⬆️(deps): Bump the security-updates group with 2 updates

[dependabot]

Bumps the security-updates group with 2 updates: @sentry/nextjs and lucide-react.

Updates @sentry/nextjs from 10.34.0 to 10.36.0

Release notes

Sourced from @​sentry/nextjs's releases.

10.36.0

• feat(node): Add Prisma v7 support (#18908)
• feat(opentelemetry): Support db.system.name attribute for database spans (#18902)
• feat(deps): Bump OpenTelemetry dependencies (#18878)
• fix(core): Sanitize data URLs in http.client spans (#18896)
• fix(nextjs): Add ALS runner fallbacks for serverless environments (#18889)
• fix(node): Profiling debug ID matching (#18817)

• chore(deps-dev): bump @​remix-run/server-runtime from 2.15.2 to 2.17.3 in /packages/remix (#18750)

Bundle size 📦

Path	Size
@​sentry/browser	24.61 KB
@​sentry/browser - with treeshaking flags	23.15 KB
@​sentry/browser (incl. Tracing)	41.04 KB
@​sentry/browser (incl. Tracing, Profiling)	45.56 KB
@​sentry/browser (incl. Tracing, Replay)	78.74 KB
@​sentry/browser (incl. Tracing, Replay) - with treeshaking flags	68.63 KB
@​sentry/browser (incl. Tracing, Replay with Canvas)	83.32 KB
@​sentry/browser (incl. Tracing, Replay, Feedback)	95.24 KB
@​sentry/browser (incl. Feedback)	40.94 KB
@​sentry/browser (incl. sendFeedback)	29.19 KB
@​sentry/browser (incl. FeedbackAsync)	34.07 KB
@​sentry/browser (incl. Metrics)	25.69 KB
@​sentry/browser (incl. Logs)	25.84 KB
@​sentry/browser (incl. Metrics & Logs)	26.48 KB
@​sentry/react	26.3 KB
@​sentry/react (incl. Tracing)	43.22 KB
@​sentry/vue	28.95 KB
@​sentry/vue (incl. Tracing)	42.79 KB
@​sentry/svelte	24.63 KB
CDN Bundle	27.13 KB
CDN Bundle (incl. Tracing)	41.83 KB
CDN Bundle (incl. Tracing, Logs, Metrics)	42.63 KB
CDN Bundle (incl. Tracing, Replay)	77.67 KB
CDN Bundle (incl. Tracing, Replay, Feedback)	82.98 KB
CDN Bundle (incl. Tracing, Replay, Feedback, Logs, Metrics)	83.87 KB
CDN Bundle - uncompressed	79.36 KB
CDN Bundle (incl. Tracing) - uncompressed	123.84 KB
CDN Bundle (incl. Tracing, Logs, Metrics) - uncompressed	126.61 KB
CDN Bundle (incl. Tracing, Replay) - uncompressed	237.64 KB
CDN Bundle (incl. Tracing, Replay, Feedback) - uncompressed	250.14 KB
CDN Bundle (incl. Tracing, Replay, Feedback, Logs, Metrics) - uncompressed	252.89 KB

... (truncated)

Changelog

Sourced from @​sentry/nextjs's changelog.

10.36.0

• feat(node): Add Prisma v7 support (#18908)
• feat(opentelemetry): Support db.system.name attribute for database spans (#18902)
• feat(deps): Bump OpenTelemetry dependencies (#18878)
• fix(core): Sanitize data URLs in http.client spans (#18896)
• fix(nextjs): Add ALS runner fallbacks for serverless environments (#18889)
• fix(node): Profiling debug ID matching

• chore(deps-dev): bump @​remix-run/server-runtime from 2.15.2 to 2.17.3 in /packages/remix (#18750)

10.35.0

Important Changes

• feat(tanstackstart-react): Add sentryTanstackStart vite plugin to manage automatic source map uploads (#18712)

  You can now configure source maps upload for TanStack Start using the sentryTanstackStart Vite plugin:

  // vite.config.ts
  import { defineConfig } from 'vite';
  import { sentryTanstackStart } from '@sentry/tanstackstart-react';
  import { tanstackStart } from '@tanstack/react-start/plugin/vite';
  export default defineConfig({
  plugins: [
  sentryTanstackStart({
  authToken: process.env.SENTRY_AUTH_TOKEN,
  org: 'your-org',
  project: 'your-project',
  }),
  tanstackStart(),
  ],
  });

