Sourced from @​sentry/react's releases.

10.45.0

Important Changes

• feat(remix): Server Timing Headers Trace Propagation (#18653)

  The Remix SDK now supports automatic trace propagation via Server-Timing response headers to continue pageload traces on the client side. This means, you no longer have to define a custom meta function to add Sentry <meta> tags to your page as previously. We'll update out Remix tracing docs after this release.

Other Changes

• fix(cloudflare): Use correct env types for withSentry (#19836)
• fix(core): Align error span status message with core SpanStatusType for langchain/google-genai (#19863)
• fix(deno): Clear pre-existing OTel global before registering TracerProvider (#19723)
• fix(nextjs): Skip tracing for tunnel requests (#19861)
• fix(node-core): Recycle propagationContext for each request (#19835)
• ref(core): Simplify core utility functions for smaller bundle (#19854)

• chore(deps): bump next from 16.1.5 to 16.1.7 in /dev-packages/e2e-tests/test-applications/nextjs-16 (#19851)
• ci(release): Switch from action-prepare-release to Craft (#18763)
• fix(deps): bump devalue 5.6.3 to 5.6.4 to fix CVE-2026-30226 (#19849)
• fix(deps): bump file-type to 21.3.2 and @​nestjs/common to 11.1.17 (#19847)
• fix(deps): bump flatted 3.3.1 to 3.4.2 to fix CVE-2026-32141 (#19842)
• fix(deps): bump hono 4.12.5 to 4.12.7 in cloudflare-hono E2E test app (#19850)
• fix(deps): bump next to 15.5.13/16.1.7 to fix CVE-2026-1525, CVE-202-33036 and related (#19870)
• fix(deps): bump tar 7.5.10 to 7.5.11 to fix CVE-2026-31802 (#19846)
• fix(deps): bump undici 6.23.0 to 6.24.1 to fix multiple CVEs (#19841)
• fix(deps): bump unhead 2.1.4 to 2.1.12 to fix CVE-2026-31860 and CVE-2026-31873 (#19848)
• test(nextjs): Skip broken ISR tests (#19871)
• test(react): Add gql tests for react router (#19844)

Bundle size 📦

Path	Size
@​sentry/browser	24.93 KB
@​sentry/browser - with treeshaking flags	23.47 KB
@​sentry/browser (incl. Tracing)	41.51 KB
@​sentry/browser (incl. Tracing, Profiling)	46.07 KB
@​sentry/browser (incl. Tracing, Replay)	79.41 KB
@​sentry/browser (incl. Tracing, Replay) - with treeshaking flags	69.22 KB
@​sentry/browser (incl. Tracing, Replay with Canvas)	84 KB
@​sentry/browser (incl. Tracing, Replay, Feedback)	95.97 KB
@​sentry/browser (incl. Feedback)	41.35 KB
@​sentry/browser (incl. sendFeedback)	29.49 KB

... (truncated)

Sourced from @​sentry/react's changelog.

10.45.0

Important Changes

• feat(remix): Server Timing Headers Trace Propagation (#18653)

  The Remix SDK now supports automatic trace propagation via Server-Timing response headers to continue pageload traces on the client side. This means, you no longer have to define a custom meta function to add Sentry <meta> tags to your page as previously. We'll update out Remix tracing docs after this release.

Other Changes

• fix(cloudflare): Use correct env types for withSentry (#19836)
• fix(core): Align error span status message with core SpanStatusType for langchain/google-genai (#19863)
• fix(deno): Clear pre-existing OTel global before registering TracerProvider (#19723)
• fix(nextjs): Skip tracing for tunnel requests (#19861)
• fix(node-core): Recycle propagationContext for each request (#19835)
• ref(core): Simplify core utility functions for smaller bundle (#19854)

• chore(deps): bump next from 16.1.5 to 16.1.7 in /dev-packages/e2e-tests/test-applications/nextjs-16 (#19851)
• ci(release): Switch from action-prepare-release to Craft (#18763)
• fix(deps): bump devalue 5.6.3 to 5.6.4 to fix CVE-2026-30226 (#19849)
• fix(deps): bump file-type to 21.3.2 and @​nestjs/common to 11.1.17 (#19847)
• fix(deps): bump flatted 3.3.1 to 3.4.2 to fix CVE-2026-32141 (#19842)
• fix(deps): bump hono 4.12.5 to 4.12.7 in cloudflare-hono E2E test app (#19850)
• fix(deps): bump next to 15.5.13/16.1.7 to fix CVE-2026-1525, CVE-202-33036 and related (#19870)
• fix(deps): bump tar 7.5.10 to 7.5.11 to fix CVE-2026-31802 (#19846)
• fix(deps): bump undici 6.23.0 to 6.24.1 to fix multiple CVEs (#19841)
• fix(deps): bump unhead 2.1.4 to 2.1.12 to fix CVE-2026-31860 and CVE-2026-31873 (#19848)
• test(nextjs): Skip broken ISR tests (#19871)
• test(react): Add gql tests for react router (#19844)

10.44.0

Important Changes

• feat(effect): Add @sentry/effect SDK (Alpha) (#19644)

  This release introduces @sentry/effect, a new SDK for Effect.ts applications. The SDK provides Sentry integration via composable Effect layers for both Node.js and browser environments.

  Compose the effectLayer with optional tracing, logging, and metrics layers to instrument your Effect application:

  import * as Sentry from '@sentry/effect';
  import * as Layer from 'effect/Layer';

... (truncated)

• ef79d28 release: 10.45.0
• 28208bc Merge pull request #19877 from getsentry/prepare-release/10.45.0
• 2e2fd35 meta(changelog): Update changelog for 10.45.0
• 79241b0 fix(nextjs): Skip tracing for tunnel requests (#19861)
• 938ab2d ref(core): Simplify core utility functions for smaller bundle (#19854)
• 3bb4325 fix(core): Align error span status message with core SpanStatusType for lan...
• 3e5499a fix(deps): bump next to 15.5.13/16.1.7 to fix CVE-2026-1525, CVE-202-33036 an...
• 6f17b8a fix(cloudflare): Use correct env types for withSentry (#19836)
• b4b9e71 test(nextjs): Skip broken ISR tests (#19871)
• ae7206f feat(remix): Server Timing Headers Trace Propagation (#18653)
• Additional commits viewable in compare view

Sourced from @​tanstack/react-query's changelog.

5.91.3

Patch Changes

• fix: stop node types from leaking into browser (#10302)

5.91.2

Patch Changes

• fix(streamedQuery): maintain error state on reset refetch with initialData defined (#10287)

• Updated dependencies [248975e]:

  • @​tanstack/query-core@​5.91.2

5.91.1

Patch Changes

• fix(core): cancel paused initial fetch when last observer unsubscribes (#10291)

• Updated dependencies [a89aab9]:

  • @​tanstack/query-core@​5.91.1

5.91.0

Minor Changes

• feat: environmentManager (#10199)

Patch Changes

• Updated dependencies [6fa901b]:
  • @​tanstack/query-core@​5.91.0

• 9346430 ci: changeset release
• be3746f fix: stop node types from leaking into browser (#10302)
• b6fd86b ci: Version Packages (#10297)
• 79e37cb ci: Version Packages (#10296)
• a89aab9 fix(core): cancel paused initial fetch when last observer unsubscribes (#10291)
• 3761d2b ci: Version Packages (#10290)
• 6fa901b feat/environmentManager (#10199)
• 3fac499 test(react-query/useSuspenseInfiniteQuery): add test for basic suspend and re...
• 6d0a2a9 test(react-query/useSuspenseQuery): remove unnecessary 'act' from background ...
• 9ec0fc6 test(react-query/useSuspenseQueries): remove unnecessary 'act' from backgroun...
• Additional commits viewable in compare view

Sourced from @​tanstack/react-virtual's releases.

@​tanstack/react-virtual@​3.13.23

Patch Changes

• Updated dependencies [7ece2d5]:
  • @​tanstack/virtual-core@​3.13.23

@​tanstack/react-virtual@​3.13.22

Patch Changes

• Updated dependencies [54d771a, d3416c3]:
  • @​tanstack/virtual-core@​3.13.22

Sourced from @​tanstack/react-virtual's changelog.

3.13.23

Patch Changes

• Updated dependencies [7ece2d5]:
  • @​tanstack/virtual-core@​3.13.23

3.13.22

Patch Changes

• Updated dependencies [54d771a, d3416c3]:
  • @​tanstack/virtual-core@​3.13.22

• 9394e13 ci: Version Packages (#1149)
• 7ece2d5 fix(virtual-core): remove incorrect elementsCache cleanup using getItemKey (#...
• c2f1c39 ci: Version Packages (#1139)
• fc3c733 perf(virtual-core): skip sync DOM reads during normal scrolling (#1144)
• See full diff in compare view

Sourced from @​vanilla-extract/css's releases.

@​vanilla-extract/css@​1.20.0

Minor Changes

• #1702 48a9caf Thanks @​bschlenk! - Allow :where and :is in selectors if all selectors target &

  EXAMPLE USAGE:

  const example = style({
    color: 'red',
    selectors: {
      // Valid: all selectors in the list target `example`
      ':is(h1 > &, h2 > &)': { color: 'blue' }
      // Invalid: the second selector in the list does not target `example`
      ':is(h1 > &, h2)': { color: 'blue' }
    }
  });

@​vanilla-extract/css@​1.19.1

Patch Changes

• #1558 9b1bfd0 Thanks @​andjsrk! - style: Fixed a bug where nested arrays of classnames could cause missing or malformed CSS during style composition in certain situations.

  For example, the following style composition would not generate CSS for the backgroundColor: 'orange' style, and would also generate malformed CSS:

  const styleWithNestedComposition = style([
    [style1, style2],
    { backgroundColor: 'orange' },
    [style3]
  ]);

@​vanilla-extract/css@​1.19.0

Minor Changes

• #1686 1a63a60 Thanks @​askoufis! - Add ./vanilla.virtual.css?* entrypoint for Turbopack integration

Sourced from @​vanilla-extract/css's changelog.

1.20.0

Minor Changes

• #1702 48a9caf Thanks @​bschlenk! - Allow :where and :is in selectors if all selectors target &

  EXAMPLE USAGE:

  const example = style({
    color: 'red',
    selectors: {
      // Valid: all selectors in the list target `example`
      ':is(h1 > &, h2 > &)': { color: 'blue' }
      // Invalid: the second selector in the list does not target `example`
      ':is(h1 > &, h2)': { color: 'blue' }
    }
  });

1.19.1

Patch Changes

• #1558 9b1bfd0 Thanks @​andjsrk! - style: Fixed a bug where nested arrays of classnames could cause missing or malformed CSS during style composition in certain situations.

  For example, the following style composition would not generate CSS for the backgroundColor: 'orange' style, and would also generate malformed CSS:

  const styleWithNestedComposition = style([
    [style1, style2],
    { backgroundColor: 'orange' },
    [style3]
  ]);

1.19.0

Minor Changes

• #1686 1a63a60 Thanks @​askoufis! - Add ./vanilla.virtual.css?* entrypoint for Turbopack integration

• fb82ead Version Packages (#1703)
• a668d59 validateSelectors: Fix changeset, update tests (#1704)
• 48a9caf fix: allow :where and :is in selectors when they only target & (#1702)
• 79b3519 Version Packages (#1695)
• 9b1bfd0 Fix runtime behavior to match the type definition (#1558)
• d1257c7 Migrate all tests to vitest, increase vite-node dep range (#1694)
• ac5ab50 Configure oxlint, address some lint warnings (#1690)
• 02d85ec Update prettier to v3, delete some directories, update remix docs (#1689)
• b227ebb Version Packages (#1685)
• c0e2812 turbopack support (#1639)
• See full diff in compare view

Sourced from @​vanilla-extract/vite-plugin's releases.

@​vanilla-extract/vite-plugin@​5.2.1

Patch Changes

• #1701 b066d1c Thanks @​askoufis! - Reduce unnecessary HMR invalidations and fix broken HMR in Astro, Nuxt and Qwik

• Updated dependencies [b066d1c]:

  • @​vanilla-extract/compiler@​0.6.0

@​vanilla-extract/vite-plugin@​5.2.0

Minor Changes

• #1687 e29f242 Thanks @​askoufis! - Add support for Vite 8

Patch Changes

• Updated dependencies [e29f242]:
  • @​vanilla-extract/compiler@​0.5.0

@​vanilla-extract/vite-plugin@​5.1.5

Patch Changes

• Updated dependencies [c0e2812, c0e2812, c0e2812]:
  • @​vanilla-extract/compiler@​0.4.0
  • @​vanilla-extract/integration@​8.0.8

Sourced from @​vanilla-extract/vite-plugin's changelog.

5.2.1

Patch Changes

• #1701 b066d1c Thanks @​askoufis! - Reduce unnecessary HMR invalidations and fix broken HMR in Astro, Nuxt and Qwik

• Updated dependencies [b066d1c]:

  • @​vanilla-extract/compiler@​0.6.0

5.2.0

Minor Changes

• #1687 e29f242 Thanks @​askoufis! - Add support for Vite 8

Patch Changes

• Updated dependencies [e29f242]:
  • @​vanilla-extract/compiler@​0.5.0

5.1.5

Patch Changes

• Updated dependencies [c0e2812, c0e2812, c0e2812]:
  • @​vanilla-extract/compiler@​0.4.0
  • @​vanilla-extract/integration@​8.0.8

• ba21414 Version Packages (#1706)
• b066d1c vite: Reduce unnecessary HMR invalidations (#1701)
• d1257c7 Migrate all tests to vitest, increase vite-node dep range (#1694)
• 81e6c33 Version Packages (#1688)
• e29f242 Add support for Vite 8 (#1687)
• b227ebb Version Packages (#1685)
• See full diff in compare view

Sourced from dayjs's releases.

v1.11.20

1.11.20 (2026-03-12)

Bug Fixes

• Update locale km.js to support meridiem (#3017) (9d2b6a1)
• update updateLocale plugin to merge nested object properties instead of replacing (#3012) (99691c5), closes #1118

Sourced from dayjs's changelog.

1.11.20 (2026-03-12)

Bug Fixes

• Update locale km.js to support meridiem (#3017) (9d2b6a1)
• update updateLocale plugin to merge nested object properties instead of replacing (#3012) (99691c5), closes #1118

• af6e1f8 chore(release): 1.11.20 [skip ci]
• 82babd6 D2M (#3018)
• bbe4ab1 chore: fix lint error
• 99691c5 fix: update updateLocale plugin to merge nested object properties instead of ...
• 9d2b6a1 fix: Update locale km.js to support meridiem (#3017)
• acf21cd chore: update doc
• 55a64e1 chore: update doc
• 807face chore: update doc
• 54f4470 chore: update doc
• 9ea23c7 chore: update doc
• Additional commits viewable in compare view

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for dayjs since your current version.

Sourced from framer-motion's changelog.

[12.38.0] 2026-03-16

Added

• Added layoutAnchor prop to configure custom anchor point for resolving relative projection boxes.

Fixed

• Reorder: Fix axis switching after window resize.
• Reorder: Fix with virtualised lists.
• AnimatePresence: Ensure children are removed when exit animation matches current values.

[12.37.0] 2026-03-16

Added

• Support for hardware accelerating "start" and "end" offsets in scroll and useScroll.
• Support for oklch, oklab, lab, lch, color, color-mix, light-dark color types.

Fixed

• Fix whileInView with client-side navigation.
• Fix draggable elements when layout updates due to surrounding element re-renders.
• Improved memory pressure of layout animations.
• Ensure motion value returned from useSpring reports correct isAnimating().

[12.36.0] 2026-03-09

Added

• Allow dragSnapToOrigin to accept "x" or "y" for per-axis snapping.
• Added axis-locked layout animations with layout="x" and layout="y".
• Added skipInitialAnimation to useSpring.

Fixed

• Fixed height and width: auto animations with box-sizing: border-box.
• Reset component values when exit animation finishes.
• Ensure anticipate easing returns 1 at p === 1.
• Fix @emotion/is-prop-valid resolve error in Storybook.
• Remove data-pop-layout-id from exiting elements when animation interrupted.
• Ensure we skip WAAPI for non-animatable keyframes.
• Ensure we skip WAAPI for SVG transforms.
• Ensure MotionValue props are not passed to SVG.
• AnimatePresence: Prevent mode="wait" elements from getting stuck when switched rapidly.

[12.35.2] 2026-03-09

Fixed

... (truncated)

• 0bfc9fe v12.38.0
• 343cb0c Updating layoutAnchor
• ee99ad2 Updating changelog
• 062660b Updating changgelog
• 303da7d Updating readme
• b075adc Merge pull request #3647 from motiondivision/feat/layout-anchor
• f0991d6 Add missing layoutAnchor !== false guard in attemptToResolveRelativeTarget
• b5798e9 Merge pull request #3642 from motiondivision/worktree-fix-issue-3078
• 7686c19 Merge pull request #3636 from motiondivision/worktree-fix-issue-3061
• a95c487 Fix auto-scroll in reorder-virtualized test page
• Additional commits viewable in compare view

Sourced from i18next's releases.

v25.9.0

• feat(types): selector API now enforces { count: number } when a key resolves to plural forms 2373
• fix(types): string unions with invalid members are now correctly detected as type errors when used as context option 2172

v25.8.20

• • fix: getFixedT() selector now resolves namespaces against the effective ns rather than the global init options #2406

v25.8.19

• fix: selector API namespace resolution regression for single-string ns and primary namespace in array #2405. Reverts the broad namespace-prefix rewrite from v25.8.15 and replaces it with a targeted fix that only rewrites paths starting with a secondary namespace in a multi-namespace array, matching the type-level contract of GetSource

v25.8.18

• improve selector api to accept array of selector functions, analogous to array of keys 2404

Sourced from i18next's changelog.

25.9.0

• feat(types): selector API now enforces { count: number } when a key resolves to plural forms 2373
• fix(types): string unions with invalid members are now correctly detected as type errors when used as context option 2172

25.8.20

• fix: getFixedT() selector now resolves namespaces against the effective ns rather than the global init options 2406

25.8.19

• fix: selector API namespace resolution regression for single-string ns and primary namespace in array 2405. Reverts the broad namespace-prefix rewrite from v25.8.15 and replaces it with a targeted fix that only rewrites paths starting with a secondary namespace in a multi-namespace array, matching the type-level contract of GetSource

25.8.18

• improve selector api to accept array of selector functions, analogous to array of keys 2404

• da3dc6d 25.9.0
• 05c326a format styling
• 02f3025 try to address #2373 (count check in plural keys with selector api)
• 2abf50d fix(types): string unions with invalid members are now correctly detected as ...
• 668e3bd jsr update
• 037e978 25.8.20
• 8750f71 fix: getFixedT() selector now resolves namespaces against the effective `ns...
• 4736b20 jsr update
• 160cde5 25.8.19
• 88d5145 fix #2405 by reverting changes in v25.8.15
• Additional commits viewable in compare view

Sourced from react-i18next's changelog.

16.5.8

• A selector function cannot be resolved without an i18n instance... returning empty string is safer than leaking the raw function reference. 1907

• b00adfa 16.5.8
• e367522 A selector function cannot be resolved without an i18n instance... returning ...
• See full diff in compare view

Sourced from sanitize-html's changelog.

2.17.2

Changes

• Upgrade htmlparser2 from 8.x to 10.1.0. This improves security by correctly decoding zero-padded numeric character references (e.g., &[#0000001](https://github.com/apostrophecms/apostrophe/tree/HEAD/packages/sanitize-html/issues/0000001)) that previously bypassed javascript: URL detection. Also fixes double-encoding of entities inside raw text elements like textarea and option.

• 7e607c9 Changelog reconciliation for release (#5359)
• 49d0bb7 Port/sanitize html community contrib (#5337)
• See full diff in compare view

Sourced from @​cloudflare/vite-plugin's releases.

@​cloudflare/vite-plugin@​1.30.0

Minor Changes

• #12848 ce48b77 Thanks @​emily-shen! - Enable local explorer by default

  This ungates the local explorer, a UI that lets you inspect the state of D1, DO and KV resources locally by visiting /cdn-cgi/explorer during local development.

  Note: this feature is still experimental, and can be disabled by setting the env var X_LOCAL_EXPLORER=false.

Patch Changes

• #12942 4f7fd79 Thanks @​jamesopstad! - Avoid splicing into the middleware stack for Vite versions other than v6

  Previously, the plugin spliced its pre-middleware into the Vite middleware stack relative to viteCachedTransformMiddleware. In Vite 8, this middleware can be omitted in some scenarios, which would cause the splice to fail. The plugin now registers pre-middleware using server.middlewares.use() directly, which places it in the correct position for Vite 7+. For Vite 6, the middleware is moved to the correct position in a post hook.

• Updated dependencies [782df44, 3c988e2, 62545c9, d028ffb, cb71403, 71ab981, 3a1c149, 7c3c6c6, ce48b77, 8729f3d]:

  • wrangler@4.76.0
  • miniflare@4.20260317.1
  • @​cloudflare/unenv-preset@​2.16.0

@​cloudflare/vite-plugin@​1.29.1

Patch Changes

• #12936 cff91ff Thanks @​jamesopstad! - Select the appropriate vite/module-runner implementation during dev based on the user's Vite version

  The plugin now builds against Vite 8 and ships two bundled copies of vite/module-runner: one from Vite 8 and one from Vite 7.1.12 (the last version before a breaking change to the module runner in Vite 7.2.0). At dev server startup, the correct implementation is selected based on the user's installed Vite version. This is Vite 8's module runner for users on Vite >= 7.2.0, and the legacy module runner for users on older versions.

• Updated dependencies [c9b3184, 13df6c7, df0d112, 81ee98e, c600ce0, f509d13, 3b81fc6, 0a7fef9]:

  • wrangler@4.75.0
  • miniflare@4.20260317.0

@​cloudflare/vite-plugin@​1.29.0

Minor Changes

• #12885 12505c9 Thanks @​edmundhung! - Add Vite 8 to the supported peer dependency range

  The package now lists Vite 8 in its peer dependency range, so installs with Vite 8 no longer show a peer dependency warning.

Patch Changes

• #12859 876108a Thanks @​dario-piotrowicz! - Fix crash when plugins send HMR events before runner initialization

  Previously, if another Vite plugin (such as vite-plugin-vue-devtools) sent HMR events during configureServer before the Cloudflare plugin had initialized its runner, the dev server would crash with AssertionError: The WebSocket is undefined. The environment's WebSocket send operations are now deferred until the runner is fully initialized, allowing early HMR events to be handled gracefully.

• Updated dependencies [ade0aed, 2b9a186, 65f1092, 7b0d8f5, 351e1e1, 2b9a186]:

  • miniflare@4.20260312.1
  • wrangler@4.74.0

@​cloudflare/vite-plugin@​1.28.0

Minor Changes

... (truncated)

Sourced from @​cloudflare/vite-plugin's changelog.

1.30.0

Minor Changes

• #12848 ce48b77 Thanks @​emily-shen! - Enable local explorer by default

  This ungates the local explorer, a UI that lets you inspect the state of D1, DO and KV resources locally by visiting /cdn-cgi/explorer during local development.

  Note: this feature is still experimental, and can be disabled by setting the env var X_LOCAL_EXPLORER=false.

Patch Changes

• #12942 4f7fd79 Thanks @​jamesopstad! - Avoid splicing into the middleware stack for Vite versions other than v6

  Previously, the plugin spliced its pre-middleware into the Vite middleware stack relative to viteCachedTransformMiddleware. In Vite 8, this middleware can be omitted in some scenarios, which would cause the splice to fail. The plugin now registers pre-middleware using server.middlewares.use() directly, which places it in the correct position for Vite 7+. For Vite 6, the middleware is moved to the correct position in a post hook.

• Updated dependencies [782df44, 3c988e2, 62545c9, d028ffb, cb71403, 71ab981, 3a1c149, 7c3c6c6,