chore(pnpm deps)(deps): bump @sentry/profiling-node from 10.27.0 to 10.38.0

[dependabot]

Bumps @sentry/profiling-node from 10.27.0 to 10.38.0.

Release notes

Sourced from @​sentry/profiling-node's releases.

10.38.0

Important Changes

• feat(tanstackstart-react): Auto-instrument request middleware (#18989)

The sentryTanstackStart Vite plugin now automatically instruments middleware arrays in createFileRoute(). This captures performance data without requiring manual wrapping with wrapMiddlewaresWithSentry().

Other Changes

• feat: Use v4.8.0 bundler plugins (#18993)
• feat(browser): Add logs.metrics bundle (#19020)
• feat(browser): Add replay.logs.metrics bundle (#19021)
• feat(browser): Add tracing.replay.logs.metrics bundle (#19039)
• feat(deps): bump import-in-the-middle from 2.0.1 to 2.0.6 (#19042)
• feat(node): Add AI manual instrumentation exports to Node (#19063)
• feat(wasm): initialised sentryWasmImages for webworkers (#18812)
• fix(core): Classify custom AggregateErrors as exception groups (#19053)
• fix(nextjs): Turn off debugID injection if sourcemaps are explicitly disabled (#19010)
• fix(react): Avoid String(key) to fix Symbol conversion error (#18982)
• fix(react): Prevent lazy route handlers from updating wrong navigation span (#18898)

... (truncated)

Changelog

Sourced from @​sentry/profiling-node's changelog.

10.38.0

Important Changes

• feat(tanstackstart-react): Auto-instrument request middleware (#18989)

The sentryTanstackStart Vite plugin now automatically instruments middleware arrays in createFileRoute(). This captures performance data without requiring manual wrapping with wrapMiddlewaresWithSentry().

Other Changes

• feat: Use v4.8.0 bundler plugins (#18993)
• feat(browser): Add logs.metrics bundle (#19020)
• feat(browser): Add replay.logs.metrics bundle (#19021)
• feat(browser): Add tracing.replay.logs.metrics bundle (#19039)
• feat(deps): bump import-in-the-middle from 2.0.1 to 2.0.6 (#19042)
• feat(node): Add AI manual instrumentation exports to Node (#19063)
• feat(wasm): initialised sentryWasmImages for webworkers (#18812)
• fix(core): Classify custom AggregateErrors as exception groups (#19053)
• fix(nextjs): Turn off debugID injection if sourcemaps are explicitly disabled (#19010)
• fix(react): Avoid String(key) to fix Symbol conversion error (#18982)
• fix(react): Prevent lazy route handlers from updating wrong navigation span (#18898)

... (truncated)

Commits

• ed7956a chore: Format lerna.json
• f87d531 release: 10.38.0
• 0712f23 Merge pull request #19085 from getsentry/prepare-release/10.38.0
• 717399f meta(changelog): Update changelog for 10.38.0
• acf6c64 chore(deps): Upgrade Lerna to v8 (#19050)
• e80a940 chore(aws-serverless): Fix local cache issues (#19081)
• 9de002b chore(react): Update react-router-5 dev dependency to another than 5.0.0 (#19...
• 46ad70e feat(node): Add AI manual instrumentation exports to Node (#19063)
• f133597 chore(solidstart): Bump peer dependencies of @​solidjs/start (#19051)
• 0e6e2b3 chore(deps): Upgrade @​remix-run deps to 2.17.4 (#19040)
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Greptile Overview

Greptile Summary

This PR bumps @sentry/profiling-node from 10.27.0 to 10.38.0, a minor version update that includes bug fixes and new features. The update brings improvements to Sentry's profiling capabilities and updates several transitive dependencies including OpenTelemetry packages and Babel runtime components.

Key changes:

• Updated @sentry/profiling-node to 10.38.0 in package.json
• Lockfile updated with new resolutions for Sentry core packages (10.38.0), OpenTelemetry packages, and Babel dependencies
• No breaking changes identified - this is a minor version bump within the same major version
• @sentry/nestjs remains at 10.27.0, which is compatible with the updated profiling package

Confidence Score: 5/5

• This PR is safe to merge with minimal risk
• This is a standard Dependabot dependency update for a monitoring/profiling library with no breaking changes. The version bump is minor (10.27.0 → 10.38.0), and the changes only affect dependency declarations and lockfile resolutions. The existing @sentry/nestjs package at 10.27.0 is compatible with the updated profiling package.
• No files require special attention

Important Files Changed

Filename	Overview
package.json	Bumped @sentry/profiling-node from ^10.27.0 to ^10.38.0
pnpm-lock.yaml	Updated lockfile with new dependency resolutions for Sentry and OpenTelemetry packages

Sequence Diagram

sequenceDiagram
    participant Dep as Dependabot
    participant PR as Pull Request
    participant Pkg as package.json
    participant Lock as pnpm-lock.yaml
    participant Sentry as @sentry/profiling-node
    
    Dep->>PR: Detect outdated dependency
    Dep->>Pkg: Update @sentry/profiling-node: ^10.27.0 → ^10.38.0
    Dep->>Lock: Resolve new dependency tree
    Lock->>Sentry: Install v10.38.0
    Lock->>Lock: Update @babel/code-frame to 7.28.6
    Lock->>Lock: Update @babel/runtime to 7.28.6
    Lock->>Lock: Update @opentelemetry/api-logs to 0.211.0
    Lock->>Lock: Update @opentelemetry/core to 2.5.0
    Lock->>Lock: Update @sentry/core to 10.38.0
    Lock->>Lock: Update @sentry/node packages to 10.38.0
    PR->>PR: Ready for review

Loading

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

1 Skipped Deployment

Project	Deployment	Actions	Updated (UTC)
family-tree	Ignored	Preview	Feb 2, 2026 11:28am

[greptile-apps]

_{2 files reviewed, no comments}

_{Edit Code Review Agent Settings | Greptile}

[dependabot]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.