Bump the dev-dependencies group with 3 updates

[dependabot]

Updates the requirements on @sentry/browser, @sentry/cli and web-ext to permit the latest version.
Updates @sentry/browser to 10.22.0

Release notes

Sourced from @​sentry/browser's releases.

10.22.0

Important Changes

• feat(node): Instrument cloud functions for firebase v2 (#17952)

  We added instrumentation for Cloud Functions for Firebase v2, enabling automatic performance tracking and error monitoring. This will be added automatically if you have enabled tracing.

• feat(core): Instrument LangChain AI (#17955)

  Instrumentation was added for LangChain AI operations. You can configure what is recorded like this:

  Sentry.init({
    integrations: [
      Sentry.langChainIntegration({
        recordInputs: true, // Record prompts/messages
        recordOutputs: true, // Record responses
      }),
    ],
  });

Other Changes

• feat(cloudflare,vercel-edge): Add support for LangChain instrumentation (#17986)
• feat: Align sentry origin with documentation (#17998)
• feat(core): Truncate request messages in AI integrations (#17921)
• feat(nextjs): Support node runtime on proxy files (#17995)
• feat(node): Pass requestHook and responseHook option to OTel (#17996)
• fix(core): Fix wrong async types when instrumenting anthropic's stream api (#18007)
• fix(nextjs): Remove usage of chalk to avoid runtime errors (#18010)
• fix(node): Pino capture serialized err (#17999)
• fix(node): Pino child loggers (#17934)
• fix(react): Don't trim index route / when getting pathname (#17985)
• fix(react): Patch spanEnd for potentially cancelled lazy-route transactions (#17962)

• chore: Add required size_check for GH Actions (#18009)
• chore: Upgrade madge to v8 (#17957)
• test(hono): Fix hono e2e tests (#18000)
• test(react-router): Fix getMetaTagTransformer tests for Vitest compatibility (#18013)
• test(react): Add parameterized route tests for createHashRouter (#17789)

Bundle size 📦

| Path | Size |

... (truncated)

Changelog

Sourced from @​sentry/browser's changelog.

10.22.0

Important Changes

• feat(node): Instrument cloud functions for firebase v2 (#17952)

  We added instrumentation for Cloud Functions for Firebase v2, enabling automatic performance tracking and error monitoring. This will be added automatically if you have enabled tracing.

• feat(core): Instrument LangChain AI (#17955)

  Instrumentation was added for LangChain AI operations. You can configure what is recorded like this:

  Sentry.init({
    integrations: [
      Sentry.langChainIntegration({
        recordInputs: true, // Record prompts/messages
        recordOutputs: true, // Record responses
      }),
    ],
  });

Other Changes

• feat(cloudflare,vercel-edge): Add support for LangChain instrumentation (#17986)
• feat: Align sentry origin with documentation (#17998)
• feat(core): Truncate request messages in AI integrations (#17921)
• feat(nextjs): Support node runtime on proxy files (#17995)
• feat(node): Pass requestHook and responseHook option to OTel (#17996)
• fix(core): Fix wrong async types when instrumenting anthropic's stream api (#18007)
• fix(nextjs): Remove usage of chalk to avoid runtime errors (#18010)
• fix(node): Pino capture serialized err (#17999)
• fix(node): Pino child loggers (#17934)
• fix(react): Don't trim index route / when getting pathname (#17985)
• fix(react): Patch spanEnd for potentially cancelled lazy-route transactions (#17962)

• chore: Add required size_check for GH Actions (#18009)
• chore: Upgrade madge to v8 (#17957)
• test(hono): Fix hono e2e tests (#18000)
• test(react-router): Fix getMetaTagTransformer tests for Vitest compatibility (#18013)
• test(react): Add parameterized route tests for createHashRouter (#17789)

10.21.0

... (truncated)

Commits

• c6b99c0 release: 10.22.0
• 2bde42b Merge pull request #18017 from getsentry/prepare-release/10.22.0
• 8debb05 meta(changelog): Update changelog for 10.22.0
• fd26569 fix(react): Patch spanEnd for potentially cancelled lazy-route transactions...
• 9c0397c test(react-router): Fix getMetaTagTransformer tests for Vitest compatibilit...
• 0bac0ea test(react): Add parameterized route tests for createHashRouter (#17789)
• 1513161 chore: Add required size_check for GH Actions (#18009)
• 7d050b5 fix(core): Fix wrong async types when instrumenting anthropic's stream api (#...
• 925a4ea feat(cloudflare,vercel-edge): Add support for LangChain instrumentation (#17986)
• 7968cd8 fix(react): Don't trim index route / when getting pathname (#17985)
• Additional commits viewable in compare view

Updates @sentry/cli to 2.57.0

Release notes

Sourced from @​sentry/cli's releases.

2.57.0

New Features

• (JS API) Add projects field to SentryCliUploadSourceMapsOptions (#2856)

Deprecations

• Deprecated the upload-proguard subcommand's --app-id, --version, and --version-code flags (#2852), as we plan to remove these flags in Sentry CLI 3.x. Users should simply stop using the flags; the values specified there have never had an effect on deobfuscation, and are no longer visible in Sentry.
• Added a deprecation notice for release bundle uploads, a legacy method for uploading source maps (#2844). Release bundle uploads will be removed in Sentry CLI 3.x in favor of artifact bundles, the newer source map upload method introduced in Sentry version 23.6.2. Self-hosted users: You must upgrade to Sentry 23.6.2 or later before upgrading to Sentry CLI 3.x.

Fixes

• Fixed a bug where some log messages would not show up in CI environments or when redirecting stderr to a file (#2830). Specifically, this bug was affecting any subcommand that uses a progress bar, such as sentry-cli debug-files bundle-jvm and sentry-cli sourcemaps upload. Any stderr output during the progress bar was lost if stderr was redirected.

Changelog

Sourced from @​sentry/cli's changelog.

2.57.0

New Features

• (JS API) Add projects field to SentryCliUploadSourceMapsOptions (#2856)

Deprecations

• Deprecated the upload-proguard subcommand's --app-id, --version, and --version-code flags (#2852), as we plan to remove these flags in Sentry CLI 3.x. Users should simply stop using the flags; the values specified there have never had an effect on deobfuscation, and are no longer visible in Sentry.
• Added a deprecation notice for release bundle uploads, a legacy method for uploading source maps (#2844). Release bundle uploads will be removed in Sentry CLI 3.x in favor of artifact bundles, the newer source map upload method introduced in Sentry version 23.6.2. Self-hosted users: You must upgrade to Sentry 23.6.2 or later before upgrading to Sentry CLI 3.x.

Fixes

• Fixed a bug where some log messages would not show up in CI environments or when redirecting stderr to a file (#2830). Specifically, this bug was affecting any subcommand that uses a progress bar, such as sentry-cli debug-files bundle-jvm and sentry-cli sourcemaps upload. Any stderr output during the progress bar was lost if stderr was redirected.

2.56.1

Deprecations

• Added a deprecation notice for legacy uploading methods (#2836, #2837)
  • Support for these legacy uploading methods, required to upload to self-hosted Sentry servers below version 10.0.0, will be removed in the next major release (3.x). If you observe these new deprecation notices, we recommend upgrading your self-hosted Sentry server, or pinning Sentry CLI to a compatible version (2.x).
  • You may encounter these deprecation notices when uploading debug files or sourcemaps.

