Fixes
- Don't add Expo Plugin option
authToken
to application bundle (#3630)- Expo plugin configurations are generally stored in plain text, and are also automatically added to built app bundles, and are therefore considered insecure.
- You should not set the auth token in the plugin config except for local testing. Instead, use the
SENTRY_AUTH_TOKEN
env variable, as pointed out in our docs. - In addition to showing a warning, we are now actively removing an
authToken
from the plugin config if it was set. - If you had set the auth token in the plugin config previously, and built and published an app with that config, you should rotate your token.
- Reduce waning messages spam when a property in Expo plugin configuration is missing (#3631)
- Add concrete error messages for RN bundle build phase patch (#3626)