[Snyk] Upgrade posthog-js from 1.297.2 to 1.308.0

[sestinj]

Snyk has created this PR to upgrade posthog-js from 1.297.2 to 1.308.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 22 versions ahead of your current version.

• The recommended version was released 21 days ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Prototype Pollution SNYK-JS-DAGRED3ES-13110069	636	Proof of Concept

Release notes

Package name: posthog-js

• 1.308.0 - 2025-12-17
• 1.307.2 - 2025-12-16
• 1.307.1 - 2025-12-16
• 1.307.0 - 2025-12-16
• 1.306.2 - 2025-12-15
• 1.306.1 - 2025-12-13
• 1.306.0 - 2025-12-12
• 1.305.0 - 2025-12-11
• 1.304.0 - 2025-12-10
• 1.303.1 - 2025-12-10
• 1.303.0 - 2025-12-10
• 1.302.2 - 2025-12-05
• 1.302.1 - 2025-12-05
• 1.302.0 - 2025-12-05
• 1.301.2 - 2025-12-04
• 1.301.1 - 2025-12-04
• 1.301.0 - 2025-12-04
• 1.300.0 - 2025-12-03
• 1.299.0 - 2025-12-01
• 1.298.1 - 2025-11-26
• 1.298.0 - 2025-11-24
• 1.297.4 - 2025-11-24
• 1.297.2 - 2025-11-20

from posthog-js GitHub release notes

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

---

Summary by cubic

Upgraded posthog-js to 1.308.0 to keep our analytics SDK current and address a Snyk-reported prototype pollution vulnerability in a transitive dependency.

• Dependencies
  • Updated posthog-js to ^1.308.0 in gui/package.json.

^{Written for commit 7418914. Summary will update on new commits.}

[continue]

Learn more

---

All Green is an AI agent that automatically:

✅ Addresses code review comments

✅ Fixes failing CI checks

✅ Resolves merge conflicts

---

Unsubscribe from All Green comments

[continue-staging]

Learn more

---

All Green is an AI agent that automatically:

✅ Addresses code review comments

✅ Fixes failing CI checks

✅ Resolves merge conflicts

---

Unsubscribe from All Green comments

[github-actions]

⚠️ PR Title Format

Your PR title doesn't follow the conventional commit format, but this won't block your PR from being merged. We recommend using this format for better project organization.

Expected Format:

<type>[optional scope]: <description>

Examples:

• feat: add changelog generation support
• fix: resolve login redirect issue
• docs: update README with new instructions
• chore: update dependencies

Valid Types:

feat, fix, docs, style, refactor, perf, test, build, ci, chore, revert

This helps with:

• 📝 Automatic changelog generation
• 🚀 Automated semantic versioning
• 📊 Better project history tracking

This is a non-blocking warning - your PR can still be merged without fixing this.

[github-actions]

✅ Review Complete

Code Review Summary

⚠️ AI review failed. Please check the Continue API key and configuration.

Troubleshooting

• Verify the CONTINUE_API_KEY secret is set correctly
• Check that the organization and config path are valid
• Ensure the Continue service is accessible

---

[cubic-dev-ai]

No issues found across 1 file