Bump io.sentry:sentry from 8.5.0 to 8.6.0

[dependabot]

Bumps io.sentry:sentry from 8.5.0 to 8.6.0.

Release notes

Sourced from io.sentry:sentry's releases.

8.6.0

Behavioral Changes

• The Sentry SDK will now crash on startup if mixed versions have been detected (#4277)
  • On Sentry.init / SentryAndroid.init the SDK now checks if all Sentry Java / Android SDK dependencies have the same version.
  • While this may seem like a bad idea at first glance, mixing versions of dependencies has a very high chance of causing a crash later. We opted for a controlled crash that's hard to miss.
  • Note: This detection only works for new versions of the SDK, so please take this as a reminder to check your SDK version alignment manually when upgrading the SDK to this version and then you should be good.
  • The SDK will also print log messages if mixed versions have been detected at a later point. (#4270)
    • This takes care of cases missed by the startup check above due to older versions.

Features

• Increase http timeouts from 5s to 30s to have a better chance of events being delivered without retry (#4276)
• Add MANIFEST.MF to Sentry JARs (#4272)
• Retain baggage sample rate/rand values as doubles (#4279)
• Introduce fatal SDK logger (#4288)
  • We use this to print out messages when there is a problem that prevents the SDK from working correctly.
  • One example for this is when the SDK has been configured with mixed dependency versions where we print out details, which module and version are affected.

Fixes

• Do not override user-defined SentryOptions (#4262)
• Session Replay: Change bitmap config to ARGB_8888 for screenshots (#4282)
• The MANIFEST.MF of sentry-opentelemetry-agent now has Implementation-Version set to the raw version (#4291)
  • An example value would be 8.6.0
  • The value of the Sentry-Version-Name attribute looks like sentry-8.5.0-otel-2.10.0
• Fix tags missing for compose view hierarchies (#4275)
• Do not leak SentryFileInputStream/SentryFileOutputStream descriptors and channels (#4296)
• Remove "not yet implemented" from Sentry.flush comment (#4305)

Internal

• Added platform to SentryEnvelopeItemHeader (#4287)
  • Set android platform to ProfileChunk envelope item header

Dependencies

• Bump Native SDK from v0.8.1 to v0.8.3 (#4267, #4298)
  • changelog
  • diff
• Bump Spring Boot from 2.7.5 to 2.7.18 (#3496)

Changelog

Sourced from io.sentry:sentry's changelog.

8.6.0

Behavioral Changes

• The Sentry SDK will now crash on startup if mixed versions have been detected (#4277)
  • On Sentry.init / SentryAndroid.init the SDK now checks if all Sentry Java / Android SDK dependencies have the same version.
  • While this may seem like a bad idea at first glance, mixing versions of dependencies has a very high chance of causing a crash later. We opted for a controlled crash that's hard to miss.
  • Note: This detection only works for new versions of the SDK, so please take this as a reminder to check your SDK version alignment manually when upgrading the SDK to this version and then you should be good.
  • The SDK will also print log messages if mixed versions have been detected at a later point. (#4270)
    • This takes care of cases missed by the startup check above due to older versions.

Features

• Increase http timeouts from 5s to 30s to have a better chance of events being delivered without retry (#4276)
• Add MANIFEST.MF to Sentry JARs (#4272)
• Retain baggage sample rate/rand values as doubles (#4279)
• Introduce fatal SDK logger (#4288)
  • We use this to print out messages when there is a problem that prevents the SDK from working correctly.
  • One example for this is when the SDK has been configured with mixed dependency versions where we print out details, which module and version are affected.

Fixes

• Do not override user-defined SentryOptions (#4262)
• Session Replay: Change bitmap config to ARGB_8888 for screenshots (#4282)
• The MANIFEST.MF of sentry-opentelemetry-agent now has Implementation-Version set to the raw version (#4291)
  • An example value would be 8.6.0
  • The value of the Sentry-Version-Name attribute looks like sentry-8.5.0-otel-2.10.0
• Fix tags missing for compose view hierarchies (#4275)
• Do not leak SentryFileInputStream/SentryFileOutputStream descriptors and channels (#4296)
• Remove "not yet implemented" from Sentry.flush comment (#4305)

Internal

• Added platform to SentryEnvelopeItemHeader (#4287)
  • Set android platform to ProfileChunk envelope item header

Dependencies

• Bump Native SDK from v0.8.1 to v0.8.3 (#4267, #4298)
  • changelog
  • diff
• Bump Spring Boot from 2.7.5 to 2.7.18 (#3496)

Commits

• 8875a00 release: 8.6.0
• 0d0e1d3 chore(deps): update Native SDK to v0.8.3 (#4298)
• 708d339 Remove "not yet implemented" from flush comments (#4305)
• de2136e fix(file-io): Do not leak SentryFileInputStream/SentryFileOutputStream descri...
• 4762170 Bump actions/create-github-app-token from 1.11.7 to 1.12.0 (#4302)
• 008761b Bump gradle/actions (#4299)
• a1ad6ae Bump github/codeql-action from 3.28.12 to 3.28.13 (#4300)
• 70afa2e Bump reactivecircus/android-emulator-runner from 2.33.0 to 2.34.0 (#4301)
• 5b39391 Fix tags missing for compose view hierarchies (#4275)
• 087248f Add tests for checking mixed versions (#4292)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)