Sentry Astro vulnerabilities

CVE-2025-65944 [MEDIUM] CWE-201 Sentry's sensitive headers are leaked when `sendDefaultPii` is set to `true` Sentry's sensitive headers are leaked when `sendDefaultPii` is set to `true` ### Impact In version 10.11.0, a change to how the SDK collects request data in Node.js applications caused certain incoming HTTP headers to be added as trace span attributes. When `sendDefaultPii: true` was set, a few headers that were previously redacted - including Authorization and Cookie - were unintentiona

CVE-2023-50249 [HIGH] CWE-400 CVE-2023-50249: Sentry-Javascript is official Sentry SDKs for JavaScript. A ReDoS (Regular expression Denial of Serv Sentry-Javascript is official Sentry SDKs for JavaScript. A ReDoS (Regular expression Denial of Service) vulnerability has been identified in Sentry's Astro SDK 7.78.0-7.86.0. Under certain conditions, this vulnerability allows an attacker to cause excessive computation times on the server, leading to denial of service (DoS). This vulnerability has be