[Snyk] Upgrade @react-navigation/native from 5.8.9 to 5.8.10 - Githubissues

titanscouting / red-alliance-mobile

Red Alliance App in React

2 stars 5 forks source link

[Snyk] Upgrade @react-navigation/native from 5.8.9 to 5.8.10 #81

Closed snyk-bot closed 3 years ago

snyk-bot commented 3 years ago

Snyk has created this PR to upgrade @react-navigation/native from 5.8.9 to 5.8.10.

:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 1 version ahead of your current version.
The recommended version was released 25 days ago, on 2020-11-20.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Prototype Pollution SNYK-JS-Y18N-1021887	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-UAPARSERJS-1023599	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Prototype Pollution SNYK-JS-INI-1048974	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Proof of Concept
	Insufficient Validation SNYK-JS-ELECTRON-1050882	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
	Use After Free SNYK-JS-ELECTRON-1049547	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
	Improper Input Validation SNYK-JS-ELECTRON-1049323	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
	Improper Access Control SNYK-JS-ELECTRON-1049321	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
	Heap-based Buffer Overflow SNYK-JS-ELECTRON-1048693	472/1000 Why? Proof of Concept exploit, CVSS 7.3	No Known Exploit
	Use After Free SNYK-JS-ELECTRON-1041745	472/1000 Why? Proof of Concept exploit, CVSS 7.3	Mature

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: @react-navigation/native

5.8.10 - 2020-11-20
5.8.10 (2020-11-20)

Note: Version bump only for package @ react-navigation/native
5.8.9 - 2020-11-10

from @react-navigation/native GitHub release notes

Commit messages

Package name: @react-navigation/native

7754eb4 chore: publish
95b2599 fix: fix incorrect state change events in independent nested container
efcfa71 chore: only match repo links for GitHub in action
a8e27ef chore: fix typo in github workflow
946d292 chore: publish
794339e fix: hide drawer's header by default
53141a6 chore: add action to check for repro

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs