[Snyk] Upgrade node-libs-react-native from 1.0.3 to 1.2.1

[snyk-bot]

Snyk has created this PR to upgrade node-libs-react-native from 1.0.3 to 1.2.1.

:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 3 versions ahead of your current version.
• The recommended version was released 2 years ago, on 2020-12-01.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Cryptographic Issues SNYK-JS-ELLIPTIC-571484	492/1000 Why? Proof of Concept exploit, CVSS 7.7	Proof of Concept
	Timing Attack SNYK-JS-ELLIPTIC-511941	492/1000 Why? Proof of Concept exploit, CVSS 7.7	No Known Exploit
	Cryptographic Issues SNYK-JS-ELLIPTIC-1064899	492/1000 Why? Proof of Concept exploit, CVSS 7.7	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: node-libs-react-native

• 1.2.1 - 2020-12-01
  

  1.2.1

• 1.2.0 - 2020-04-13
  

  1.2.0

• 1.1.0 - 2020-04-12
  

  1.1.0

• 1.0.3 - 2018-10-10
  

  1.0.3

from node-libs-react-native GitHub release notes

Commit messages

Package name: node-libs-react-native

• a923688 1.2.1
• 5b38867 Bump buffer from 5.7.1 to 6.0.3 (#29)
• d424edb Bump elliptic from 6.4.1 to 6.5.3 (#27)
• 6b844f5 1.2.0
• a6067cf feat: add vm mock (#26)
• 9aa1b3a 1.1.0
• 88caf65 feat: add atob and btoa globals (#25)
• cd8d78a Rename rn-cli to metro (#22)
• 13cae5d README: Fix: extraNodeModules -> resolver.extraNodeModules (#16)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs