[Snyk] Upgrade applicationinsights from 2.3.1 to 2.9.5

[NOUIY]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade applicationinsights from 2.3.1 to 2.9.5.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 22 versions ahead of your current version.

• The recommended version was released 3 months ago, on 2024-03-01.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Prototype Pollution SNYK-JS-AXIOS-6144788	372/1000 Why? Proof of Concept exploit, CVSS 5.3	No Known Exploit
	Prototype Pollution SNYK-JS-XML2JS-5414874	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept
	Prototype Pollution SNYK-JS-TOUGHCOOKIE-5672873	372/1000 Why? Proof of Concept exploit, CVSS 5.3	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: applicationinsights

• 2.9.5 - 2024-03-01
  

  #1293 Fix Linux attach backoff logic for app services.
  #1289 Handle Exceptions Thrown by CLS-hooked Package.
  #1286 Update How Manual Attach is Checked.
  #1284 Fix SDK Already Exists Detection.
  #1283 Fix SDK Version Set in the Agent

• 2.9.4 - 2024-02-16
  

  #1280 Revert Linux App Service SDK Already Exists Changes

• 2.9.3 - 2024-02-15
  

  #1267 Add Exception Handling to File Name for Telemetry Caching.
  #1259 Fix error when _shutdownStatsbeat gets called while being undefined.
  #1276 Update Statsbeat Network Metric Names.
  #1278 Update SDK Version Prefix.

• 2.9.2 - 2024-01-09
  

  #1253 Update Web Snippet to Browser SDK Loader in Statsbeat
  #1250 Add New Features to Statsbeat
  #1243 Add Check for Invalid iKey
  #1241 Fix ApplicationInsights:Invalid JSON config file issue

• 2.9.1 - 2023-11-09
  

  Fix issue with Live Metrics enablement #1238
  Add AKS resource provider in Statsbeat #1237
  Fix SDK Already Exists Check for Linux #1235

• 2.9.0 - 2023-10-09
• 2.8.0 - 2023-09-27
• 2.7.3 - 2023-08-16
• 2.7.2 - 2023-08-14
• 2.7.1 - 2023-08-14
• 2.7.0 - 2023-06-02
• 2.6.0 - 2023-04-28
• 2.5.1 - 2023-03-27
• 2.5.0 - 2023-02-28
• 2.4.2 - 2023-02-08
• 2.4.1 - 2023-01-18
• 2.4.0 - 2023-01-11
• 2.3.6 - 2022-11-01
• 2.3.5 - 2022-09-14
• 2.3.4 - 2022-08-01
• 2.3.3 - 2022-05-09
• 2.3.2 - 2022-04-29
• 2.3.1 - 2022-04-04

from applicationinsights GitHub release notes

Commit messages

Package name: applicationinsights

• 2b68662 2.9.5 release (#1290)
• a352029 Update the backoff logic. (#1293)
• 4d8d07e Update How Manual Attach is Checked (#1286)
• 1b53f5a Handle errors thrown by cls.exit failing an assert. (#1289)
• 055355c Fix SDK already exists detection. (#1284)
• d0330d7 Fix SDK Version Set in the Agent (#1283)
• 2284859 Release 2.9.4 (#1281)
• 561b23f Revert changes. (#1280)
• 3882ee9 Release 2.9.3 (#1277)
• 9330245 Update prefix and tests. (#1278)
• ab2b4a1 Update Statsbeat Network Metric Names (#1276)
• 9603259 Add Exception Handling to File Name for Telemetry Caching (#1267)
• b952bcf Fix error when `_shutdownStatsbeat` gets called while being undefined (#1259)
• 9c10cd3 2.9.2 release (#1257)
• 31d2774 Update Web Snippet to Browser SDK Loader (#1253)
• beb1232 Update statsbeat attach type values to match spec. (#1252)
• c949fff Add New Features to Statsbeat (#1250)
• 14ffa2d Minimal fix for #1226 (#1241)
• 149d0ba remove preview tag (#1244)
• 2b142c8 Add check for invalid iKey and tests. (#1243)
• 0217324 2.9.1 release (#1239)
• cc5c36a Fix issue with Live Metrics enablement (#1238)
• f250ff8 Add AKS resource provider in Statsbeat (#1237)
• 892bbb1 Fix SDK Already Exists Check for Linux (#1235)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Note: This is a default PR template raised by Snyk. Find out more about how you can customise Snyk PRs in our documentation.

[guardrails]

⚠️ We detected 3 security issues in this pull request:

Vulnerable Libraries (3)

Severity	Details
High	pkg:npm/@octokit/rest@16.43.2 (t) upgrade to: > 16.43.2
Medium	pkg:npm/applicationinsights@2.9.5 upgrade to: > 2.9.5
High	pkg:npm/husky@4.3.8 (t) upgrade to: > 4.3.8

More info on how to fix Vulnerable Libraries in JavaScript.

---

👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.