The Google Play In-App Review API, App store rating API lets you prompt users to submit Play Store or App store ratings and reviews without the inconvenience of leaving your app or game.
MIT License
648
stars
58
forks
source link
[Snyk] Upgrade react-native from 0.64.0 to 0.64.2 #60
Snyk has created this PR to upgrade react-native from 0.64.0 to 0.64.2.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 2 versions ahead of your current version.
The recommended version was released 22 days ago, on 2021-06-03.
This patch release is specifically targetted towards fixing iOS build problems in Xcode 12.5. If it doesn't help, please refer to this issue.
Aside from bumping your version from 0.64.0 to 0.64.1, please check your podfile.lock and make sure that Flipper is on 0.75 or higher, and Flipper-Folly is 2.5.3 or higher; if not, add this line to your podfile (or modify it if you already had it):
After which, do all the classic necessary cleans (node_modules, caches, pod folders, etc)(react-native-clean-project is your ally) then do yarn install and a pod install --repo-update (if pod install fails on an error about a Flipper package, just remove the relevant lines from the podfile.lock and run the pod install again).
The only other commit picked & released along the Xcode 12.5 fixes is:
Update validateBaseUrl to use latest regex (commit) which fixes CVE-2020-1920, GHSL-2020-293.
You can participate in the conversation on the status of this release at this issue.
To help you upgrade to this version, you can use the upgrade helper⚛️
You can find the whole changelog history over at react-native-releases.
Thanks to everyone who contributed and helped to get this together, everyone worked really hard and we hope you are as excited as we are 🤗
Some of the most important highlights of this version:
Hermes opt-in on iOS
Inline Requires enabled by default
React 17
Among many others - please refer to the blog post for more details.
You can participate in the conversation on the status of this release at this issue.
You can upgrade to this version using the upgrade helper webtool⚛️
And if you are having trouble, please refer to the new Upgrade Support repository by our awesome community.
You can find the whole changelog history over at react-native-releases.
Snyk has created this PR to upgrade react-native from 0.64.0 to 0.64.2.
The recommended version fixes:
SNYK-JS-REACTNATIVE-1298632
Why? Has a fix available, CVSS 7.5
(*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: react-native
-
0.64.2 - 2021-06-03
- Find-node.sh supports Homebrew on M1 (502b819049 by @ dulmandakh)
- Refactor UIManagerHelper.getUIManager to return null when there's no UIManager registered (b0e8c1eac0 by @ mdvacca)
- Fix ScrollViewStickyHeader to push up header above it (d754bdefc6 by @ kacieb)
- Font family is not apply when secureTextEntry is true (cda77c77dd83cba07e6c2e56e938c3e4f7faf8fc by @ hank121314)
- Dimension update events are now properly sent following orientation change (a6a4d3365f17332e367c34357a07a73f97d6ec83 by @ ajpaulingalls)
-
0.64.1 - 2021-05-05
- Update validateBaseUrl to use latest regex (commit) which fixes CVE-2020-1920, GHSL-2020-293.
-
0.64.0 - 2021-03-12
- Hermes opt-in on iOS
- Inline Requires enabled by default
- React 17
from react-native GitHub release notesHello everyone - here's the new 0.64.2 patch release with some really good fixes that were asked by the community:
Changed
Fixed
Android specific
You can participate in the conversation on the status of this release at this issue.
To help you upgrade to this version, you can use the upgrade helper⚛️
You can find the whole changelog history over at
react-native-releases.This patch release is specifically targetted towards fixing iOS build problems in Xcode 12.5. If it doesn't help, please refer to this issue.
Aside from bumping your version from 0.64.0 to 0.64.1, please check your podfile.lock and make sure that Flipper is on 0.75 or higher, and Flipper-Folly is 2.5.3 or higher; if not, add this line to your podfile (or modify it if you already had it):
After which, do all the classic necessary cleans (node_modules, caches, pod folders, etc)(react-native-clean-project is your ally) then do
yarn installand apod install --repo-update(if pod install fails on an error about a Flipper package, just remove the relevant lines from the podfile.lock and run the pod install again).The only other commit picked & released along the Xcode 12.5 fixes is:
You can participate in the conversation on the status of this release at this issue.
To help you upgrade to this version, you can use the upgrade helper⚛️
You can find the whole changelog history over at
react-native-releases.0.64 stable is here🎉
Thanks to everyone who contributed and helped to get this together, everyone worked really hard and we hope you are as excited as we are🤗
Some of the most important highlights of this version:
Among many others - please refer to the blog post for more details.
You can participate in the conversation on the status of this release at this issue.
You can upgrade to this version using the upgrade helper webtool⚛️
And if you are having trouble, please refer to the new Upgrade Support repository by our awesome community.
You can find the whole changelog history over at
react-native-releases.Commit messages
Package name: react-native
- 757bb75 [0.64.2] Bump version numbers
- f7ce3f0 [LOCAL] auto-generated files
- 395e8ec [LOCAL] bump CLI to alpha 1 to fix CLI issue
- 09dd3e9 find-node.sh supports Homebrew on M1 (#31622)
- eaed48f Fix ScrollViewStickyHeader to push up header above it
- d894163 Refactor UIManagerHelper.getUIManager to return null when there's no UIManager registered
- a05d179 Add a fatal error handler for Hermes
- a6a4d33 Update the cached dimensions when orientation changes (#30324)
- cda77c7 `Android`: font-family is not apply when secureTextEntry is true (#30164)
- 787567a [0.64.1] Bump version numbers
- cf8a364 [local] change post-install to patch RTC-Folly
- 1c4ac48 [local] yarn lock update (?)
- 76f45d3 [local] update RNTester files for 0.64
- 3912fef Update validateBaseUrl to use latest regex
CompareNote: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
🧐 View latest project report
🛠 Adjust upgrade PR settings
🔕 Ignore this dependency or unsubscribe from future upgrade PRs