sentry-sourcemaps
Advanced tools
Sentry 8 comes with a brand new Releases API that finally enables us to upload JavaScript Source Maps directly to Sentry, and avoid the costly and fragile remote fetching of the source maps from our application servers.
This tool is intended to do just that: upload your application's source maps to Sentry along with every release.
It does that seamlessly by downloading your application's package from the NPM registry (even private ones, of course), looking at the source maps within it, and gracefully uploading them to your Sentry instance.
Here is a sample CLI usage:
$ npm install -g sentry-sourcemaps
$ sentry-sourcemaps --sentry-url https://my.sentry.url foobar_app 1.0.0 https://foobar.org TOKEN
As you can see, there are 4 mandatory parameters:
The application will create a release and upload every MAP file for your app onto the designed Sentry server.
Typical command line:
sentry-sourcemaps [OPTIONS] <PACKAGE> <VERSION> <APP_URL> <ORG_TOKEN>
is the NPM package name for your application on the registry.
is the target version of that package.
is the URL of the deployed application, that is linked with Sentry.
is the Sentry API Organization-wide token.
The URL to your Sentry server. Defaults to 'https://app.getsentry.com'
The organization to which the project belongs. Defaults to 'sentry'
The name under which your project is named within Sentry. Defaults to .
The MAP files search pattern. Defaults to '**/*.map'
Your NPM registry URL, or the default one for your system.
The prefix to the MAP files in your NPM package, defaults to 'dist'.
For instance, if your MAP files look like './built-app/dist/libraries/js/foo.map' and the MAP file itself is hosted at '<APP_URL>/libraries/js/foo.map', then the appropriate prefix would be 'built-app/dist'.
At this stage, any PR is welcome !
Especially, there's room for improvement with our Promisify/Asyncawait approach, the rejection clauses of many promises are not clearly validated yet.
Victor Perron
MIT
FAQs
Upload your Javascript source maps to Sentry
We found that sentry-sourcemaps demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Research
An advanced npm supply chain attack is leveraging Ethereum smart contracts for decentralized, persistent malware control, evading traditional defenses.
Security News
Research
Attackers are impersonating Sindre Sorhus on npm with a fake 'chalk-node' package containing a malicious backdoor to compromise developers' projects.
Security News
The npm package for the LottieFiles Player web component was hit with a supply chain attack after a software engineer's npmjs credentials were compromised.