Fixes & improvements

• Fixed a bug with sourcemap injection (#2764) by @​szokeasaurusrex
  • This change ensures we do not attempt to associate multiple compiled sources with the same sourcemap. As there should be at most one sourcemap for each compiled source, associating multiple compiled sources with the same sourcemap would lead to an invalid state.
• Updated some outdated dependencies (#2816, #2818, and #2819)

2.56.0

Various fixes & improvements

• feat: auto-fetch head-ref from GitHub Actions in detached HEAD state (#2805) by @​runningcode
• feat: automatically fetch base SHA in GitHub Actions PR workflows (#2799) by @​runningcode
• feat(preprod): use deflated compression when creating the zip file (#2800) by @​trevor-e
• feat(preprod): make sure at least one app bundle is present for upload (#2795) by @​trevor-e
• feat(preprod): fail upload if app is missing Info.plist (#2793) by @​trevor-e
• feat: restore GitHub Actions base branch detection (#2792) by @​runningcode
• fix: lower log level for missing base ref detection (EME-369) (#2813) by @​runningcode
• fix: simplify debug logging for PR number detection (EME-362) (#2812) by @​runningcode
• fix: serialize VCS tests to prevent race conditions (EME-368) (#2811) by @​runningcode
• fix: Validate SENTRY_RELEASE environment variable (#2807) by @​szokeasaurusrex
• fix: use actual PR head SHA in GitHub Actions instead of merge commit (#2785) by @​runningcode
• fix: suppress warning messages in failing build upload tests (#2791) by @​runningcode

2.55.0

Various fixes & improvements

... (truncated)

Commits

• d92820d release: 2.57.0
• cf19858 meta(changelog): Polish changelog for release (#2861)
• ee76d61 build(deps): bump github/codeql-action from 4.30.8 to 4.30.9 (#2857)
• 34cf21d fix: Don't use hidden progress bar (#2830)
• 21febea fix(js): Add projects field to SentryCliUploadSourceMapsOptions (#2856)
• 62d4d68 build(deps): bump actions/setup-node from 5.0.0 to 6.0.0 (#2858)
• a47babb chore(preprod): Save images as original file format to ParsedAssets (#2859)
• b6d72df chore(proguard): Deprecate release association flags (#2852)
• 8ad27a9 chore(sourcemaps): Deprecate release bundle uploads (#2844)
• b867302 ref: Introduce non-empty types for UploadContext (#2846)
• Additional commits viewable in compare view

Updates web-ext to 9.1.0

Release notes

Sourced from web-ext's releases.

9.1.0

main changes

• web-ext lint: the linter now emits a warning when the add-on ID is missing in the manifest file (MISSING_ADDON_ID).

dependencies

• Updated: dependency addons-linter to 8.4.0 (#3543)
• Updated: dependency pino to 9.12.0 (#3525)

dev dependencies

• Updated: dependency @babel/core to 7.28.5 (#3544)
• Updated: dependency @babel/eslint-parser to 7.28.5 (#3542)
• Updated: dependency @babel/preset-env to 7.28.5 (#3541)
• Updated: dependency @commitlint/cli to 20.1.0 (#3527)
• Updated: dependency @commitlint/config-conventional (#3523)
• Updated: dependency chai to 6.2.0 (#3524)
• Updated: dependency mocha to 11.7.4 (#3529)

others

• Fixed: update the description of the sign command (#3537)

---

See all changes: mozilla/web-ext@9.0.0...9.1.0

Commits

• 6c2d222 9.1.0
• 6fbb675 chore(deps-dev): bump @​babel/eslint-parser from 7.28.4 to 7.28.5 (#3542)
• 64a83d9 chore(deps-dev): bump @​babel/preset-env from 7.28.3 to 7.28.5 (#3541)
• d7c3d2c chore(deps-dev): bump @​babel/core from 7.28.4 to 7.28.5 (#3544)
• 95aa5c7 chore(deps): bump addons-linter from 8.3.0 to 8.4.0 (#3543)
• 0348cd4 chore(deps): bump addons-linter from 8.2.0 to 8.3.0 (#3540)
• 74b8650 docs(sign): submit to AMO for signing so it can be installed in Firefox (#3537)
• 982a373 chore(deps): bump addons-linter from 8.1.0 to 8.2.0 (#3539)
• e4776c6 chore(deps): bump addons-linter from 8.0.0 to 8.1.0 (#3533)
• 294573d chore(deps-dev): bump mocha from 11.7.3 to 11.7.4 (#3529)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are no longer updatable, so this is no longer needed.