profiling: Performance tweaks to profile sampler ([#​1789](https://redirect.github.com/getsentry/sentry-python/issues/1789)) by [@​Zylphrex](https://redirect.github.com/Zylphrex) - Add span for Django SimpleTemplateResponse rendering ([#​1818](https://redirect.github.com/getsentry/sentry-python/issues/1818)) by [@​chdsbd](https://redirect.github.com/chdsbd) - Use [@​wraps](https://redirect.github.com/wraps) for Django Signal receivers ([#​1815](https://redirect.github.com/getsentry/sentry-python/issues/1815)) by [@​meanmail](https://redirect.github.com/meanmail) - Add enqueued_at and started_at to rq job extra ([#​1024](https://redirect.github.com/getsentry/sentry-python/issues/1024)) by [@​kruvasyan](https://redirect.github.com/kruvasyan) - Remove sanic v22 pin ([#​1819](https://redirect.github.com/getsentry/sentry-python/issues/1819)) by [@​sl0thentr0py](https://redirect.github.com/sl0thentr0py) - Add support for `byterray` and `memoryview` built-in types ([#​1833](https://redirect.github.com/getsentry/sentry-python/issues/1833)) by [@​Tarty](https://redirect.github.com/Tarty) - Handle `"rc"` in SQLAlchemy version. ([#​1812](https://redirect.github.com/getsentry/sentry-python/issues/1812)) by [@​peterschutt](https://redirect.github.com/peterschutt) - Doc: Use .venv (not .env) as a virtual env location in CONTRIBUTING.md ([#​1790](https://redirect.github.com/getsentry/sentry-python/issues/1790)) by [@​tonyo](https://redirect.github.com/tonyo) - Auto publish to internal pypi on release ([#​1823](https://redirect.github.com/getsentry/sentry-python/issues/1823)) by [@​asottile-sentry](https://redirect.github.com/asottile-sentry) - Added Python 3.11 to test suite ([#​1795](https://redirect.github.com/getsentry/sentry-python/issues/1795)) by [@​antonpirker](https://redirect.github.com/antonpirker) - Update test/linting dependencies ([#​1801](https://redirect.github.com/getsentry/sentry-python/issues/1801)) by [@​antonpirker](https://redirect.github.com/antonpirker) - Deps: bump sphinx from 5.2.3 to 5.3.0 ([#​1686](https://redirect.github.com/getsentry/sentry-python/issues/1686)) by [@​dependabot](https://redirect.github.com/dependabot) ### [`v1.12.1`](https://redirect.github.com/getsentry/sentry-python/blob/HEAD/CHANGELOG.md#1121) [Compare Source](https://redirect.github.com/getsentry/sentry-python/compare/1.12.0...1.12.1) ##### Various fixes & improvements - Link errors to OTel spans ([#​1787](https://redirect.github.com/getsentry/sentry-python/issues/1787)) by [@​antonpirker](https://redirect.github.com/antonpirker) ### [`v1.12.0`](https://redirect.github.com/getsentry/sentry-python/blob/HEAD/CHANGELOG.md#1120) [Compare Source](https://redirect.github.com/getsentry/sentry-python/compare/1.11.1...1.12.0) ##### Basic OTel support This adds support to automatically integrate OpenTelemetry performance tracing with Sentry. See the documentation on how to set it up: https://docs.sentry.io/platforms/python/performance/instrumentation/opentelemetry/ Give it a try and let us know if you have any feedback or problems with using it. By: [@​antonpirker](https://redirect.github.com/antonpirker) ([#​1772](https://redirect.github.com/getsentry/sentry-python/issues/1772), [#​1766](https://redirect.github.com/getsentry/sentry-python/issues/1766), [#​1765](https://redirect.github.com/getsentry/sentry-python/issues/1765)) ##### Various fixes & improvements - Tox Cleanup ([#​1749](https://redirect.github.com/getsentry/sentry-python/issues/1749)) by [@​antonpirker](https://redirect.github.com/antonpirker) - CI: Fix Github action checks ([#​1780](https://redirect.github.com/getsentry/sentry-python/issues/1780)) by [@​Zylphrex](https://redirect.github.com/Zylphrex) - Profiling: Introduce active thread id on scope ([#​1764](https://redirect.github.com/getsentry/sentry-python/issues/1764)) by [@​Zylphrex](https://redirect.github.com/Zylphrex) - Profiling: Eagerly hash stack for profiles ([#​1755](https://redirect.github.com/getsentry/sentry-python/issues/1755)) by [@​Zylphrex](https://redirect.github.com/Zylphrex) - Profiling: Resolve inherited method class names ([#​1756](https://redirect.github.com/getsentry/sentry-python/issues/1756)) by [@​Zylphrex](https://redirect.github.com/Zylphrex) ### [`v1.11.1`](https://redirect.github.com/getsentry/sentry-python/blob/HEAD/CHANGELOG.md#1111) [Compare Source](https://redirect.github.com/getsentry/sentry-python/compare/1.11.0...1.11.1) ##### Various fixes & improvements - Move set_transaction_name out of event processor in fastapi/starlette ([#​1751](https://redirect.github.com/getsentry/sentry-python/issues/1751)) by [@​sl0thentr0py](https://redirect.github.com/sl0thentr0py) - Expose proxy_headers as top level config and use in ProxyManager: https://docs.sentry.io/platforms/python/configuration/options/#proxy-headers ([#​1746](https://redirect.github.com/getsentry/sentry-python/issues/1746)) by [@​sl0thentr0py](https://redirect.github.com/sl0thentr0py) ### [`v1.11.0`](https://redirect.github.com/getsentry/sentry-python/blob/HEAD/CHANGELOG.md#1110) [Compare Source](https://redirect.github.com/getsentry/sentry-python/compare/1.10.1...1.11.0) ##### Various fixes & improvements - Fix signals problem on sentry.io ([#​1732](https://redirect.github.com/getsentry/sentry-python/issues/1732)) by [@​antonpirker](https://redirect.github.com/antonpirker) - Fix reading FastAPI request body twice. ([#​1724](https://redirect.github.com/getsentry/sentry-python/issues/1724)) by [@​antonpirker](https://redirect.github.com/antonpirker) - ref(profiling): Do not error if already setup ([#​1731](https://redirect.github.com/getsentry/sentry-python/issues/1731)) by [@​Zylphrex](https://redirect.github.com/Zylphrex) - ref(profiling): Use sleep scheduler by default ([#​1729](https://redirect.github.com/getsentry/sentry-python/issues/1729)) by [@​Zylphrex](https://redirect.github.com/Zylphrex) - feat(profiling): Extract more frame info ([#​1702](https://redirect.github.com/getsentry/sentry-python/issues/1702)) by [@​Zylphrex](https://redirect.github.com/Zylphrex) - Update actions/upload-artifact to v3.1.1 ([#​1718](https://redirect.github.com/getsentry/sentry-python/issues/1718)) by [@​mattgauntseo-sentry](https://redirect.github.com/mattgauntseo-sentry) - Performance optimizations ([#​1725](https://redirect.github.com/getsentry/sentry-python/issues/1725)) by [@​antonpirker](https://redirect.github.com/antonpirker) - feat(pymongo): add PyMongo integration ([#​1590](https://redirect.github.com/getsentry/sentry-python/issues/1590)) by [@​Agalin](https://redirect.github.com/Agalin) - Move relay to port 5333 to avoid collisions ([#​1716](https://redirect.github.com/getsentry/sentry-python/issues/1716)) by [@​sl0thentr0py](https://redirect.github.com/sl0thentr0py) - fix(utils): strip_string() checks text length counting bytes not chars ([#​1711](https://redirect.github.com/getsentry/sentry-python/issues/1711)) by [@​mgaligniana](https://redirect.github.com/mgaligniana) - chore: remove jira workflow ([#​1707](https://redirect.github.com/getsentry/sentry-python/issues/1707)) by [@​vladanpaunovic](https://redirect.github.com/vladanpaunovic) - build(deps): bump checkouts/data-schemas from `a214fbc` to `20ff3b9` ([#​1703](https://redirect.github.com/getsentry/sentry-python/issues/1703)) by [@​dependabot](https://redirect.github.com/dependabot) - perf(profiling): Tune the sample profile generation code for performance ([#​1694](https://redirect.github.com/getsentry/sentry-python/issues/1694)) by [@​Zylphrex](https://redirect.github.com/Zylphrex) ### [`v1.10.1`](https://redirect.github.com/getsentry/sentry-python/blob/HEAD/CHANGELOG.md#1101) [Compare Source](https://redirect.github.com/getsentry/sentry-python/compare/1.10.0...1.10.1) ##### Various fixes & improvements - Bug fixes for FastAPI and Sentry SDK 1.10.0 ([#​1699](https://redirect.github.com/getsentry/sentry-python/issues/1699)) by [@​antonpirker](https://redirect.github.com/antonpirker) - The wrapped receive() did not return anything. ([#​1698](https://redirect.github.com/getsentry/sentry-python/issues/1698)) by [@​antonpirker](https://redirect.github.com/antonpirker) ### [`v1.10.0`](https://redirect.github.com/getsentry/sentry-python/blob/HEAD/CHANGELOG.md#1100) [Compare Source](https://redirect.github.com/getsentry/sentry-python/compare/1.9.10...1.10.0) ##### Various fixes & improvements - Unified naming for span ops ([#​1661](https://redirect.github.com/getsentry/sentry-python/issues/1661)) by [@​antonpirker](https://redirect.github.com/antonpirker) We have unified the strings of our span operations. See https://develop.sentry.dev/sdk/performance/span-operations/ **WARNING**: If you have Sentry Dashboards or Sentry Discover queries that use `transaction.op` in their fields, conditions, aggregates or columns this change could potentially break your Dashboards/Discover setup. Here is a list of the changes we made to the `op`s. Please adjust your dashboards and Discover queries accordingly: | Old operation (`op`) | New Operation (`op`) | | ------------------------ | ---------------------- | | `asgi.server` | `http.server` | | `aws.request` | `http.client` | | `aws.request.stream` | `http.client.stream` | | `celery.submit` | `queue.submit.celery` | | `celery.task` | `queue.task.celery` | | `django.middleware` | `middleware.django` | | `django.signals` | `event.django` | | `django.template.render` | `template.render` | | `django.view` | `view.render` | | `http` | `http.client` | | `redis` | `db.redis` | | `rq.task` | `queue.task.rq` | | `serverless.function` | `function.aws` | | `serverless.function` | `function.gcp` | | `starlette.middleware` | `middleware.starlette` | - Include framework in SDK name ([#​1662](https://redirect.github.com/getsentry/sentry-python/issues/1662)) by [@​antonpirker](https://redirect.github.com/antonpirker) - Asyncio integration ([#​1671](https://redirect.github.com/getsentry/sentry-python/issues/1671)) by [@​antonpirker](https://redirect.github.com/antonpirker) - Add exception handling to Asyncio Integration ([#​1695](https://redirect.github.com/getsentry/sentry-python/issues/1695)) by [@​antonpirker](https://redirect.github.com/antonpirker) - Fix asyncio task factory ([#​1689](https://redirect.github.com/getsentry/sentry-python/issues/1689)) by [@​antonpirker](https://redirect.github.com/antonpirker) - Have instrumentation for ASGI middleware receive/send callbacks. ([#​1673](https://redirect.github.com/getsentry/sentry-python/issues/1673)) by [@​antonpirker](https://redirect.github.com/antonpirker) - Use Django internal ASGI handling from Channels version 4.0.0. ([#​1688](https://redirect.github.com/getsentry/sentry-python/issues/1688)) by [@​antonpirker](https://redirect.github.com/antonpirker) - fix(integrations): Fix http putrequest when url is None ([#​1693](https://redirect.github.com/getsentry/sentry-python/issues/1693)) by [@​MattFlower](https://redirect.github.com/MattFlower) - build(deps): bump checkouts/data-schemas from `f0a57f2` to `a214fbc` ([#​1627](https://redirect.github.com/getsentry/sentry-python/issues/1627)) by [@​dependabot](https://redirect.github.com/dependabot) - build(deps): bump flake8-bugbear from 22.9.11 to 22.9.23 ([#​1637](https://redirect.github.com/getsentry/sentry-python/issues/1637)) by [@​dependabot](https://redirect.github.com/dependabot) - build(deps): bump sphinx from 5.1.1 to 5.2.3 ([#​1653](https://redirect.github.com/getsentry/sentry-python/issues/1653)) by [@​dependabot](https://redirect.github.com/dependabot) - build(deps): bump actions/stale from 5 to 6 ([#​1638](https://redirect.github.com/getsentry/sentry-python/issues/1638)) by [@​dependabot](https://redirect.github.com/dependabot) - build(deps): bump black from 22.8.0 to 22.10.0 ([#​1670](https://redirect.github.com/getsentry/sentry-python/issues/1670)) by [@​dependabot](https://redirect.github.com/dependabot) - Remove unused node setup from ci. ([#​1681](https://redirect.github.com/getsentry/sentry-python/issues/1681)) by [@​antonpirker](https://redirect.github.com/antonpirker) - Check for Decimal is in_valid_sample_rate ([#​1672](https://redirect.github.com/getsentry/sentry-python/issues/1672)) by [@​Arvind2222](https://redirect.github.com/Arvind2222) - Add session for aiohttp integration ([#​1605](https://redirect.github.com/getsentry/sentry-python/issues/1605)) by [@​denys-pidlisnyi](https://redirect.github.com/denys-pidlisnyi) - feat(profiling): Extract qualified name for each frame ([#​1669](https://redirect.github.com/getsentry/sentry-python/issues/1669)) by [@​Zylphrex](https://redirect.github.com/Zylphrex) - feat(profiling): Attach thread metadata to profiles ([#​1660](https://redirect.github.com/getsentry/sentry-python/issues/1660)) by [@​Zylphrex](https://redirect.github.com/Zylphrex) - ref(profiling): Rename profiling frame keys ([#​1680](https://redirect.github.com/getsentry/sentry-python/issues/1680)) by [@​Zylphrex](https://redirect.github.com/Zylphrex) - fix(profiling): get_frame_name only look at arguments ([#​1684](https://redirect.github.com/getsentry/sentry-python/issues/1684)) by [@​Zylphrex](https://redirect.github.com/Zylphrex) - fix(profiling): Need to sample profile correctly ([#​1679](https://redirect.github.com/getsentry/sentry-python/issues/1679)) by [@​Zylphrex](https://redirect.github.com/Zylphrex) - fix(profiling): Race condition spawning multiple profiling threads ([#​1676](https://redirect.github.com/getsentry/sentry-python/issues/1676)) by [@​Zylphrex](https://redirect.github.com/Zylphrex) - tests(profiling): Add basic profiling tests ([#​1677](https://redirect.github.com/getsentry/sentry-python/issues/1677)) by [@​Zylphrex](https://redirect.github.com/Zylphrex) - tests(profiling): Add tests for thread schedulers ([#​1683](https://redirect.github.com/getsentry/sentry-python/issues/1683)) by [@​Zylphrex](https://redirect.github.com/Zylphrex) ### [`v1.9.10`](https://redirect.github.com/getsentry/sentry-python/blob/HEAD/CHANGELOG.md#1910) [Compare Source](https://redirect.github.com/getsentry/sentry-python/compare/1.9.9...1.9.10) ##### Various fixes & improvements - Use content-length header in ASGI instead of reading request body ([#​1646](https://redirect.github.com/getsentry/sentry-python/issues/1646), [#​1631](https://redirect.github.com/getsentry/sentry-python/issues/1631), [#​1595](https://redirect.github.com/getsentry/sentry-python/issues/1595), [#​1573](https://redirect.github.com/getsentry/sentry-python/issues/1573)) ([#​1649](https://redirect.github.com/getsentry/sentry-python/issues/1649)) by [@​antonpirker](https://redirect.github.com/antonpirker) - Added newer Celery versions to test suite ([#​1655](https://redirect.github.com/getsentry/sentry-python/issues/1655)) by [@​antonpirker](https://redirect.github.com/antonpirker) - Django 4.x support ([#​1632](https://redirect.github.com/getsentry/sentry-python/issues/1632)) by [@​antonpirker](https://redirect.github.com/antonpirker) - Cancel old CI runs when new one is started. ([#​1651](https://redirect.github.com/getsentry/sentry-python/issues/1651)) by [@​antonpirker](https://redirect.github.com/antonpirker) - Increase max string size for desc ([#​1647](https://redirect.github.com/getsentry/sentry-python/issues/1647)) by [@​k-fish](https://redirect.github.com/k-fish) - Pin Sanic version for CI ([#​1650](https://redirect.github.com/getsentry/sentry-python/issues/1650)) by [@​antonpirker](https://redirect.github.com/antonpirker) - Fix for partial signals in old Django and old Python versions. ([#​1641](https://redirect.github.com/getsentry/sentry-python/issues/1641)) by [@​antonpirker](https://redirect.github.com/antonpirker) - Convert profile output to the sample format ([#​1611](https://redirect.github.com/getsentry/sentry-python/issues/1611)) by [@​phacops](https://redirect.github.com/phacops) - Dynamically adjust profiler sleep time ([#​1634](https://redirect.github.com/getsentry/sentry-python/issues/1634)) by [@​Zylphrex](https://redirect.github.com/Zylphrex) ### [`v1.9.9`](https://redirect.github.com/getsentry/sentry-python/blob/HEAD/CHANGELOG.md#199) [Compare Source](https://redirect.github.com/getsentry/sentry-python/compare/1.9.8...1.9.9) ##### Django update (ongoing) - Instrument Django Signals so they show up in "Performance" view ([#​1526](https://redirect.github.com/getsentry/sentry-python/issues/1526)) by [@​BeryJu](https://redirect.github.com/BeryJu) - include other Django enhancements brought up by the community ##### Various fixes & improvements - fix(profiling): Profiler mode type hints ([#​1633](https://redirect.github.com/getsentry/sentry-python/issues/1633)) by [@​Zylphrex](https://redirect.github.com/Zylphrex) - New ASGIMiddleware tests ([#​1600](https://redirect.github.com/getsentry/sentry-python/issues/1600)) by [@​antonpirker](https://redirect.github.com/antonpirker) - build(deps): bump mypy from 0.961 to 0.971 ([#​1517](https://redirect.github.com/getsentry/sentry-python/issues/1517)) by [@​dependabot](https://redirect.github.com/dependabot) - build(deps): bump black from 22.3.0 to 22.8.0 ([#​1596](https://redirect.github.com/getsentry/sentry-python/issues/1596)) by [@​dependabot](https://redirect.github.com/dependabot) - build(deps): bump sphinx from 5.0.2 to 5.1.1 ([#​1524](https://redirect.github.com/getsentry/sentry-python/issues/1524)) by [@​dependabot](https://redirect.github.com/dependabot) - ref: upgrade linters to flake8 5.x ([#​1610](https://redirect.github.com/getsentry/sentry-python/issues/1610)) by [@​asottile-sentry](https://redirect.github.com/asottile-sentry) - feat(profiling): Introduce different profiler schedulers ([#​1616](https://redirect.github.com/getsentry/sentry-python/issues/1616)) by [@​Zylphrex](https://redirect.github.com/Zylphrex) - fix(profiling): Check transaction sampled status before profiling ([#​1624](https://redirect.github.com/getsentry/sentry-python/issues/1624)) by [@​Zylphrex](https://redirect.github.com/Zylphrex) - Wrap Baggage ser/deser in capture_internal_exceptions ([#​1630](https://redirect.github.com/getsentry/sentry-python/issues/1630)) by [@​sl0thentr0py](https://redirect.github.com/sl0thentr0py) - Faster Tests (DjangoCon) ([#​1602](https://redirect.github.com/getsentry/sentry-python/issues/1602)) by [@​antonpirker](https://redirect.github.com/antonpirker) - feat(profiling): Add support for profiles_sample_rate ([#​1613](https://redirect.github.com/getsentry/sentry-python/issues/1613)) by [@​Zylphrex](https://redirect.github.com/Zylphrex) - feat(profiling): Support for multithreaded profiles ([#​1570](https://redirect.github.com/getsentry/sentry-python/issues/1570)) by [@​Zylphrex](https://redirect.github.com/Zylphrex) ### [`v1.9.8`](https://redirect.github.com/getsentry/sentry-python/blob/HEAD/CHANGELOG.md#198) [Compare Source](https://redirect.github.com/getsentry/sentry-python/compare/1.9.7...1.9.8) ##### Various fixes & improvements - Baggage creation for head of trace ([#​1589](https://redirect.github.com/getsentry/sentry-python/issues/1589)) by [@​sl0thentr0py](https://redirect.github.com/sl0thentr0py) - The SDK now also generates new baggage entries for dynamic sampling when it is the first (head) SDK in the pipeline. ### [`v1.9.7`](https://redirect.github.com/getsentry/sentry-python/blob/HEAD/CHANGELOG.md#197) [Compare Source](https://redirect.github.com/getsentry/sentry-python/compare/1.9.6...1.9.7) ##### Various fixes & improvements - Let SentryAsgiMiddleware work with Starlette and FastAPI integrations ([#​1594](https://redirect.github.com/getsentry/sentry-python/issues/1594)) by [@​antonpirker](https://redirect.github.com/antonpirker) **Note:** The last version 1.9.6 introduced a breaking change where projects that used Starlette or FastAPI and had manually setup `SentryAsgiMiddleware` could not start. This versions fixes this behaviour. With this version if you have a manual `SentryAsgiMiddleware` setup and are using Starlette or FastAPI everything just works out of the box. Sorry for any inconveniences the last version might have brought to you. We can do better and in the future we will do our best to not break your code again. ### [`v1.9.6`](https://redirect.github.com/getsentry/sentry-python/blob/HEAD/CHANGELOG.md#196) [Compare Source](https://redirect.github.com/getsentry/sentry-python/compare/1.9.5...1.9.6) ##### Various fixes & improvements - Auto-enable Starlette and FastAPI ([#​1533](https://redirect.github.com/getsentry/sentry-python/issues/1533)) by [@​antonpirker](https://redirect.github.com/antonpirker) - Add more version constraints ([#​1574](https://redirect.github.com/getsentry/sentry-python/issues/1574)) by [@​isra17](https://redirect.github.com/isra17) - Fix typo in starlette attribute check ([#​1566](https://redirect.github.com/getsentry/sentry-python/issues/1566)) by [@​sl0thentr0py](https://redirect.github.com/sl0thentr0py) ### [`v1.9.5`](https://redirect.github.com/getsentry/sentry-python/blob/HEAD/CHANGELOG.md#195) [Compare Source](https://redirect.github.com/getsentry/sentry-python/compare/1.9.4...1.9.5) ##### Various fixes & improvements - fix(redis): import redis pipeline using full path ([#​1565](https://redirect.github.com/getsentry/sentry-python/issues/1565)) by [@​olksdr](https://redirect.github.com/olksdr) - Fix side effects for parallel tests ([#​1554](https://redirect.github.com/getsentry/sentry-python/issues/1554)) by [@​sl0thentr0py](https://redirect.github.com/sl0thentr0py) ### [`v1.9.4`](https://redirect.github.com/getsentry/sentry-python/blob/HEAD/CHANGELOG.md#194) [Compare Source](https://redirect.github.com/getsentry/sentry-python/compare/1.9.3...1.9.4) ##### Various fixes & improvements - Remove TRANSACTION_SOURCE_UNKNOWN and default to CUSTOM ([#​1558](https://redirect.github.com/getsentry/sentry-python/issues/1558)) by [@​sl0thentr0py](https://redirect.github.com/sl0thentr0py) - feat(redis): Add instrumentation for redis pipeline ([#​1543](https://redirect.github.com/getsentry/sentry-python/issues/1543)) by [@​jjbayer](https://redirect.github.com/jjbayer) - Handle no release when uploading profiles ([#​1548](https://redirect.github.com/getsentry/sentry-python/issues/1548)) by [@​szokeasaurusrex](https://redirect.github.com/szokeasaurusrex) ### [`v1.9.3`](https://redirect.github.com/getsentry/sentry-python/blob/HEAD/CHANGELOG.md#193) [Compare Source](https://redirect.github.com/getsentry/sentry-python/compare/1.9.2...1.9.3) ##### Various fixes & improvements - Wrap StarletteRequestExtractor in capture_internal_exceptions ([#​1551](https://redirect.github.com/getsentry/sentry-python/issues/1551)) by [@​sl0thentr0py](https://redirect.github.com/sl0thentr0py) ### [`v1.9.2`](https://redirect.github.com/getsentry/sentry-python/blob/HEAD/CHANGELOG.md#192) [Compare Source](https://redirect.github.com/getsentry/sentry-python/compare/1.9.1...1.9.2) ##### Various