Bump sentry.version from 8.35.0 to 8.36.0

[dependabot]

Bumps sentry.version from 8.35.0 to 8.36.0.
Updates io.sentry:sentry from 8.35.0 to 8.36.0

Release notes

Sourced from io.sentry:sentry's releases.

8.36.0

Features

• Show feedback form on device shake (#5150)
  • Enable via options.getFeedbackOptions().setUseShakeGesture(true) or manifest meta-data io.sentry.feedback.use-shake-gesture
  • Uses the device's accelerometer — no special permissions required

Fixes

• Support masking/unmasking and click/scroll detection for Jetpack Compose 1.10+ (#5189)

Dependencies

• Bump Native SDK from v0.13.1 to v0.13.2 (#5181)
  • changelog
  • diff
• Bump com.abovevacant:epitaph to 0.1.1 to avoid old D8/R8 dexing crashes in downstream Android builds on old AGP versions such as 7.4.x. (#5200)
  • changelog
  • diff

Changelog

Sourced from io.sentry:sentry's changelog.

8.36.0

Features

• Show feedback form on device shake (#5150)
  • Enable via options.getFeedbackOptions().setUseShakeGesture(true) or manifest meta-data io.sentry.feedback.use-shake-gesture
  • Uses the device's accelerometer — no special permissions required

Fixes

• Support masking/unmasking and click/scroll detection for Jetpack Compose 1.10+ (#5189)

Dependencies

• Bump Native SDK from v0.13.1 to v0.13.2 (#5181)
  • changelog
  • diff
• Bump com.abovevacant:epitaph to 0.1.1 to avoid old D8/R8 dexing crashes in downstream Android builds on old AGP versions such as 7.4.x. (#5200)
  • changelog
  • diff

Commits

• c40144a release: 8.36.0
• 28b6988 feat(feedback): implement shake gesture detection (#5150)
• 9c1b406 Support apps compiled against Jetpack Compose 1.10 (#5189)
• 37ec571 fix(android): bump epitaph to 0.1.1 (#5200)
• 5914404 Add AI rules files for Profiling (#5034)
• b4edb46 chore: update scripts/update-sentry-native-ndk.sh to 0.13.2 (#5181)
• 5183932 build(deps): bump github/codeql-action from 4.32.4 to 4.32.6 (#5170)
• 01540d6 build(deps): bump dorny/paths-filter from 3.0.2 to 4.0.1 (#5195)
• adaff66 build(deps): bump actions/create-github-app-token from 2.2.1 to 3.0.0 (#5196)
• 139023e build(deps): bump getsentry/craft from 2.23.1 to 2.24.1 (#5197)
• Additional commits viewable in compare view

Updates io.sentry:sentry-jdbc from 8.35.0 to 8.36.0

Release notes

Sourced from io.sentry:sentry-jdbc's releases.

8.36.0

Features

• Show feedback form on device shake (#5150)
  • Enable via options.getFeedbackOptions().setUseShakeGesture(true) or manifest meta-data io.sentry.feedback.use-shake-gesture
  • Uses the device's accelerometer — no special permissions required

Fixes

• Support masking/unmasking and click/scroll detection for Jetpack Compose 1.10+ (#5189)

Dependencies

• Bump Native SDK from v0.13.1 to v0.13.2 (#5181)
  • changelog
  • diff
• Bump com.abovevacant:epitaph to 0.1.1 to avoid old D8/R8 dexing crashes in downstream Android builds on old AGP versions such as 7.4.x. (#5200)
  • changelog
  • diff

Changelog

Sourced from io.sentry:sentry-jdbc's changelog.

8.36.0

Features

• Show feedback form on device shake (#5150)
  • Enable via options.getFeedbackOptions().setUseShakeGesture(true) or manifest meta-data io.sentry.feedback.use-shake-gesture
  • Uses the device's accelerometer — no special permissions required

Fixes

• Support masking/unmasking and click/scroll detection for Jetpack Compose 1.10+ (#5189)

Dependencies

• Bump Native SDK from v0.13.1 to v0.13.2 (#5181)
  • changelog
  • diff
• Bump com.abovevacant:epitaph to 0.1.1 to avoid old D8/R8 dexing crashes in downstream Android builds on old AGP versions such as 7.4.x. (#5200)
  • changelog
  • diff

Commits

• c40144a release: 8.36.0
• 28b6988 feat(feedback): implement shake gesture detection (#5150)
• 9c1b406 Support apps compiled against Jetpack Compose 1.10 (#5189)
• 37ec571 fix(android): bump epitaph to 0.1.1 (#5200)
• 5914404 Add AI rules files for Profiling (#5034)
• b4edb46 chore: update scripts/update-sentry-native-ndk.sh to 0.13.2 (#5181)
• 5183932 build(deps): bump github/codeql-action from 4.32.4 to 4.32.6 (#5170)
• 01540d6 build(deps): bump dorny/paths-filter from 3.0.2 to 4.0.1 (#5195)
• adaff66 build(deps): bump actions/create-github-app-token from 2.2.1 to 3.0.0 (#5196)
• 139023e build(deps): bump getsentry/craft from 2.23.1 to 2.24.1 (#5197)
• Additional commits viewable in compare view

Updates io.sentry:sentry-quartz from 8.35.0 to 8.36.0

Release notes

Sourced from io.sentry:sentry-quartz's releases.

8.36.0

Features

• Show feedback form on device shake (#5150)
  • Enable via options.getFeedbackOptions().setUseShakeGesture(true) or manifest meta-data io.sentry.feedback.use-shake-gesture
  • Uses the device's accelerometer — no special permissions required

Fixes

• Support masking/unmasking and click/scroll detection for Jetpack Compose 1.10+ (#5189)

Dependencies

• Bump Native SDK from v0.13.1 to v0.13.2 (#5181)
  • changelog
  • diff
• Bump com.abovevacant:epitaph to 0.1.1 to avoid old D8/R8 dexing crashes in downstream Android builds on old AGP versions such as 7.4.x. (#5200)
  • changelog
  • diff

Changelog

Sourced from io.sentry:sentry-quartz's changelog.

8.36.0

Features

• Show feedback form on device shake (#5150)
  • Enable via options.getFeedbackOptions().setUseShakeGesture(true) or manifest meta-data io.sentry.feedback.use-shake-gesture
  • Uses the device's accelerometer — no special permissions required

Fixes

• Support masking/unmasking and click/scroll detection for Jetpack Compose 1.10+ (#5189)

Dependencies

• Bump Native SDK from v0.13.1 to v0.13.2 (#5181)
  • changelog
  • diff
• Bump com.abovevacant:epitaph to 0.1.1 to avoid old D8/R8 dexing crashes in downstream Android builds on old AGP versions such as 7.4.x. (#5200)
  • changelog
  • diff

Commits

• c40144a release: 8.36.0
• 28b6988 feat(feedback): implement shake gesture detection (#5150)
• 9c1b406 Support apps compiled against Jetpack Compose 1.10 (#5189)
• 37ec571 fix(android): bump epitaph to 0.1.1 (#5200)
• 5914404 Add AI rules files for Profiling (#5034)
• b4edb46 chore: update scripts/update-sentry-native-ndk.sh to 0.13.2 (#5181)
• 5183932 build(deps): bump github/codeql-action from 4.32.4 to 4.32.6 (#5170)
• 01540d6 build(deps): bump dorny/paths-filter from 3.0.2 to 4.0.1 (#5195)
• adaff66 build(deps): bump actions/create-github-app-token from 2.2.1 to 3.0.0 (#5196)
• 139023e build(deps): bump getsentry/craft from 2.23.1 to 2.24.1 (#5197)
• Additional commits viewable in compare view

Updates io.sentry:sentry-spring-boot-4-starter from 8.35.0 to 8.36.0

Release notes

Sourced from io.sentry:sentry-spring-boot-4-starter's releases.

8.36.0

Features

• Show feedback form on device shake (#5150)
  • Enable via options.getFeedbackOptions().setUseShakeGesture(true) or manifest meta-data io.sentry.feedback.use-shake-gesture
  • Uses the device's accelerometer — no special permissions required

Fixes

• Support masking/unmasking and click/scroll detection for Jetpack Compose 1.10+ (#5189)

Dependencies

• Bump Native SDK from v0.13.1 to v0.13.2 (#5181)
  • changelog
  • diff
• Bump com.abovevacant:epitaph to 0.1.1 to avoid old D8/R8 dexing crashes in downstream Android builds on old AGP versions such as 7.4.x. (#5200)
  • changelog
  • diff

Changelog

Sourced from io.sentry:sentry-spring-boot-4-starter's changelog.

8.36.0

Features

• Show feedback form on device shake (#5150)
  • Enable via options.getFeedbackOptions().setUseShakeGesture(true) or manifest meta-data io.sentry.feedback.use-shake-gesture
  • Uses the device's accelerometer — no special permissions required

Fixes

• Support masking/unmasking and click/scroll detection for Jetpack Compose 1.10+ (#5189)

Dependencies

• Bump Native SDK from v0.13.1 to v0.13.2 (#5181)
  • changelog
  • diff
• Bump com.abovevacant:epitaph to 0.1.1 to avoid old D8/R8 dexing crashes in downstream Android builds on old AGP versions such as 7.4.x. (#5200)
  • changelog
  • diff

Commits

• c40144a release: 8.36.0
• 28b6988 feat(feedback): implement shake gesture detection (#5150)
• 9c1b406 Support apps compiled against Jetpack Compose 1.10 (#5189)
• 37ec571 fix(android): bump epitaph to 0.1.1 (#5200)
• 5914404 Add AI rules files for Profiling (#5034)
• b4edb46 chore: update scripts/update-sentry-native-ndk.sh to 0.13.2 (#5181)
• 5183932 build(deps): bump github/codeql-action from 4.32.4 to 4.32.6 (#5170)
• 01540d6 build(deps): bump dorny/paths-filter from 3.0.2 to 4.0.1 (#5195)
• adaff66 build(deps): bump actions/create-github-app-token from 2.2.1 to 3.0.0 (#5196)
• 139023e build(deps): bump getsentry/craft from 2.23.1 to 2.24.1 (#5197)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

Dependency Review

The following issues were found:

• ✅ 0 vulnerable package(s)
• ✅ 0 package(s) with incompatible licenses
• ✅ 0 package(s) with invalid SPDX license definitions
• ⚠️ 4 package(s) with unknown licenses.

