Snyk has created this PR to upgrade react-native from 0.64.1 to 0.66.1.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 17 versions ahead of your current version.
The recommended version was released 21 days ago, on 2021-10-15.
Fix for unable to find find-node.sh in react-native-xcode.sh (cc59a7c by @ garethknowles)
For Android, general fixes to Appearance API and also fixes AppCompatDelegate.setDefaultNightMode(). For iOS, now works correctly when setting window.overrideUserInterfaceStyle (25a2c60 by @ mrbrentkelly)
Fix Android border positioning regression (d1a33cd by @ oblador)
You can participate in the conversation on the status of this release at this discussion.
To help you upgrade to this version, you can use the upgrade helper⚛️
You can find the whole changelog history over at react-native-releases.
Snyk has created this PR to upgrade react-native from 0.64.1 to 0.66.1.
The recommended version fixes:
SNYK-JS-UAPARSERJS-1023599
Why? Proof of Concept exploit, CVSS 7.5
SNYK-JS-LODASH-1040724
Why? Proof of Concept exploit, CVSS 7.5
SNYK-JS-HERMESENGINE-1727253
Why? Proof of Concept exploit, CVSS 7.5
SNYK-JS-UAPARSERJS-1072471
Why? Proof of Concept exploit, CVSS 7.5
SNYK-JS-PROMPTS-1729737
Why? Proof of Concept exploit, CVSS 7.5
SNYK-JS-LODASH-1018905
Why? Proof of Concept exploit, CVSS 7.5
(*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: react-native
-
0.66.1 - 2021-10-15
- Fix for unable to find find-node.sh in react-native-xcode.sh (cc59a7c by @ garethknowles)
- For Android, general fixes to Appearance API and also fixes
- Fix Android border positioning regression (d1a33cd by @ oblador)
-
0.66.0 - 2021-10-01
- See the highlights of the release in our release blog post.
- You can participate in the conversation on the status of this release at this issue.
- You can upgrade to this version using the upgrade helper webtool
⚛️
-
0.66.0-rc.4 - 2021-09-24
-
0.66.0-rc.3 - 2021-09-17
-
0.66.0-rc.2 - 2021-09-10
-
0.66.0-rc.1 - 2021-09-01
-
0.66.0-rc.0 - 2021-08-27
-
0.65.2 - 2021-11-04
-
0.65.1 - 2021-08-19
-
0.65.0 - 2021-08-17
-
0.65.0-rc.4 - 2021-08-11
-
0.65.0-rc.3 - 2021-07-23
-
0.65.0-rc.2 - 2021-06-18
-
0.65.0-rc.1 - 2021-06-17
-
0.65.0-rc.0 - 2021-06-09
-
0.64.3 - 2021-11-04
-
0.64.2 - 2021-06-03
-
0.64.1 - 2021-05-05
from react-native GitHub release notes0.66.1 is out with some fixes:
Fixed
AppCompatDelegate.setDefaultNightMode(). For iOS, now works correctly when settingwindow.overrideUserInterfaceStyle(25a2c60 by @ mrbrentkelly)You can participate in the conversation on the status of this release at this discussion.
To help you upgrade to this version, you can use the upgrade helper⚛️
You can find the whole changelog history over at
react-native-releases.0.66 stable is out!
This release includes 621 commits with 92 contributors! Thank you to all our contributors new and old! You can find the full changelog here.
[0.65.2] Bump version numbers
0.64.3 is out with a pick of Android Appearance API support (e94f9fa7 by @ mrbrentkelly)
If you have concerns or follow-up, please start or contribute to a relevant 0.64.3 discussion here
To help you upgrade to this version, you can use the upgrade helper⚛️
You can find the whole changelog history in the changelog.md file.
Commit messages
Package name: react-native
- d48ed4a [0.66.1] Bump version numbers
- 80e5abd Fix Android border positioning regression (#32398)
- e94f9fa Addressing various issues with the Appearance API (#28823) (#29106)
- bd01f16 Fix: find-node.sh location in react-native-xcode.sh script (#32227)
- 09a21f0 [0.66.0] Bump version numbers
- d47fd4a [0.66.0-rc.4] Bump version numbers
- a6a983d OSS: bump-oss-version -- update Podfile.lock later in the flow
- ef280d6 [LOCAL] Port react-native-codegen new .gitignore from main
- 9967318 OSS: update Podfile.lock automatically when bumping release version
- 6b014e8 Don’t hard-code CocoaPods’s sandbox path (#32243)
- ab50c6e [0.66.0-rc.3] Bump version numbers
- dc453da Update rn-tester Podfile.lock to prepare for 0.66.0-rc.3
- 8b6d7fd Link RCT-Folly against libc++abi
- 614a370 [0.66.0-rc.2] Bump version numbers
- c97015d Update Podfile.lock
- c282c2d Bump Hermes pod to 0.9.0
- 2133172 Bump Hermes npm to 0.9.0
- 013e623 Revert the Android specific max heap size GCConfig
- b4a1d2b Make JSI a dynamic library
- 0d7586c [LOCAL] postfix timestamp to bust yarn cache
- d552362 [0.66.0-rc.1] Bump version numbers
- 1594af1 Copy repo-config dependencies for bumping release version
- 038cdda Switch order of search libraries to fix M1 build error
- ea5109f OSS: add Xcode 12.5 + M1 machines CocoaPods post_install workaround
CompareNote: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
🧐 View latest project report
🛠 Adjust upgrade PR settings
🔕 Ignore this dependency or unsubscribe from future upgrade PRs