Skip to content

chore(deps): Bump express in test utils + e2e apps#19159

Merged
chargome merged 5 commits intodevelopfrom
cg/regexp-bump
Feb 4, 2026
Merged

chore(deps): Bump express in test utils + e2e apps#19159
chargome merged 5 commits intodevelopfrom
cg/regexp-bump

Conversation

@chargome
Copy link
Member

@chargome chargome commented Feb 4, 2026
edited by github-actions bot
Loading

Shuold get rid of warnings for vulnerable path-to-regexp version
https://github.com/getsentry/sentry-javascript/security/dependabot/452

Closes #19160 (added automatically)

@chargome chargome self-assigned this Feb 4, 2026
@github-actions github-actions bot mentioned this pull request Feb 4, 2026
Closed
cursor[bot]
cursor bot reviewed Feb 4, 2026
View reviewed changes
Copy link

@cursor cursor bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Cursor Bugbot has reviewed your changes and found 1 potential issue.

Bugbot Autofix is OFF. To automatically fix reported issues with Cloud Agents, enable Autofix in the Cursor dashboard.

@github-actions
Copy link
Contributor

github-actions bot commented Feb 4, 2026
edited
Loading

Codecov Results 📊

Generated by Codecov Action

@github-actions
Copy link
Contributor

github-actions bot commented Feb 4, 2026
edited
Loading

node-overhead report 🧳

Note: This is a synthetic benchmark with a minimal express app and does not necessarily reflect the real-world performance impact in an application.

Scenario Requests/s % of Baseline Prev. Requests/s Change %
GET Baseline 9,265 - 8,836 +5%
GET With Sentry 1,809 20% 1,670 +8%
GET With Sentry (error only) 6,112 66% 6,017 +2%
POST Baseline 1,215 - 1,171 +4%
POST With Sentry 607 50% 561 +8%
POST With Sentry (error only) 1,059 87% 1,027 +3%
MYSQL Baseline 3,392 - 3,273 +4%
MYSQL With Sentry 519 15% 369 +41%
MYSQL With Sentry (error only) 2,737 81% 2,733 +0%

View base workflow run

andreiborza
andreiborza reviewed Feb 4, 2026
View reviewed changes
package.json
"cliui/wrap-ansi": "7.0.0",
"sucrase": "getsentry/sucrase#es2020-polyfills"
"sucrase": "getsentry/sucrase#es2020-polyfills",
"**/express/path-to-regexp": "0.1.12"
Copy link
Member

@andreiborza andreiborza Feb 4, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

q: Do we actually need this dep resolution given we bumped all of the ones we use?

Copy link
Member Author

@chargome chargome Feb 4, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yeah we have this in transitive deps e.g. with ember cli but this is non-breaking

@Lms24 Lms24 mentioned this pull request Feb 4, 2026
Closed
@chargome chargome merged commit ca24c71 into develop Feb 4, 2026
213 checks passed
@chargome chargome deleted the cg/regexp-bump branch February 4, 2026 17:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@andreiborza andreiborza andreiborza left review comments

@cursor cursor[bot] cursor[bot] left review comments

@Lms24 Lms24 Lms24 approved these changes

@RulaKhaled RulaKhaled Awaiting requested review from RulaKhaled

@s1gr1d s1gr1d Awaiting requested review from s1gr1d

Assignees

@chargome chargome

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

chore(deps): Bump express in test utils + e2e apps

3 participants

@chargome @Lms24 @andreiborza