Bump sentry-sdk[flask] from 1.17.0 to 1.18.0

Created by: dependabot[bot]

Bumps sentry-sdk[flask] from 1.17.0 to 1.18.0.

Release notes

Sourced from sentry-sdk[flask]'s releases.

1.18.0

Various fixes & improvements

• New: Implement EventScrubber (#1943) by @​sl0thentr0py

  To learn more see our Scrubbing Sensitive Data documentation.

  Add a new EventScrubber class that scrubs certain potentially sensitive interfaces with a DEFAULT_DENYLIST. The default scrubber is automatically run if send_default_pii = False:

  import sentry_sdk
  from sentry_sdk.scrubber import EventScrubber
  sentry_sdk.init(
      # ...
      send_default_pii=False,
      event_scrubber=EventScrubber(),  # this is set by default
  )

  You can also pass in a custom denylist to the EventScrubber class and filter additional fields that you want.

  from sentry_sdk.scrubber import EventScrubber, DEFAULT_DENYLIST
  # custom denylist
  denylist = DEFAULT_DENYLIST + ["my_sensitive_var"]
  sentry_sdk.init(
      # ...
      send_default_pii=False,
      event_scrubber=EventScrubber(denylist=denylist),
  )

• New: Added new functions_to_trace option for central way of performance instrumentation (#1960) by @​antonpirker

  To learn more see our Tracing Options documentation.

  An optional list of functions that should be set up for performance monitoring. For each function in the list, a span will be created when the function is executed.

  functions_to_trace = [
      {"qualified_name": "tests.test_basics._hello_world_counter"},
      {"qualified_name": "time.sleep"},
      {"qualified_name": "collections.Counter.most_common"},
  ]
  sentry_sdk.init(
  # ...
  traces_sample_rate=1.0,
  functions_to_trace=functions_to_trace,
  )

... (truncated)

Changelog

Sourced from sentry-sdk[flask]'s changelog.

1.18.0

Various fixes & improvements

• New: Implement EventScrubber (#1943) by @​sl0thentr0py

  To learn more see our Scrubbing Sensitive Data documentation.

  Add a new EventScrubber class that scrubs certain potentially sensitive interfaces with a DEFAULT_DENYLIST. The default scrubber is automatically run if send_default_pii = False:

  import sentry_sdk
  from sentry_sdk.scrubber import EventScrubber
  sentry_sdk.init(
      # ...
      send_default_pii=False,
      event_scrubber=EventScrubber(),  # this is set by default
  )

  You can also pass in a custom denylist to the EventScrubber class and filter additional fields that you want.

  from sentry_sdk.scrubber import EventScrubber, DEFAULT_DENYLIST
  # custom denylist
  denylist = DEFAULT_DENYLIST + ["my_sensitive_var"]
  sentry_sdk.init(
      # ...
      send_default_pii=False,
      event_scrubber=EventScrubber(denylist=denylist),
  )

• New: Added new functions_to_trace option for central way of performance instrumentation (#1960) by @​antonpirker

  To learn more see our Tracing Options documentation.

  An optional list of functions that should be set up for performance monitoring. For each function in the list, a span will be created when the function is executed.

  functions_to_trace = [
      {"qualified_name": "tests.test_basics._hello_world_counter"},
      {"qualified_name": "time.sleep"},
      {"qualified_name": "collections.Counter.most_common"},
  ]
  sentry_sdk.init(
  # ...
  traces_sample_rate=1.0,
  functions_to_trace=functions_to_trace,

... (truncated)

Commits

• fefb454 Updated changelog
• 70cbb25 release: 1.18.0
• dc730ed Added new functions_to_trace option for celtral way of performance instrument...
• 8642de0 Update OSS licensing (#1973)
• 665ab60 Updated denylist to include other widely used cookies/headers (#1972)
• f9ec128 ref: Forward all sentry- baggage items (#1970)
• 5d3649d Better naming (#1962)
• b339d83 Implement EventScrubber (#1943)
• 871c437 fix(profiling): Handle non frame types in profiler (#1965)
• 439b3f7 fix(tests): Bad arq dependency in tests (#1966)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)