Skip to content

build(deps): Bump posthog-node from 5.38.2 to 5.38.8#468

Merged
NiveditJain merged 1 commit into
mainfrom
dependabot/bun/posthog-node-5.38.8
Jun 30, 2026
Merged

build(deps): Bump posthog-node from 5.38.2 to 5.38.8#468
NiveditJain merged 1 commit into
mainfrom
dependabot/bun/posthog-node-5.38.8

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 29, 2026

Copy link
Copy Markdown
Contributor

Bumps posthog-node from 5.38.2 to 5.38.8.

Release notes

Sourced from posthog-node's releases.

posthog-node@5.38.8

5.38.8

Patch Changes

  • #3974 08b404b Thanks @​mjfaga! - Fix local evaluation ignoring the in/not_in operator on cohort-based flag conditions. "Not in cohort" was evaluated as "in cohort", inverting cohort-exclusion flags. Now applies the operator to the cohort membership result. (2026-06-29)

posthog-node@5.38.7

5.38.7

Patch Changes

  • #3961 619a25c Thanks @​marandaneto! - Retry feature flag requests after transient network errors only. The feature flag request retry count defaults to 1 and can be set to 0 to disable retries. (2026-06-29)
  • Updated dependencies [619a25c]:
    • @​posthog/core@​1.38.1

posthog-node@5.38.6

5.38.6

Patch Changes

posthog-node@5.38.5

5.38.5

Patch Changes

posthog-node@5.38.4

5.38.4

Patch Changes

  • #3938 6391106 Thanks @​dustinbyrne! - Respect disable_capture_url_hashes when capturing Express and NestJS request URLs. (2026-06-23)

posthog-node@5.38.3

5.38.3

Patch Changes

... (truncated)

Changelog

Sourced from posthog-node's changelog.

5.38.8

Patch Changes

  • #3974 08b404b Thanks @​mjfaga! - Fix local evaluation ignoring the in/not_in operator on cohort-based flag conditions. "Not in cohort" was evaluated as "in cohort", inverting cohort-exclusion flags. Now applies the operator to the cohort membership result. (2026-06-29)

5.38.7

Patch Changes

  • #3961 619a25c Thanks @​marandaneto! - Retry feature flag requests after transient network errors only. The feature flag request retry count defaults to 1 and can be set to 0 to disable retries. (2026-06-29)
  • Updated dependencies [619a25c]:
    • @​posthog/core@​1.38.1

5.38.6

Patch Changes

5.38.5

Patch Changes

5.38.4

Patch Changes

  • #3938 6391106 Thanks @​dustinbyrne! - Respect disable_capture_url_hashes when capturing Express and NestJS request URLs. (2026-06-23)

5.38.3

Patch Changes

  • #3937 4d59d0e Thanks @​marandaneto! - Deprecate the Node SDK Sentry integration and point users to PostHog Error Tracking for Node. (2026-06-23)
  • Updated dependencies [440e370]:
    • @​posthog/core@​1.37.0
Commits
  • 479d5ea chore: update versions and lockfile [version bump]
  • 08b404b fix(node): apply in/not_in operator on flag-level cohort conditions in local ...
  • 272c193 chore: update versions and lockfile [version bump]
  • 619a25c fix(flags): retry flag requests on transient network errors (#3961)
  • d2faa82 chore: update versions and lockfile [version bump]
  • 606ef43 fix: preserve $groups passed via properties (#3896)
  • 5c4838f chore: update versions and lockfile [version bump]
  • 8e9689a fix: Dedupe feature flag called events by response (#3955)
  • 2a60c21 chore: update versions and lockfile [version bump]
  • 6391106 fix(node): respect URL hash capture config (#3938)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [posthog-node](https://github.com/PostHog/posthog-js/tree/HEAD/packages/node) from 5.38.2 to 5.38.8.
- [Release notes](https://github.com/PostHog/posthog-js/releases)
- [Changelog](https://github.com/PostHog/posthog-js/blob/main/packages/node/CHANGELOG.md)
- [Commits](https://github.com/PostHog/posthog-js/commits/posthog-node@5.38.8/packages/node)

---
updated-dependencies:
- dependency-name: posthog-node
  dependency-version: 5.38.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jun 29, 2026
@socket-security

Copy link
Copy Markdown

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security
Vulnerability Quality Maintenance License
Updatedposthog-node@​5.38.2 ⏵ 5.38.880 -1510079 +1100100

View full report

@NiveditJain NiveditJain merged commit 39baf52 into main Jun 30, 2026
11 checks passed
@dependabot dependabot Bot deleted the dependabot/bun/posthog-node-5.38.8 branch June 30, 2026 05:27
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant