Skip to content

chore(deps): bump @opentelemetry/sdk-trace-node from 2.5.1 to 2.7.0#139

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/opentelemetry/sdk-trace-node-2.7.0
Open

chore(deps): bump @opentelemetry/sdk-trace-node from 2.5.1 to 2.7.0#139
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/opentelemetry/sdk-trace-node-2.7.0

Conversation

@dependabot
Copy link
Copy Markdown

@dependabot dependabot Bot commented on behalf of github Apr 20, 2026

Bumps @opentelemetry/sdk-trace-node from 2.5.1 to 2.7.0.

Release notes

Sourced from @​opentelemetry/sdk-trace-node's releases.

v2.7.0

2.7.0

🚀 Features

  • feat(sdk-logs): implement log creation metrics #6433 @​anuraaga
  • feat(sdk-metrics): add the cardinalitySelector argument to PeriodicExportingMetricReaders #6460 @​starzlocker
  • feat(opentelemetry-core): add extra checks on internal merge function for safety #6587 @​maryliag

🐛 Bug Fixes

  • fix(opentelemetry-resources): do not discard OTEL_RESOURCE_ATTRIBUTES when it contains empty kv pairs

🏠 Internal

v2.6.1

2.6.1

🐛 Bug Fixes

  • fix(opentelemetry-instrumentation): improve _warnOnPreloadedModules function not to show warning logs when the module is not marked as loaded #6095 @​rlj1202
  • fix(sdk-trace-base): derive internal SpanOptions from API type to prevent drift #6478 @​overbalance
  • fix(span): enforce attributePerEventCountLimit, attributePerLinkCountLimit, linkCountLimit, and attributeValueLengthLimit for event/link attributes #6479 @​overbalance

🏠 Internal

v2.6.0

2.6.0

💥 Breaking Changes

  • fix(resources): update OTEL_RESOURCE_ATTRIBUTESopen-telemetry/opentelemetry-specification#4856#6261 @​jacksonweber
    • Important: This fix is included in the "breaking changes" section because it can be breaking for some edge case usage of OTEL_RESOURCE_ATTRIBUTES:
      • export OTEL_RESOURCE_ATTRIBUTES=foo=bar,spam will now be fully ignored, because the spam entry is invalid (missing =). Per spec, any parsing error results in ignoring the entire environment variable.
      • export OTEL_RESOURCE_ATTRIBUTES='wat=" spaces "' will now result in {"wat": "\" spaces \""} with the double-quotes included in the value. Before this change the implementation included brittle double-quoting to allow leading and trailing whitespace in the value. To support leading or trailing whitespace now, you must percent-encode the whitespace. Internal whitespace still works without encoding, e.g. export OTEL_RESOURCE_ATTRIBUTES='green=eggs and ham'.

🚀 Features

... (truncated)

Changelog

Sourced from @​opentelemetry/sdk-trace-node's changelog.

2.7.0

🚀 Features

  • feat(sdk-logs): implement log creation metrics #6433 @​anuraaga
  • feat(sdk-metrics): add the cardinalitySelector argument to PeriodicExportingMetricReaders #6460 @​starzlocker
  • feat(opentelemetry-core): add extra checks on internal merge function for safety #6587 @​maryliag

🐛 Bug Fixes

  • fix(opentelemetry-resources): do not discard OTEL_RESOURCE_ATTRIBUTES when it contains empty kv pairs

🏠 Internal

2.6.1

🐛 Bug Fixes

  • fix(opentelemetry-instrumentation): improve _warnOnPreloadedModules function not to show warning logs when the module is not marked as loaded #6095 @​rlj1202
  • fix(sdk-trace-base): derive internal SpanOptions from API type to prevent drift #6478 @​overbalance
  • fix(span): enforce attributePerEventCountLimit, attributePerLinkCountLimit, linkCountLimit, and attributeValueLengthLimit for event/link attributes #6479 @​overbalance
  • fix(context-zone): guard onCancelTask against terminal-state tasks to prevent infinite loop with rc-align (Ant Design) in React 16 dev mode #6512 @​Renegade2345

🏠 Internal

2.6.0

💥 Breaking Changes

  • fix(resources): update OTEL_RESOURCE_ATTRIBUTESopen-telemetry/opentelemetry-specification#4856#6261 @​jacksonweber
    • Important: This fix is included in the "breaking changes" section because it can be breaking for some edge case usage of OTEL_RESOURCE_ATTRIBUTES:
      • export OTEL_RESOURCE_ATTRIBUTES=foo=bar,spam will now be fully ignored, because the spam entry is invalid (missing =). Per spec, any parsing error results in ignoring the entire environment variable.
      • export OTEL_RESOURCE_ATTRIBUTES='wat=" spaces "' will now result in {"wat": "\" spaces \""} with the double-quotes included in the value. Before this change the implementation included brittle double-quoting to allow leading and trailing whitespace in the value. To support leading or trailing whitespace now, you must percent-encode the whitespace. Internal whitespace still works without encoding, e.g. export OTEL_RESOURCE_ATTRIBUTES='green=eggs and ham'.

🚀 Features

🐛 Bug Fixes

  • fix(sdk-trace-base): enforce StatusCode precedence rules in setStatus per specification #6461 @​newbee1939

... (truncated)

Commits
  • a0476ee chore: prepare next release (#6603)
  • 6bc69c7 fix(instr-fetch): avoid unwrap fetch API (#6575)
  • 840f3d4 chore: re-arrange misplaced changelog entries (#6604)
  • 2da8d39 feat(configuration): refactoring config loader to print warning message for b...
  • 401af13 fix(deps): update dependency protobufjs to v8 (#6602)
  • 36e2a9a fix(opentelemetry-core): add extra checks on internal merge function for safe...
  • 8ee2a8b fix(web-common): add check for possible unsafe json parse (#6589)
  • f40fd24 fix(otlp-transformer): add check for possible unsafe json parse (#6588)
  • 394eeb0 chore: update changelog script (#6586)
  • 36ce569 feat(sdk-metrics): adds the cardinalitySelector argument to PeriodicExporting...
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
chore(deps): bump @opentelemetry/sdk-trace-node from 2.5.1 to 2.7.0
df69044 
Bumps [@opentelemetry/sdk-trace-node](https://github.com/open-telemetry/opentelemetry-js) from 2.5.1 to 2.7.0.
- [Release notes](https://github.com/open-telemetry/opentelemetry-js/releases)
- [Changelog](https://github.com/open-telemetry/opentelemetry-js/blob/main/CHANGELOG.md)
- [Commits](open-telemetry/opentelemetry-js@v2.5.1...v2.7.0)

---
updated-dependencies:
- dependency-name: "@opentelemetry/sdk-trace-node"
  dependency-version: 2.7.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Dependency updates security Security vulnerability labels Apr 20, 2026
@dependabot dependabot Bot mentioned this pull request Apr 20, 2026
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Dependency updates security Security vulnerability size/XS

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants