search

ovhemert / pino-applicationinsights

A transport for pino that sends messages to Azure Application Insights
MIT License
10 stars 12 forks source link

[Snyk] Upgrade applicationinsights from 2.1.4 to 2.3.1 #66

Closed snyk-bot closed 2 years ago

snyk-bot commented 2 years ago

Snyk has created this PR to upgrade applicationinsights from 2.1.4 to 2.3.1.

merge advice :information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Information Exposure
SNYK-JS-NODEFETCH-2342118		 325/1000
Why? CVSS 6.5		 No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes
Package name: applicationinsights
  • 2.3.1 - 2022-04-04

    #939 Bug fix affecting webpack bundling in latest version.

  • 2.3.0 - 2022-03-31

    #891 Adding Web Snippet injection feature
    #933, #932 Updated dependencies with security vulnerabilities
    #924 Change Statsbeat long metrics interval
    #923 Handle cls context bind errors #923
    #921 Do not add tracing headers in Azure SDK outgoing requests
    #922 Disable Statsbeat when endpoint is not accessible

  • 2.2.2 - 2022-03-02

    #919 Turn off Statsbeat when AMPLS is used
    #918 Shorten host property in network statsbeat
    #915 Bunyan error not sent correctly
    #911 Statsbeat do not count failed request when throttle
    #910 Do not retry on 439, quota reached

  • 2.2.1 - 2022-02-02

    #899 Update applicationinsights-native-metrics
    #897 Fix issue with Statsbeat instrumentation data
    #895 Ignore github files in npm package
    #893 Update deprecated dependencies
    #892 Fix context in Azure SDK auto generated telemetry
    #887 Adding sanitization of properties to avoid Breeze errors
    #885 Add path to http dependency when host is missing
    #884 Improve memory consumption when Live Metrics is enabled

  • 2.2.0 - 2021-12-08

    #875 #851 Add configuration support through JSON file
    #869 Add namespace for custom metrics
    #876 Remove azure/logger because of incompatibility with SDK

  • 2.1.9 - 2021-11-11

    #867 Handle JSON stringify errors
    #866 Allowing internal logs to be stored in local file
    #863 Only enable http Agent when calling Breeze
    #861 Generate correlation context for dependencies with no request associated
    #860 Fix issue with exception telemetry not being generated for Bunyan errors
    #859 Prevent CorrelationIdManager to block process termination
    #858 Check for clients in auto instrumentation subs
    #857 Statsbeat only send feature metrics when available
    #855 File protection check for disk storage only when enabled
    #854 SDK prevents app crash in Linux Azure App Services
    #850 Adding context to custom metrics sent for Statsbeat

  • 2.1.8 - 2021-09-28

    #841 Adding AAD handling
    #843 Allow AAD credential to be passed in Bootstrap
    #848 Updating SpanParser to latest AI mapping specs
    #847 Fix package.json dependency issues
    #845 Fix issue loading SDK version
    #844 Fix issue with some pre aggregated Metrics intervals
    #842 Azure VM error log only in debug mode

  • 2.1.7 - 2021-09-15

    #834 Update Azure SDK Span parsing
    #838 Use defaultClient.context in QuickPulseClient
    #836 Use Website instance ID when running in Azure
    #835 Statsbeat update function resource provider

  • 2.1.6 - 2021-08-26

    #814 Fix span parser
    #818 Prevent Azure SDK OT incompatibility to trigger errors
    #823 Add error in context so it can be used in telemetry Processors
    #819 Azure VM remove noise logs when running outside of VM
    #827 Allow disabling Http Agent keepalive though env variable

  • 2.1.5 - 2021-08-10
    Read more
  • 2.1.4 - 2021-07-12
from applicationinsights GitHub release notes
Commit messages
Package name: applicationinsights
  • c060888 2.3.1 release (#940)
  • 234ce7c fix injection error in bundle (#939)
  • 3582768 2.3.0 release (#937)
  • b3ad03c build(deps): bump ansi-regex from 3.0.0 to 3.0.1 (#932)
  • 78e0eb5 build(deps): bump minimist from 1.2.5 to 1.2.6 (#933)
  • 7ecd74f Add snippet injection readme (#934)
  • c4b5d32 Karlie/web snippet (#891)
  • ab135f7 Updating usage example in README.md (#931)
  • 3d1438b Change Statsbeat long metrics interval (#924)
  • 85066a5 Handle cls context bind errors (#923)
  • cc20002 Disable Statsbeat when endpoint is not accesible (#922)
  • ebebcca Do not add tracing headers in Azure SDK outgoing requests (#921)
  • 033d1f4 2.2.2 Release (#920)
  • 67b1859 Add node 16 in supported runtime matrix (#902)
  • f0262a1 Turn off Statsbeat when AMPLS is used (#919)
  • e8da01c Shorten host property in network statsbeat (#918)
  • a594935 Support Statsbeat in EU regions (#917)
  • cc3c2e7 Bunyan error not sent correctly (#915)
  • 811975d Statsbeat do not count failed request when throttle (#911)
  • 48f1281 Do not retry on 439, quota reached (#910)
  • 2763731 Add eslint validation (#905)
  • 6a10cd5 Add CodeQL workflow (#906)
  • d03bc8c Add codeql action (#904)
  • a160abb 2.2.1 release (#900)
Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

stale[bot] commented 2 years ago

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.