See the Details below.

Snapshot Warnings

⚠️: No snapshots were found for the head SHA 9302c58.

Ensure that dependencies are being submitted on PR branches and consider enabling retry-on-snapshot-warnings. See the documentation for more information and troubleshooting advice.

License Issues

pom.xml

Package	Version	License	Issue Type
io.sentry:sentry	8.36.0	Null	Unknown License
io.sentry:sentry-jdbc	8.36.0	Null	Unknown License
io.sentry:sentry-quartz	8.36.0	Null	Unknown License
io.sentry:sentry-spring-boot-4-starter	8.36.0	Null	Unknown License

Allowed Licenses:

MIT, Apache-2.0, BSD-2-Clause, BSD-3-Clause, ISC, MPL-2.0, LGPL-2.1-only, EPL-2.0, EPL-1.0

Excluded from license check:

pkg:maven/org.eclipse.angus/jakarta.mail@2.0.5?type=jar, pkg:maven/jakarta.ws.rs:jakarta.ws.rs-api@4.0.0?type=jar

OpenSSF Scorecard

Package	Version	Score	Details
maven/io.sentry:sentry	8.36.0	🟢 5.7	Details Check Score Reason Code-Review 🟢 7 Found 18/24 approved changesets -- score normalized to 7 Maintained 🟢 10 30 commit(s) and 24 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts 🟢 8 binaries present in source code License 🟢 10 license file detected Pinned-Dependencies 🟢 5 dependency not pinned by hash detected -- score normalized to 5 Fuzzing ⚠️ 0 project is not fuzzed Security-Policy 🟢 10 security policy file detected Branch-Protection 🟢 4 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ 0 Project has not signed or included provenance with any releases. SAST 🟢 7 SAST tool detected but not run on all commits
maven/io.sentry:sentry-jdbc	8.36.0	🟢 5.7	Details Check Score Reason Code-Review 🟢 7 Found 18/24 approved changesets -- score normalized to 7 Maintained 🟢 10 30 commit(s) and 24 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts 🟢 8 binaries present in source code License 🟢 10 license file detected Pinned-Dependencies 🟢 5 dependency not pinned by hash detected -- score normalized to 5 Fuzzing ⚠️ 0 project is not fuzzed Security-Policy 🟢 10 security policy file detected Branch-Protection 🟢 4 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ 0 Project has not signed or included provenance with any releases. SAST 🟢 7 SAST tool detected but not run on all commits
maven/io.sentry:sentry-quartz	8.36.0	🟢 5.7	Details Check Score Reason Code-Review 🟢 7 Found 18/24 approved changesets -- score normalized to 7 Maintained 🟢 10 30 commit(s) and 24 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts 🟢 8 binaries present in source code License 🟢 10 license file detected Pinned-Dependencies 🟢 5 dependency not pinned by hash detected -- score normalized to 5 Fuzzing ⚠️ 0 project is not fuzzed Security-Policy 🟢 10 security policy file detected Branch-Protection 🟢 4 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ 0 Project has not signed or included provenance with any releases. SAST 🟢 7 SAST tool detected but not run on all commits
maven/io.sentry:sentry-spring-boot-4-starter	8.36.0	🟢 5.7	Details Check Score Reason Code-Review 🟢 7 Found 18/24 approved changesets -- score normalized to 7 Maintained 🟢 10 30 commit(s) and 24 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts 🟢 8 binaries present in source code License 🟢 10 license file detected Pinned-Dependencies 🟢 5 dependency not pinned by hash detected -- score normalized to 5 Fuzzing ⚠️ 0 project is not fuzzed Security-Policy 🟢 10 security policy file detected Branch-Protection 🟢 4 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ 0 Project has not signed or included provenance with any releases. SAST 🟢 7 SAST tool detected but not run on all commits

Scanned Files

• pom.xml

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ All tests successful. No failed tests found.

@@          Coverage Diff           @@
##             main   #1653   +/-   ##
======================================
  Coverage      78%     78%           
  Complexity    130     130           
======================================
  Files         158     158           
  Lines        7764    7764           
  Branches      709     709           
======================================
  Hits         6016    6016           
  Misses       1332    1332           
  Partials      416     416           

🚀 New features to boost your workflow:

• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[mprins]

@dependabot rebase

[dependabot]

Looks like this PR is already up-to-date with main! If you'd still like to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.