Other Changes

• feat(browser): Add CDN bundle for tracing.replay.feedback.logs.metrics (#18785)
• feat(browser): Add shim package for logs (#18831)
• feat(cloudflare): Automatically set the release id when CF_VERSION_METADATA is enabled (#18855)
• feat(core): Add ignored client report event drop reason (#18815)
• feat(logs): Add Log exports to browser and node packages (#18857)
• feat(node-core,bun): Export processSessionIntegration from node-core and add it to bun (#18852)

... (truncated)

Commits

• 21ec8f1 release: 10.36.0
• d4660db meta(changelog): Update changelog for 10.36.0 (#18915)
• d185952 meta(changelog): Update changelog for 10.36.0
• ba390df fix(node): Profiling debug ID matching
• f66969d Merge branch 'develop' into timfish/fix/profiling-debug-images
• 6d9a7f7 PR reivew
• 65afa6a feat(node): Add Prisma v7 support (#18908)
• 4695148 fix(core): Sanitize data URLs in http.client spans (#18896)
• 2f0d9dc feat(opentelemetry): Support db.system.name attribute for database spans (#...
• 9115e19 feat(deps): Bump OpenTelemetry dependencies (#18878)
• Additional commits viewable in compare view

Updates lucide-react from 0.562.0 to 0.563.0

Release notes

Sourced from lucide-react's releases.

Version 0.563.0

What's Changed

aria-hidden is by default added to icons components in all packages. This was already added to lucide-react before. Making icons accessible, you can add an aria-label or a title. See docs about accessibility.

All changes

• chore(dev): Enable ligatures in font build configuration by @​dcxo in lucide-icons/lucide#3876
• chore(repo): add Android to brand stopwords by @​karsa-mistmere in lucide-icons/lucide#3895
• fix(site): add missing titles and a title template by @​taimar in lucide-icons/lucide#3920
• fix(site): unify and improve the styling of input fields by @​taimar in lucide-icons/lucide#3919
• fix(icons): changed star-off icon by @​jguddas in lucide-icons/lucide#3952
• fix(icons): changed tickets-plane icon by @​jguddas in lucide-icons/lucide#3928
• fix(icons): changed monitor-off icon by @​jguddas in lucide-icons/lucide#3962
• fix(icons): changed lasso icon by @​jguddas in lucide-icons/lucide#3961
• fix(icons): changed cloud-off icon by @​jguddas in lucide-icons/lucide#3942
• docs(site): added lucide-web-components third-party package by @​midesweb in lucide-icons/lucide#3948
• chore(deps-dev): bump preact from 10.27.2 to 10.27.3 by @​dependabot[bot] in lucide-icons/lucide#3955
• feat(icon): add globe-x icon with metadata by @​Muhammad-Aqib-Bashir in lucide-icons/lucide#3827
• fix(icons): changed waypoints icon by @​karsa-mistmere in lucide-icons/lucide#3990
• fix(icons): changed bookmark icon by @​jguddas in lucide-icons/lucide#2906
• fix(icons): changed message-square-dashed icon by @​jguddas in lucide-icons/lucide#3959
• fix(icons): changed cloudy icon by @​jguddas in lucide-icons/lucide#3966
• fix(github-actions): resolved spelling mistake in gh issue close command by @​jguddas in lucide-icons/lucide#4000
• Update LICENSE by @​alxgraphy in lucide-icons/lucide#4009
• feat(packages): Added aria-hidden fallback for decorative icons to all packages by @​ericfennis in lucide-icons/lucide#3604
• chore(deps): bump lodash from 4.17.21 to 4.17.23 by @​dependabot[bot] in lucide-icons/lucide#4020
• chore(deps): bump lodash-es from 4.17.21 to 4.17.23 by @​dependabot[bot] in lucide-icons/lucide#4019
• Suggest anchoring to a specific lucide version when using a cdn by @​drago1520 in lucide-icons/lucide#3727
• feat(docs): upgraded backers block by @​karsa-mistmere in lucide-icons/lucide#4014
• fix(site): hide native search input clear "X" icon by @​epifaniofrancisco in lucide-icons/lucide#3933
• feat(icons): added printer-x icon by @​lt25106 in lucide-icons/lucide#3941

New Contributors

• @​dcxo made their first contribution in lucide-icons/lucide#3876
• @​midesweb made their first contribution in lucide-icons/lucide#3948
• @​alxgraphy made their first contribution in lucide-icons/lucide#4009
• @​drago1520 made their first contribution in lucide-icons/lucide#3727
• @​lt25106 made their first contribution in lucide-icons/lucide#3941

Full Changelog: lucide-icons/lucide@0.562.0...0.563.0

Commits

• 67c0485 feat(scripts): added helper script to automatically update OpenCollective bac...
• b6ed43d feat(packages): Added aria-hidden fallback for decorative icons to all packag...
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.