android-js / androidjs

Platform to build android app using node js
MIT License
466 stars 109 forks source link

build(deps): bump shell-quote and react-native #266

Open dependabot[bot] opened 2 years ago

dependabot[bot] commented 2 years ago

Bumps shell-quote to 1.7.4 and updates ancestor dependency react-native. These dependencies need to be updated together.

Updates shell-quote from 1.6.1 to 1.7.4

Changelog

Sourced from shell-quote's changelog.

v1.7.4 - 2022-10-12

Merged

Commits

  • [eslint] fix indentation and whitespace aaa9d1f
  • [eslint] additional cleanup 397cb62
  • [meta] add auto-changelog 497fca5
  • [actions] add reusable workflows 4763c36
  • [eslint] add eslint 6ee1437
  • [readme] rename, add badges 7eb5134
  • [meta] update URLs 67381b6
  • [meta] create FUNDING.yml; add funding in package.json 8641572
  • [meta] use npmignore to autogenerate an npmignore file 2e2007a
  • Only apps should have lockfiles f97411e
  • [Dev Deps] update tape 051f608
  • [meta] add safe-publish-latest 18cadf9
  • [Tests] add aud in posttest dc1cc12

1.7.3

  • Fix a security issue where the regex for windows drive letters allowed some shell meta-characters to escape the quoting rules. (CVE-2021-42740)

1.7.2

  • Fix a regression introduced in 1.6.3. This reverts the Windows path quoting fix. (144e1c2)

1.7.1

  • Fix $ being removed when not part of an environment variable name. (@​Adman in #32)

1.7.0

  • Add support for parsing >> and >& redirection operators. (@​forivall in #16)
  • Add support for parsing <( process substitution operator. (@​cuonglm in #15)

1.6.3

  • Fix Windows path quoting problems. (@​dy in #34)

v1.6.2 - 2019-08-13

Merged

Commits

... (truncated)

Commits
  • 5409e72 v1.7.4
  • 4763c36 [actions] add reusable workflows
  • 8641572 [meta] create FUNDING.yml; add funding in package.json
  • 497fca5 [meta] add auto-changelog
  • 7eb5134 [readme] rename, add badges
  • 67381b6 [meta] update URLs
  • 2e2007a [meta] use npmignore to autogenerate an npmignore file
  • 18cadf9 [meta] add safe-publish-latest
  • 397cb62 [eslint] additional cleanup
  • aaa9d1f [eslint] fix indentation and whitespace
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by ljharb, a new releaser for shell-quote since your current version.


Updates react-native from 0.59.9 to 0.70.3

Release notes

Sourced from react-native's releases.

0.70.3

Fixed

  • Stop styles from being reset when detaching Animated.Values in old renderer (2f58e52006 by @​javache)
  • Revert "Fix TextInput dropping text when used as uncontrolled component with defaultValue" to fix TextInputs not being settable to undefined programmatically (e2645a5) by Garrett Forbes Monroe

Android specific

iOS specific

  • Add xcode 14 workaround (turn off signing resource bundles) for React-Core (967de03f30 by @​kelset)

You can participate in the conversation on the status of this release in this discussion.


To help you upgrade to this version, you can use the upgrade helper ⚛️


You can find the whole changelog history in the changelog.md file.

0.70.2

Added

iOS specific

Changed

Fixed

Android specific

  • Fix port as -1 if dev server without specifying port on Android (3d7e1380b4 by @​Kudo)

You can participate in the conversation on the status of this release in this discussion.

... (truncated)

Changelog

Sourced from react-native's changelog.

v0.70.3

Fixed

  • Stop styles from being reset when detaching Animated.Values in old renderer (2f58e52006 by @​javache)
  • Revert "Fix TextInput dropping text when used as uncontrolled component with defaultValue" to fix TextInputs not being settable to undefined programmatically (e2645a5) by Garrett Forbes Monroe

Android specific

iOS specific

  • Add xcode 14 workaround (turn off signing resource bundles) for React-Core (967de03f30 by @​kelset)

v0.70.2

Added

iOS specific

Changed

Fixed

Android specific

  • Fix port as -1 if dev server without specifying port on Android (3d7e1380b4 by @​Kudo)

v0.70.1

Added

Changed

... (truncated)

Commits
  • 917e97b [0.70.3] Bump version numbers
  • fe8f0fb Apply Animated initialProps handling to Fabric only (#34927)
  • 37790e4 fix(ios): add xcode 14 workaround (turn off signing resource bundles) for pod...
  • ebf746b Use NMake generator for Hermes build on Windows (#34790)
  • 0c2f55d Fixing failure building RN codegen CLI on Windows (#34791)
  • e2645a5 Revert D37801394: Multisect successfully blamed D37801394 for test or build f...
  • b9c2975 [0.70.2] Bump version numbers
  • 13a2b11 Minor: Rename AccessibilityInfo.sendAccessibilityEvent_unstable to sendAccess...
  • 2de4cf0 chore(deps): bump CLI to 9.1.3 and Metro to 0.72.3 (#34803)
  • 7b53a24 Fix port as -1 if dev server without specifying port on Android (#34705)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by fb, a new releaser for react-native since your current version.


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/android-js/androidjs/network/alerts).