fixes & improvements - chore: remove quotes ([#​1545](https://redirect.github.com/getsentry/sentry-python/issues/1545)) by [@​vladanpaunovic](https://redirect.github.com/vladanpaunovic) ### [`v1.9.1`](https://redirect.github.com/getsentry/sentry-python/blob/HEAD/CHANGELOG.md#1910) [Compare Source](https://redirect.github.com/getsentry/sentry-python/compare/1.9.0...1.9.1) ##### Various fixes & improvements - Use content-length header in ASGI instead of reading request body ([#​1646](https://redirect.github.com/getsentry/sentry-python/issues/1646), [#​1631](https://redirect.github.com/getsentry/sentry-python/issues/1631), [#​1595](https://redirect.github.com/getsentry/sentry-python/issues/1595), [#​1573](https://redirect.github.com/getsentry/sentry-python/issues/1573)) ([#​1649](https://redirect.github.com/getsentry/sentry-python/issues/1649)) by [@​antonpirker](https://redirect.github.com/antonpirker) - Added newer Celery versions to test suite ([#​1655](https://redirect.github.com/getsentry/sentry-python/issues/1655)) by [@​antonpirker](https://redirect.github.com/antonpirker) - Django 4.x support ([#​1632](https://redirect.github.com/getsentry/sentry-python/issues/1632)) by [@​antonpirker](https://redirect.github.com/antonpirker) - Cancel old CI runs when new one is started. ([#​1651](https://redirect.github.com/getsentry/sentry-python/issues/1651)) by [@​antonpirker](https://redirect.github.com/antonpirker) - Increase max string size for desc ([#​1647](https://redirect.github.com/getsentry/sentry-python/issues/1647)) by [@​k-fish](https://redirect.github.com/k-fish) - Pin Sanic version for CI ([#​1650](https://redirect.github.com/getsentry/sentry-python/issues/1650)) by [@​antonpirker](https://redirect.github.com/antonpirker) - Fix for partial signals in old Django and old Python versions. ([#​1641](https://redirect.github.com/getsentry/sentry-python/issues/1641)) by [@​antonpirker](https://redirect.github.com/antonpirker) - Convert profile output to the sample format ([#​1611](https://redirect.github.com/getsentry/sentry-python/issues/1611)) by [@​phacops](https://redirect.github.com/phacops) - Dynamically adjust profiler sleep time ([#​1634](https://redirect.github.com/getsentry/sentry-python/issues/1634)) by [@​Zylphrex](https://redirect.github.com/Zylphrex) ### [`v1.9.0`](https://redirect.github.com/getsentry/sentry-python/blob/HEAD/CHANGELOG.md#190) [Compare Source](https://redirect.github.com/getsentry/sentry-python/compare/1.8.0...1.9.0) ##### Various fixes & improvements - feat(profiler): Add experimental profiler under experiments.enable_profiling ([#​1481](https://redirect.github.com/getsentry/sentry-python/issues/1481)) by [@​szokeasaurusrex](https://redirect.github.com/szokeasaurusrex) - Fixed problem with broken response and python-multipart ([#​1516](https://redirect.github.com/getsentry/sentry-python/issues/1516)) by [@​antonpirker](https://redirect.github.com/antonpirker) ### [`v1.8.0`](https://redirect.github.com/getsentry/sentry-python/blob/HEAD/CHANGELOG.md#180) [Compare Source](https://redirect.github.com/getsentry/sentry-python/compare/1.7.2...1.8.0) ##### Various fixes & improvements - feat(starlette): add Starlette integration ([#​1441](https://redirect.github.com/getsentry/sentry-python/issues/1441)) by [@​sl0thentr0py](https://redirect.github.com/sl0thentr0py) **Important:** Remove manual usage of `SentryAsgiMiddleware`! This is now done by the Starlette integration. Usage: ```python from starlette.applications import Starlette from sentry_sdk.integrations.starlette import StarletteIntegration sentry_sdk.init( dsn="...", integrations=[StarletteIntegration()], ) app = Starlette(debug=True, routes=[...]) ``` - feat(fastapi): add FastAPI integration ([#​829](https://redirect.github.com/getsentry/sentry-python/issues/829)) by [@​antonpirker](https://redirect.github.com/antonpirker) **Important:** Remove manual usage of `SentryAsgiMiddleware`! This is now done by the FastAPI integration. Usage: ```python from fastapi import FastAPI from sentry_sdk.integrations.starlette import StarletteIntegration from sentry_sdk.integrations.fastapi import FastApiIntegration sentry_sdk.init( dsn="...", integrations=[StarletteIntegration(), FastApiIntegration()], ) app = FastAPI() ``` Yes, you have to add both, the `StarletteIntegration` **AND** the `FastApiIntegration`! - fix: avoid sending empty Baggage header ([#​1507](https://redirect.github.com/getsentry/sentry-python/issues/1507)) by [@​intgr](https://redirect.github.com/intgr) - fix: properly freeze Baggage object ([#​1508](https://redirect.github.com/getsentry/sentry-python/issues/1508)) by [@​intgr](https://redirect.github.com/intgr) - docs: fix simple typo, collecter | collector ([#​1505](https://redirect.github.com/getsentry/sentry-python/issues/1505)) by [@​timgates42](https://redirect.github.com/timgates42) ### [`v1.7.2`](https://redirect.github.com/getsentry/sentry-python/blob/HEAD/CHANGELOG.md#172) [Compare Source](https://redirect.github.com/getsentry/sentry-python/compare/1.7.1...1.7.2) ##### Various fixes & improvements - feat(transactions): Transaction Source ([#​1490](https://redirect.github.com/getsentry/sentry-python/issues/1490)) by [@​antonpirker](https://redirect.github.com/antonpirker) - Removed (unused) sentry_timestamp header ([#​1494](https://redirect.github.com/getsentry/sentry-python/issues/1494)) by [@​antonpirker](https://redirect.github.com/antonpirker) ### [`v1.7.1`](https://redirect.github.com/getsentry/sentry-python/blob/HEAD/CHANGELOG.md#171) [Compare Source](https://redirect.github.com/getsentry/sentry-python/compare/1.7.0...1.7.1) ##### Various fixes & improvements - Skip malformed baggage items ([#​1491](https://redirect.github.com/getsentry/sentry-python/issues/1491)) by [@​robyoung](https://redirect.github.com/robyoung) ### [`v1.7.0`](https://redirect.github.com/getsentry/sentry-python/blob/HEAD/CHANGELOG.md#170) [Compare Source](https://redirect.github.com/getsentry/sentry-python/compare/1.6.0...1.7.0) ##### Various fixes & improvements - feat(tracing): Dynamic Sampling Context / Baggage continuation ([#​1485](https://redirect.github.com/getsentry/sentry-python/issues/1485)) by [@​sl0thentr0py](https://redirect.github.com/sl0thentr0py) The SDK now propagates the [W3C Baggage Header](https://www.w3.org/TR/baggage/) from incoming transactions to outgoing requests. It also extracts Sentry specific [sampling information](https://develop.sentry.dev/sdk/performance/dynamic-sampling-context/) and adds it to the transaction headers to enable Dynamic Sampling in the product. ### [`v1.6.0`](https://redirect.github.com/getsentry/sentry-python/blob/HEAD/CHANGELOG.md#160) [Compare Source](https://redirect.github.com/getsentry/sentry-python/compare/1.5.12...1.6.0) ##### Various fixes & improvements - Fix Deployment ([#​1474](https://redirect.github.com/getsentry/sentry-python/issues/1474)) by [@​antonpirker](https://redirect.github.com/antonpirker) - Serverless V2 ([#​1450](https://redirect.github.com/getsentry/sentry-python/issues/1450)) by [@​antonpirker](https://redirect.github.com/antonpirker) - Use logging levelno instead of levelname. Levelnames can be overridden ([#​1449](https://redirect.github.com/getsentry/sentry-python/issues/1449)) by [@​rrauenza](https://redirect.github.com/rrauenza)

Configuration

πŸ“… Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

β™» Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

πŸ”• Ignore: Close this PR and you won't be reminded about these updates again.

This PR was generated by Mend Renovate. View the repository job log.