Skip to content
This repository was archived by the owner on Apr 13, 2022. It is now read-only.

[Snyk] Security upgrade react-native from 0.60.5 to 0.62.0#11

Open
snyk-bot wants to merge 1 commit intomasterfrom
snyk-fix-f3c05da4dc39925900aebae034259d94
Open

[Snyk] Security upgrade react-native from 0.60.5 to 0.62.0#11
snyk-bot wants to merge 1 commit intomasterfrom
snyk-fix-f3c05da4dc39925900aebae034259d94

Conversation

@snyk-bot
Copy link

@snyk-bot snyk-bot commented Dec 14, 2020

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

merge advice

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • tests/package.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
medium severity 566/1000
Why? Recently disclosed, Has a fix available, CVSS 5.6		 Command Injection
SNYK-JS-NODENOTIFIER-1035794		 No No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: react-native The new version differs by 250 commits.
  • 9101eaf [0.62.0] Bump version numbers
  • 1f8b698 Pressability: Fix Missing `onLongPress` Gestures
  • f6a8452 Bump FlipperKit version on iOS to be compatible with react-native-flipper (#28277)
  • e8a368c Upgrade Flipper Android to 0.33.1 (#28275)
  • 83aff2c [0.62.0-rc.5] Bump version numbers
  • e41e146 Fix toggling between hidden and visible password
  • ba3815f [0.62.0-rc.4] Bump version numbers
  • 4bb1794 Revert "Bump FlipperKit version on iOS to be compatible with react-native-fli… (#28225)"
  • ada73a3 Bump FlipperKit version on iOS to be compatible with react-native-fli… (#28225)
  • 4efa3ba Add xcscheme files back in the template (#28198)
  • 409551c Try the debug executor before the release executor
  • e16c5cb If JSC fails to load when starting RN, expose that error to the caller
  • 0b6cd69 Return null when requesting constants for nonexistent View Managers in RN Android
  • d22cc4f Fix setting keyboardType from breaking autoCapitalize (#27523)
  • dfa8fed [0.62.0-rc.3] Bump version numbers
  • be50884 [package] Bump CLI to ^4.2.x
  • 26e7d6a [package] Bump CLI to ^4.1.x to fix run-android
  • ebb629d Resolve localization warnings (#28046)
  • 2799d67 @ allow-large-files Upgrade Hermes dependency to 0.4.0
  • 76604e7 Resolve React-RCTText Xcode warning (#28054)
  • 8aeb5dc Revert D19235758: Implement onRequestClose for iOS 13+ modals
  • 360b53d Implement TextInput autoFocus natively on iOS (#27803)
  • ebfd1bd fix: resolve Require Cycle warning (#27851)
  • b0eddef remove `xcshareddata` from gitignore (#27563)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Labels

None yet

1 participant

@snyk-bot