build(deps): bump io.sentry:sentry-bom from 6.34.0 to 7.1.0

[dependabot]

Bumps io.sentry:sentry-bom from 6.34.0 to 7.1.0.

Release notes

Sourced from io.sentry:sentry-bom's releases.

7.1.0

Features

• Support multiple debug-metadata.properties (#3024)
• Automatically downsample transactions when the system is under load (#3072)
  • You can opt into this behaviour by setting enable-backpressure-handling=true.
  • We're happy to receive feedback, e.g. in this GitHub issue
  • When the system is under load we start reducing the tracesSampleRate automatically.
  • Once the system goes back to healthy, we reset the tracesSampleRate to its original value.
• (Android) Experimental: Provide more detailed cold app start information (#3057)
  • Attaches spans for Application, ContentProvider, and Activities to app-start timings
  • Uses Process.startUptimeMillis to calculate app-start timings
  • To enable this feature set options.isEnablePerformanceV2 = true
• Move slow+frozen frame calculation, as well as frame delay inside SentryFrameMetricsCollector (#3100)
• Extract Activity Breadcrumbs generation into own Integration (#3064)

Fixes

• Send breadcrumbs and client error in SentryOkHttpEventListener even without transactions (#3087)
• Keep io.sentry.exception.SentryHttpClientException from obfuscation to display proper issue title on Sentry (#3093)
• (Android) Fix wrong activity transaction duration in case SDK init is deferred (#3092)

Dependencies

• Bump Gradle from v8.4.0 to v8.5.0 (#3070)
  • changelog
  • diff

7.0.0

Version 7 of the Sentry Android/Java SDK brings a variety of features and fixes. The most notable changes are:

• Bumping minSdk level to 19 (Android 4.4)
• The SDK will now listen to connectivity changes and try to re-upload cached events when internet connection is re-established additionally to uploading events on app restart
• Sentry.getSpan now returns the root transaction, which should improve the span hierarchy and make it leaner
• Multiple improvements to reduce probability of the SDK causing ANRs
• New sentry-okhttp artifact is unbundled from Android and can be used in pure JVM-only apps
  • Thanks @​ToppleTheNun for their contribution!

Sentry Self-hosted Compatibility

This SDK version is compatible with a self-hosted version of Sentry 22.12.0 or higher. If you are using an older version of self-hosted Sentry (aka onpremise), you will need to upgrade. If you're using sentry.io no action is required.

Sentry Integrations Version Compatibility (Android)

Make sure to align all Sentry dependencies to the same version when bumping the SDK to 7.+, otherwise it will crash at runtime due to binary incompatibility. (E.g. if you're using -timber, -okhttp or other packages)

For example, if you're using the Sentry Android Gradle plugin with the autoInstallation feature (enabled by default), make sure to use version 4.+ of the gradle plugin together with version 7.+ of the SDK. If you can't do that for some reason, you can specify sentry version via the plugin config block:

sentry {
  autoInstallation {
</tr></table> 

... (truncated)

Changelog

Sourced from io.sentry:sentry-bom's changelog.

7.1.0

Features

• Support multiple debug-metadata.properties (#3024)
• Automatically downsample transactions when the system is under load (#3072)
  • You can opt into this behaviour by setting enable-backpressure-handling=true.
  • We're happy to receive feedback, e.g. in this GitHub issue
  • When the system is under load we start reducing the tracesSampleRate automatically.
  • Once the system goes back to healthy, we reset the tracesSampleRate to its original value.
• (Android) Experimental: Provide more detailed cold app start information (#3057)
  • Attaches spans for Application, ContentProvider, and Activities to app-start timings
  • Uses Process.startUptimeMillis to calculate app-start timings
  • To enable this feature set options.isEnablePerformanceV2 = true
• Move slow+frozen frame calculation, as well as frame delay inside SentryFrameMetricsCollector (#3100)
• Extract Activity Breadcrumbs generation into own Integration (#3064)

Fixes

• Send breadcrumbs and client error in SentryOkHttpEventListener even without transactions (#3087)
• Keep io.sentry.exception.SentryHttpClientException from obfuscation to display proper issue title on Sentry (#3093)
• (Android) Fix wrong activity transaction duration in case SDK init is deferred (#3092)

Dependencies

• Bump Gradle from v8.4.0 to v8.5.0 (#3070)
  • changelog
  • diff

7.0.0

Version 7 of the Sentry Android/Java SDK brings a variety of features and fixes. The most notable changes are:

• Bumping minSdk level to 19 (Android 4.4)
• The SDK will now listen to connectivity changes and try to re-upload cached events when internet connection is re-established additionally to uploading events on app restart
• Sentry.getSpan now returns the root transaction, which should improve the span hierarchy and make it leaner
• Multiple improvements to reduce probability of the SDK causing ANRs
• New sentry-okhttp artifact is unbundled from Android and can be used in pure JVM-only apps

Sentry Self-hosted Compatibility

This SDK version is compatible with a self-hosted version of Sentry 22.12.0 or higher. If you are using an older version of self-hosted Sentry (aka onpremise), you will need to upgrade. If you're using sentry.io no action is required.

Sentry Integrations Version Compatibility (Android)

Make sure to align all Sentry dependencies to the same version when bumping the SDK to 7.+, otherwise it will crash at runtime due to binary incompatibility. (E.g. if you're using -timber, -okhttp or other packages)

For example, if you're using the Sentry Android Gradle plugin with the autoInstallation feature (enabled by default), make sure to use version 4.+ of the gradle plugin together with version 7.+ of the SDK. If you can't do that for some reason, you can specify sentry version via the plugin config block:

sentry {
</tr></table> 

... (truncated)

Commits

• e0ea698 release: 7.1.0
• eefb169 Fix wrong txn duration in case SDK init is deferred (#3092)
• 941e097 Bump reactivecircus/android-emulator-runner from 2.28.0 to 2.29.0 (#3089)
• 8a9c60a Bump gradle/gradle-build-action from 2.10.0 to 2.11.0 (#3105)
• 50836e5 Bump actions/setup-java from 3 to 4 (#3077)
• 216275a Bump actions/upload-artifact from 3 to 4 (#3104)
• 8ccdc9b Extract Activity Breadcrumbs generation into own Integration (#3064)
• 8ff8fd0 Automatically downsample transaction when system is under load (backpressure)...
• 8d62770 Move slow+frozen frame calculation, as well as frame delay inside SentryFrame...
• 7eccfdb [Starfish] Attach app-start spans (#3057)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will merge this PR once CI passes on it, as requested by @nixel2007.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Summary by CodeRabbit

• Refactor
  • Updated Sentry integration to enhance error tracking and reporting capabilities.

[ghost]

👇 Click on the image for a new way to code review

Legend

[nixel2007]

@coderabbitai review

[coderabbitai]

Important

Auto Review Skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

Walkthrough

The project's build configuration has been updated, specifically the Sentry Bill of Materials (BOM) which has been upgraded to a newer version. This suggests an enhancement in error tracking and performance monitoring capabilities provided by Sentry.

Changes

File	Change Summary
build.gradle.kts	Updated sentry-bom from 6.34.0 to 7.1.0

🐇✨
To the code that hops and runs without fail,
We've updated Sentry, set sail the digital trail.
May bugs fear to tread where our sentries roam,
In the land of the code, where the rabbits call home.
🚀🌟

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

Share

• X
• Mastodon
• Reddit
• LinkedIn

---

Tips

Chat with CodeRabbit Bot (@coderabbitai)

• You can directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>.
  • Generate unit-tests for this file.
• You can tag CodeRabbit on specific lines of code or entire files in the PR by tagging @coderabbitai in a comment. Examples:
  • @coderabbitai generate unit tests for this file
  • @coderabbitai modularize this function
• You can tag @coderabbitai in a PR comment and ask questions about the PR and the codebase. Examples:
  • @coderabbitai gather interesting statistics about this repository and render them in a table.
  • @coderabbitai show all the console.log statements in this repository.
  • @coderabbitai generate unit tests for the src/utils.ts file.

CodeRabbit Commands (invoked as PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger a review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai help to get help.

Additionally, you can add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.

CodeRabbit Configration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• The JSON schema for the configuration file is available here.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/coderabbit-overrides.v2.json

CodeRabbit Discord Community

Join our Discord Community to get help, request features, and share feedback.

[coderabbitai]

Review Status

Actionable comments generated: 0

Configuration used: CodeRabbit UI

Commits

Files that changed from the base of the PR and between 0c544f4 and 490c31e.

Files selected for processing (1)

• build.gradle.kts (1 hunks)

Files skipped from review due to trivial changes (1)

• build.gradle.kts

[nixel2007]

@dependabot merge

[github-actions]

Qodana Community for JVM

17 new problems were found

Inspection name	Severity	Problems
Statement with empty body	🔶 Warning	5
'@Serial' annotation could be used	🔶 Warning	4
Constant values	🔶 Warning	3
Mismatched query and update of collection	🔶 Warning	2
Class is exposed outside of its visibility scope	🔶 Warning	1
Nullability and data flow problems	🔶 Warning	1
Mismatched read and write of array	🔶 Warning	1

💡 Qodana analysis was run in the pull request mode: only the changed files were checked
☁️ View the detailed Qodana report

Contact Qodana team

Contact us at [email protected]

• Or via our issue tracker: https://jb.gg/qodana-issue
• Or share your feedback: https://jb.gg/qodana-discussions

[sonarqubecloud]

Quality Gate passed

Kudos, no new issues were introduced!

0 New issues
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud