[Snyk] Upgrade react-native from 0.60.5 to 0.73.5 #1267

NOUIY · 2024-03-19T06:13:54Z

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade react-native from 0.60.5 to 0.73.5.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 328 versions ahead of your current version.
The recommended version was released 21 days ago, on 2024-02-26.

The recommended version fixes:

Issue	PriorityScore (*)	Exploit Maturity
Remote Code Execution (RCE) SNYK-JS-LOGKITTY-568763	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-REACTNATIVE-1298632	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-UAPARSERJS-1023599	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	Proof of Concept
Prototype Pollution SNYK-JS-ASYNC-2441827	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	Proof of Concept
Incomplete List of Disallowed Inputs SNYK-JS-BABELTRAVERSE-5962462	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	Proof of Concept
Denial of Service (DoS) SNYK-JS-DECODEURICOMPONENT-3149970	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	Proof of Concept
Improper Input Validation SNYK-JS-XMLDOM-3092935	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	Proof of Concept
Remote Code Execution (RCE) SNYK-JS-SHELLQUOTE-1766506	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	No Known Exploit
Arbitrary File Overwrite SNYK-JS-TAR-1536528	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	No Known Exploit
Arbitrary File Overwrite SNYK-JS-TAR-1536531	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	No Known Exploit
Arbitrary File Write SNYK-JS-TAR-1579147	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	No Known Exploit
Prototype Pollution SNYK-JS-PLIST-2405644	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	Proof of Concept
Arbitrary File Write SNYK-JS-TAR-1579152	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	No Known Exploit
Arbitrary File Write SNYK-JS-TAR-1579155	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-UAPARSERJS-610226	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	Proof of Concept
Prototype Pollution SNYK-JS-UNSETVALUE-2400660	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	No Known Exploit
Prototype Pollution SNYK-JS-XMLDOM-3042242	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	No Known Exploit
Prototype Pollution SNYK-JS-INI-1048974	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	Proof of Concept
Information Exposure SNYK-JS-NODEFETCH-2342118	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	No Known Exploit
Denial of Service SNYK-JS-NODEFETCH-674311	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	No Known Exploit
Prototype Pollution SNYK-JS-YARGSPARSER-560381	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	Proof of Concept
Prototype Pollution SNYK-JS-YARGSPARSER-560381	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	Proof of Concept
Information Exposure SNYK-JS-NODEFETCH-2342118	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	No Known Exploit
Denial of Service SNYK-JS-NODEFETCH-674311	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	No Known Exploit
Command Injection SNYK-JS-NODENOTIFIER-1035794	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	No Known Exploit
Improper Authorization SNYK-JS-REACTDEVTOOLSCORE-6023999	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	Proof of Concept
Denial of Service (DoS) npm:mem:20180117	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-UAPARSERJS-1072471	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-WS-1296835	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-WS-1296835	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	Proof of Concept
XML External Entity (XXE) Injection SNYK-JS-XMLDOM-1084960	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	No Known Exploit
Improper Input Validation SNYK-JS-XMLDOM-1534562	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	No Known Exploit
Prototype Pollution SNYK-JS-HAPIHOEK-548452	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	No Known Exploit
Regular Expression Denial of Service (ReDoS) SNYK-JS-HOSTEDGITINFO-1088355	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	Proof of Concept
Prototype Pollution SNYK-JS-JSON5-3182856	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	Proof of Concept
Regular Expression Denial of Service (ReDoS) npm:debug:20170905	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	Proof of Concept
Regular Expression Denial of Service (ReDoS) SNYK-JS-TAR-1536758	711/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.8	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: react-native

0.73.5 - 2024-02-26
Changelog

Security
- Update CLI to 12.3.6 (ffcd8f5249 by @ szymonrybczak)
Changed
- Hermes bump (3bdd54a51c by @ lunaleaps)
Fixed
- Fix: fix codegen not finding all third-party libraries (67e2bb455f by @ tido64)
- Fix compiler flags passed to libraries (929df582c8 by @ cipolleschi)
How to Test

Generate a new project:
```
npx react-native@next init RN0735RC1 --version 0.73.5
```
- To help you upgrade to this version, you can use the upgrade helper ⚛️
- See changes from this release in the changelog
Hermes dSYMS:
- Debug
- Release
Help us testing 🧪

If you experience a regression, please file an Upgrade issue and file a pick request in the appropriate discussion: https://github.com/reactwg/react-native-releases/discussions/
0.73.4 - 2024-02-06
v0.73.4

Fixed
- Fix: cannot find module react-native-*/Libraries/Core/InitializeCore (562447be47 by @ tido64)
Android
- Ignore the one-time NullPointerException and print error log (ca9b6b5038)
iOS
- Fix warning when loading RCTUIManager and A11yManager (f56bf1fa0a by @ cipolleschi)
You can participate in the conversation on the status of this release in this discussion

To help you upgrade to this version, you can use the upgrade helper ⚛️

You can find the whole changelog history in the CHANGELOG.md file.
0.73.3 - 2024-01-29
Fixed

Added

iOS specific
- Handle TSAsExpression when looking for the codegen declaration (02957718d7 by @ dmytrorykun)
Changed
- Bump CLI to 12.3.2 (bcb229e8f8 by @ szymonrybczak)
Android specific
- Call super.onRequestPermissionsResult in ReactActivity's onRequestPermissionsResult() (96ed1190c6 by @ LimAlbert)
iOS specific
- Remove ATS config patch from react_native_post_install (41c601e478 by @ gabrieldonadel)
Fixed
- Declare missing dependency chalk (9155e2d182 by @ tido64)
- TouchableBounce, TouchableHighlight and TouchableNativeFeedback dropping touches with React 18. (e4708d661b by @ sammy-SC)
- TouchableWithoutFeedback and TouchableOpacity dropping touches with React 18. (54166342f0 by @ sammy-SC)
iOS specific
- Restrict Cocoapods versions < 1.15. (3869ae4d80 by @ blakef)
- Make RCTDeviceInfo listen to invalidate events and unregister observers while invalidating the bridge (d46d80d2ef by @ cipolleschi)
- Fix support for SOURCEMAP_FILE path containing spaces (63e893d23d by @ paulschreiber)
- Fix release build error due to a casing issue in hermes tarball path after download prebuilt tarball (2e2f8a6689 by @ wfern)
- Fix race condition between A11yManager and UIManager (f39f34ed82 by @ cipolleschi)
- Fix symbol not found _jump_fcontext with use_frameworks (a2771ce58a by @ cipolleschi)
You can participate in the conversation on the status of this release in this discussion

To help you upgrade to this version, you can use the upgrade helper ⚛️

You can find the whole changelog history in the CHANGELOG.md file.
0.73.2 - 2024-01-08
Added
- Unhandled promise rejection - attach non-standard Error object stack info if possible (655b12dbfa by @ ospfranco)
Changed
- Bump Metro to ^v0.80.3 (16dff523b0 by @ huntie)
- Automatically reconnect to an existing debugger session on relaunching the app (0806ad7854 by @ motiz88)
iOS specific
- Update ios pod post_install logic for detecting if hermes is enabled (d6163d7f43 by @ gabrieldonadel)
Fixed
- Fix comment about adding packages in android template (ac9b87cd57 by @ janicduplessis)
- Fix boost download url (7e721f09ad by @ cipolleschi)
- Removed invalid translations that prevented Play Store publishes. Fixes #42024 (8edc36e33c by @ lunaleaps)
iOS specific
- Fix horizontal scrollview scrollTo coordinate space in RTL on oldarch (e809e0aca7 by @ NickGerleman)
- enhance IP address retrieval for iOS devices in Metro bundler setup (9f28616650 by @ Morritz)
You can participate in the conversation on the status of this release in this discussion

To help you upgrade to this version, you can use the upgrade helper ⚛️

You can find the whole changelog history in the CHANGELOG.md file.
0.73.1 - 2023-12-18
0.73.0 - 2023-12-06
0.73.0-rc.8 - 2023-12-04
0.73.0-rc.7 - 2023-12-04
0.73.0-rc.6 - 2023-11-28
0.73.0-rc.5 - 2023-11-20
0.73.0-rc.4 - 2023-11-06
0.73.0-rc.3 - 2023-10-23
0.73.0-rc.2 - 2023-10-10
0.73.0-rc.1 - 2023-10-04
0.73.0-rc.0 - 2023-10-03
0.73.0-nightly-20231002-0371014a3 - 2023-10-02
0.73.0-nightly-20231001-d95433f82 - 2023-10-01
0.73.0-nightly-20230930-df492cc4e - 2023-09-30
0.73.0-nightly-20230929-6635474e3 - 2023-09-29
0.73.0-nightly-20230928-8e36cc029 - 2023-09-28
0.73.0-nightly-20230926-aa1dffbb4 - 2023-09-26
0.73.0-nightly-20230926-27b631e5b - 2023-09-26
0.73.0-nightly-20230925-2de964cfd - 2023-09-25
0.73.0-nightly-20230924-030663bb0 - 2023-09-24
0.73.0-nightly-20230923-29f62a41b - 2023-09-23
0.73.0-nightly-20230922-353b31c7d - 2023-09-22
0.73.0-nightly-20230922-2fb4547aa - 2023-09-22
0.73.0-nightly-20230921-f39952ba7 - 2023-09-21
0.73.0-nightly-20230920-630cf3b21 - 2023-09-20
0.73.0-nightly-20230919-95fb44848 - 2023-09-19
0.73.0-nightly-20230918-1ac3dab6e - 2023-09-18
0.73.0-nightly-20230917-441822923 - 2023-09-17
0.73.0-nightly-20230916-3bc402f61 - 2023-09-16
0.73.0-nightly-20230915-850e55042 - 2023-09-15
0.73.0-nightly-20230914-4b6fd8145 - 2023-09-14
0.73.0-nightly-20230913-fe4dab970 - 2023-09-13
0.73.0-nightly-20230912-0e5ea2890 - 2023-09-12
0.73.0-nightly-20230911-db4a253c1 - 2023-09-11
0.73.0-nightly-20230910-bf955a035 - 2023-09-10
0.73.0-nightly-20230909-17ecae9ce - 2023-09-09
0.73.0-nightly-20230908-8658bdccb - 2023-09-08
0.73.0-nightly-20230907-eb5e7b20b - 2023-09-07
0.73.0-nightly-20230906-ef3e771a2 - 2023-09-06
0.73.0-nightly-20230905-a04a91838 - 2023-09-05
0.73.0-nightly-20230904-3ec22c1e6 - 2023-09-04
0.73.0-nightly-20230903-041f459d8 - 2023-09-03
0.73.0-nightly-20230902-7a0d2a06f - 2023-09-02
0.73.0-nightly-20230901-5f40f0800 - 2023-09-01
0.73.0-nightly-20230831-a5fd0f17e - 2023-08-31
0.73.0-nightly-20230830-5f1404de0 - 2023-08-30
0.73.0-nightly-20230829-f60c5ddc4 - 2023-08-29
0.73.0-nightly-20230828-ef7ab56c3 - 2023-08-28
0.73.0-nightly-20230827-ef7ab56c3 - 2023-08-27
0.73.0-nightly-20230826-246b5cf41 - 2023-08-26
0.73.0-nightly-20230825-18c4cb119 - 2023-08-25
0.73.0-nightly-20230824-10a076f6e - 2023-08-24
0.73.0-nightly-20230823-0b6e9bf0d - 2023-08-23
0.73.0-nightly-20230822-4f7cdd572 - 2023-08-22
0.73.0-nightly-20230821-80685d52b - 2023-08-21
0.73.0-nightly-20230820-eb3d5a4b8 - 2023-08-20
0.73.0-nightly-20230819-84e593429 - 2023-08-19
0.73.0-nightly-20230818-4deb29ae1 - 2023-08-18
0.73.0-nightly-20230817-17f957aad - 2023-08-17
0.73.0-nightly-20230816-676676c95 - 2023-08-16
0.73.0-nightly-20230815-3b43d56f3 - 2023-08-15
0.73.0-nightly-20230814-a978d343a - 2023-08-14
0.73.0-nightly-20230813-0279a7074 - 2023-08-13
0.73.0-nightly-20230812-ae88aef12 - 2023-08-12
0.73.0-nightly-20230811-68c7cfe62 - 2023-08-11
0.73.0-nightly-20230810-85eb2c95d - 2023-08-10
0.73.0-nightly-20230809-cb60e5c67 - 2023-08-09
0.73.0-nightly-20230809-8ccd07aa0 - 2023-08-09
0.73.0-nightly-20230809-695a03e21 - 2023-08-09
0.73.0-nightly-20230808-93d9248e0 - 2023-08-08
0.73.0-nightly-20230807-f9a63ec00 - 2023-08-07
0.73.0-nightly-20230807-2bf59c764 - 2023-08-07
0.73.0-nightly-20230731-b0a8d45e2 - 2023-07-31
0.73.0-nightly-20230730-cbf9408dd - 2023-07-30
0.73.0-nightly-20230729-265f72f6d - 2023-07-29
0.73.0-nightly-20230728-c168a4f88 - 2023-07-28
0.73.0-nightly-20230727-d380bb847 - 2023-07-27
0.73.0-nightly-20230726-bae63d492 - 2023-07-26
0.73.0-nightly-20230725-e64756ae5 - 2023-07-25
0.73.0-nightly-20230724-75f458891 - 2023-07-24
0.73.0-nightly-20230723-2b9349177 - 2023-07-23
0.73.0-nightly-20230722-e6dd22c62 - 2023-07-22
0.73.0-nightly-20230721-ccc50ddd2 - 2023-07-21
0.73.0-nightly-20230720-2669f8c38 - 2023-07-20
0.73.0-nightly-20230719-c0b04d664 - 2023-07-19
0.73.0-nightly-20230718-b8d60a834 - 2023-07-18
0.73.0-nightly-20230717-eadbfb86c - 2023-07-17
0.73.0-nightly-20230716-8ab9a7767 - 2023-07-16
0.73.0-nightly-20230715-4c944540f - 2023-07-15
0.73.0-nightly-20230714-4c944540f - 2023-07-14
0.73.0-nightly-20230712-6172988f4 - 2023-07-12
0.73.0-nightly-20230711-f396067cc - 2023-07-11
0.73.0-nightly-20230710-43f7781c8 - 2023-07-10
0.73.0-nightly-20230709-50f620a1a - 2023-07-09
0.73.0-nightly-20230708-170606653 - 2023-07-08
0.73.0-nightly-20230707-170606653 - 2023-07-07
0.73.0-nightly-20230706-147a02039 - 2023-07-06
0.73.0-nightly-20230705-294b1b5a6 - 2023-07-05
0.73.0-nightly-20230704-9c0441b8a - 2023-07-04
0.73.0-nightly-20230703-2910f87b5 - 2023-07-03
0.73.0-nightly-20230702-259a31689 - 2023-07-02
0.73.0-nightly-20230701-eca0d1231 - 2023-07-01
0.73.0-nightly-20230630-5fd32d71e - 2023-06-30
0.73.0-nightly-20230629-3f6412b93 - 2023-06-29
0.73.0-nightly-20230628-15d735b35 - 2023-06-28
0.73.0-nightly-20230627-6fbbe26f5 - 2023-06-27
0.73.0-nightly-20230626-e1fd4a8fc - 2023-06-26
0.73.0-nightly-20230625-945ab0dec - 2023-06-25
0.73.0-nightly-20230624-2aedda974 - 2023-06-24
0.73.0-nightly-20230623-330639f74 - 2023-06-23
0.73.0-nightly-20230622-0201e51bb - 2023-06-22
0.73.0-nightly-20230620-936936ca5 - 2023-06-20
0.73.0-nightly-20230619-33deed518 - 2023-06-19
0.73.0-nightly-20230618-564a83681 - 2023-06-18
0.73.0-nightly-20230617-061e3245b - 2023-06-17
0.73.0-nightly-20230616-5f8bbf2bd - 2023-06-16
0.73.0-nightly-20230615-2ae163a7e - 2023-06-15
0.73.0-nightly-20230614-b0485bed0 - 2023-06-14
0.73.0-nightly-20230612-a300a35f2 - 2023-06-12
0.73.0-nightly-20230611-03f70bf99 - 2023-06-11
0.73.0-nightly-20230610-03f70bf99 - 2023-06-10
0.73.0-nightly-20230609-c5e0e2d16 - 2023-06-09
0.73.0-nightly-20230608-f3c86364d - 2023-06-08
0.73.0-nightly-20230607-4540668c1 - 2023-06-07
0.73.0-nightly-20230606-396cdac62 - 2023-06-06
0.73.0-nightly-20230605-5062553c6 - 2023-06-05
0.73.0-nightly-20230604-2d07d5f16 - 2023-06-04
0.73.0-nightly-20230603-fd9e295be - 2023-06-03
0.73.0-nightly-20230602-e25c6632a - 2023-06-02
0.73.0-nightly-20230601-d9b3339ef - 2023-06-01
0.73.0-nightly-20230531-d0fed3adb - 2023-05-31
0.73.0-nightly-20230530-730ca3540 - 2023-05-30
0.73.0-nightly-20230529-9084ee133 - 2023-05-29
0.73.0-nightly-20230528-20e66db0b - 2023-05-28
0.73.0-nightly-20230527-20e66db0b - 2023-05-27
0.73.0-nightly-20230526-20e66db0b - 2023-05-26
0.73.0-nightly-20230525-58ef9e92d - 2023-05-25
0.73.0-nightly-20230524-be8af2274 - 2023-05-24
0.73.0-nightly-20230522-d470dee0c - 2023-05-22
0.73.0-nightly-20230521-6d24ee13a - 2023-05-21
0.73.0-nightly-20230519-fd92341cc - 2023-05-19
0.73.0-nightly-20230519-de1e9f5d1 - 2023-05-19
0.73.0-nightly-20230517-012e4bd65 - 2023-05-17
0.73.0-nightly-20230516-eb0db6f9f - 2023-05-16
0.73.0-nightly-20230515-066f0b76d - 2023-05-15
0.73.0-nightly-20230514-02ec60bd3 - 2023-05-14
0.73.0-nightly-20230513-02ec60bd3 - 2023-05-13
0.73.0-nightly-20230512-e98547009 - 2023-05-12
0.73.0-nightly-20230511-92fc503d5 - 2023-05-11
0.73.0-nightly-20230510-61fc1a579 - 2023-05-10
0.73.0-nightly-20230509-9cceb43c5 - 2023-05-09
0.73.0-nightly-20230508-17f8c2d12 - 2023-05-08
0.73.0-nightly-20230507-e1876af92 - 2023-05-07
0.73.0-nightly-20230506-1af868c52 - 2023-05-06
0.72.12 - 2024-03-11
0.72.11 - 2024-02-28
0.72.10 - 2024-01-18
Added
- Unhandled promise rejection - attach non-standard Error object stack info if possible (655b12dbfa by @ ospfranco)
Fixed
- Revert the regression of iOS min version and updates Podfile.lock for Releases (1f70f58aa4 by @ cipolleschi)
- Fix flags (565281105e by @ cipolleschi)
You can participate in the conversation on the status of this release in this discussion

To help you upgrade to this version, you can use the upgrade helper ⚛️

You can find the whole changelog history in the CHANGELOG.md file.
0.72.9 - 2024-01-08
Fixed
- Fix installation error for boost dependency — see #42110
- React-Fabric fails to build with -std=c++20 because implicit constructors are no longer generated (b7c1a40db by @ tido64)
You can participate in the conversation on the status of this release in this discussion

To help you upgrade to this version, you can use the upgrade helper ⚛️

You can find the whole changelog history in the CHANGELOG.md file.
0.72.8 - 2023-12-20
0.72.7 - 2023-11-14
0.72.6 - 2023-10-12
0.72.5 - 2023-09-25
0.72.4 - 2023-08-14
0.72.3 - 2023-07-12
0.72.2 - 2023-07-11
0.72.1 - 2023-06-29
0.72.0 - 2023-06-21
0.72.0-rc.6 - 2023-06-13
0.72.0-rc.5 - 2023-06-01
0.72.0-rc.4 - 2023-05-31
0.72.0-rc.3 - 2023-05-11
0.72.0-rc.2 - 2023-05-04
0.72.0-rc.1 - 2023-04-05
0.72.0-rc.0 - 2023-03-20
0.71.17 - 2024-02-27
0.71.16 - 2024-01-30

Changed

Android specific
- Cherry-picking 'Call super.onRequestPermissionsResult in ReactActivity (#42478)' onto 0.71 (8593306b34 by @ LimAlbert)
Fixed
- Symbolication stack fix (0.71.x) (022a9f7835 by @ joe-sam)
iOS specific
- Fix path to build-apple-framework (9d6a740bf7 by @ hurali97)
- Disable bitcode for Hermes (d6fe029858 by @ hurali97)
- Fix symbol not found _jump_fcontext with use_frameworks! (bb592ef0dd by @ hurali97)
- Fix flags (c38cdb60ca by @ cipolleschi)
You can participate in the conversation on the status of this release in this discussion

To help you upgrade to this version, you can use the upgrade helper ⚛️

You can find the whole changelog history in the changelog.md file.
0.71.15 - 2024-01-08

v0.71.15

Fixed

Android specific
- Fix android crash when apply PlatformColor to borders (265af222aa by @ axinvd)
- Fixed crash occurring in certain native views when keyboard events are fired. (9497203957 by @ kot331107)
iOS specific
- Migrate away from JFrog to download boost (ab19fd6aef by @ cipolleschi)
- Fix overriding EXCLUDED_ARCHS when installing Hermes on RN v0.71 (16a605b6a3 by @ ken0nek)
Changed
- Update node installation on debian (0.71) (bdc0ef3466 by @ cipolleschi)
- Bump cli to 10.2.6 (0bc2dd03c1 by @ hurali97)
- Fix version of react-native-codegen (c74602fe47 by @ lunaleaps)
You can participate in the conversation on the status of this release in this discussion

To help you upgrade to this version, you can use the upgrade helper ⚛️

You can find the whole changelog history in the changelog.md file.
0.71.14 - 2023-10-12
0.71.13 - 2023-08-22
0.71.12 - 2023-07-04
0.71.11 - 2023-06-14
0.71.10 - 2023-06-07
0.71.9 - 2023-06-07
0.71.8 - 2023-05-10
0.71.7 - 2023-04-19
0.71.6 - 2023-04-03
0.71.5 - 2023-03-29
0.71.4 - 2023-03-08
0.71.3 - 2023-02-14
0.71.2 - 2023-02-01
0.71.1 - 2023-01-19
0.71.0 - 2023-01-12
0.71.0-rc.6 - 2023-01-09
0.71.0-rc.5 - 2022-12-19
0.71.0-rc.4 - 2022-12-14
0.71.0-rc.3 - 2022-11-30
0.71.0-rc.2 - 2022-11-24
0.71.0-rc.1 - 2022-11-23
0.71.0-rc.0 - 2022-11-04
0.70.15 - 2024-01-16
Changed
- BUMP CLI to v9.3.5 (cb170efdd3 by @ hurali97)
- Bump react-devtools-core to 4.27.7 (abb4a2bddd by @ lunaleaps)
- Bump hermes-engine (5b95254359 by @ cipolleschi)
Fixed

iOS specific
- Migrate boost download url away from JFrog (e8e059a977 by @ cipolleschi)
0.70 is now out of the support window. Please migrate to 0.71. See latest pick discussions on 0.71.16 here

To help you upgrade to this version, you can use the upgrade helper ⚛️

You can find the whole changelog history in the CHANGELOG.md file.
0.70.14 - 2023-10-24
0.70.13 - 2023-07-28
0.70.12 - 2023-07-05
0.70.11 - 2023-07-04
0.70.10 - 2023-06-08
0.70.9 - 2023-04-19
0.70.8 - 2023-04-04
0.70.7 - 2023-01-31
0.70.6 - 2022-11-15
0.70.5 - 2022-11-06
0.70.4 - 2022-10-25
0.70.3 - 2022-10-12
0.70.2 - 2022-10-04
0.70.1 - 2022-09-15
0.70.0 - 2022-09-05
0.70.0-rc.4 - 2022-08-22
0.70.0-rc.3 - 2022-08-15
0.70.0-rc.2 - 2022-08-04
0.70.0-rc.1 - 2022-07-28
0.70.0-rc.0 - 2022-07-15
0.69.12 - 2023-07-04
0.69.11 - 2023-06-08
0.69.10 - 2023-04-25
0.69.9 - 2023-04-04
0.69.8 - 2023-01-30
0.69.7 - 2022-11-06
0.69.6 - 2022-09-27
0.69.5 - 2022-08-25
0.69.4 - 2022-08-08
0.69.3 - 2022-07-25
0.69.2 - 2022-07-20
0.69.1 - 2022-06-29
0.69.0 - 2022-06-22
0.69.0-rc.6 - 2022-06-01
0.69.0-rc.5 - 2022-05-31
0.69.0-rc.4 - 2022-05-31
0.69.0-rc.3 - 2022-05-24
0.69.0-rc.2 - 2022-05-20
0.69.0-rc.1 - 2022-05-11
0.69.0-rc.0 - 2022-04-28
0.68.7 - 2023-04-26
0.68.6 - 2023-01-30
0.68.5 - 2022-11-06
0.68.4 - 2022-10-10
0.68.3 - 2022-08-08
0.68.2 - 2022-05-09
0.68.1 - 2022-04-13
0.68.0 - 2022-03-30
0.68.0-rc.4 - 2022-03-25
0.68.0-rc.3 - 2022-03-17
0.68.0-rc.2 - 2022-02-24
0.68.0-rc.1 - 2022-02-03
0.68.0-rc.0 - 2022-01-28
0.67.5 - 2022-11-06
0.67.4 - 2022-03-18
0.67.3 - 2022-02-22
0.67.2 - 2022-01-31
0.67.1 - 2022-01-20
0.67.0 - 2022-01-18
0.67.0-rc.6 - 2021-12-14
0.67.0-rc.5 - 2021-12-06
0.67.0-rc.4 - 2021-11-30
0.67.0-rc.3 - 2021-11-05
0.67.0-rc.2 - 2021-10-25
0.67.0-rc.1 - 2021-10-22
0.67.0-rc.0 - 2021-10-16
0.66.5 - 2022-11-06
0.66.4 - 2021-12-09
0.66.3 - 2021-11-10
0.66.2 - 2021-11-04
0.66.1 - 2021-10-15
0.66.0 - 2021-10-01
0.66.0-rc.4 - 2021-09-24
0.66.0-rc.3 - 2021-09-17
0.66.0-rc.2 - 2021-09-10
0.66.0-rc.1 - 2021-09-01
0.66.0-rc.0 - 2021-08-27
0.65.3 - 2022-11-06
0.65.2 - 2021-11-04
0.65.1 - 2021-08-19
0.65.0 - 2021-08-17
0.65.0-rc.4 - 2021-08-11
0.65.0-rc.3 - 2021-07-23
0.65.0-rc.2 - 2021-06-18
0.65.0-rc.1 - 2021-06-17
0.65.0-rc.0 - 2021-06-09
0.64.4 - 2022-11-07
0.64.3 - 2021-11-04
0.64.2 - 2021-06-03
0.64.1 - 2021-05-05
0.64.0 - 2021-03-12
0.64.0-rc.4 - 2021-03-01
0.64.0-rc.3 - 2021-02-05
0.64.0-rc.2 - 2020-12-18
0.64.0-rc.1 - 2020-11-25
0.64.0-rc.0 - 2020-11-23
0.63.5 - 2022-11-07
0.63.4 - 2020-11-30
0.63.3 - 2020-09-29
0.63.2 - 2020-07-22
0.63.1 - 2020-07-14
0.63.0 - 2020-07-08
0.63.0-rc.1 - 2020-05-04
0.63.0-rc.0 - 2020-04-16
0.62.3 - 2021-05-05
0.62.2 - 2020-04-08
0.62.1 - 2020-04-03
0.62.0 - 2020-03-26
0.62.0-rc.5 - 2020-03-07
0.62.0-rc.4 - 2020-03-06
0.62.0-rc.3 - 2020-02-25
0.62.0-rc.2 - 2020-02-13
0.62.0-rc.1 - 2020-01-21
0.62.0-rc.0 - 2019-12-18
0.61.5 - 2019-11-23
0.61.4 - 2019-11-04
0.61.3 - 2019-10-29
0.61.2 - 2019-10-02
0.61.1 - 2019-09-25
0.61.0 - 2019-09-24
0.61.0-rc.3 - 2019-09-10
0.61.0-rc.2 - 2019-09-04
0.61.0-rc.0 - 2019-08-27
0.60.6 - 2019-09-24
0.60.5 - 2019-08-13

from react-native GitHub release notes

Commit messages

Package name: react-native

02f163e [0.73.5] Bump version numbers
bcea2b4 choco install -y
9c95348 Revert "[0.73-stable] Cherry-pick improvements to monorepo publish script (#42991)"
a655555 Revert "Remove getTagsFromCommit because we didnt pick https://github.com/Support specifying dist-tags for monorepo package bumps facebook/react-native#42146"
d1ca7db bumped packages versions
5ca5e3b Fix TextInput vertical alignment issue when using lineHeight prop on iOS without changing Text baseline (Paper - old arch) (#38359)
242d4a7 Merge branch '0.73-stable' of https://github.com/facebook/react-native into 0.73-stable
0061bea Fix RCTFabric podspec (#42639)
929df58 [RN][iOS] Fix compiler flags passed to libraries (#43088)
3bdd54a hermes bump
ffcd8f5 Update CLI to 12.3.6 (#43095)
7d06cd8 Remove getTagsFromCommit because we didnt pick https://github.com/Support specifying dist-tags for monorepo package bumps facebook/react-native#42146
62c4664 [0.73-stable] Cherry-pick improvements to monorepo publish script (#42991)
67e2bb4 fix: fix codegen not finding all third-party libraries (#42943)
af224d7 Local: Update rn-tester podfile
27968ea fix(dev-middleware): fix `react-native config` failing in pnpm setups (#42907)
3d9d5b3 Patches `with-environment.sh` script (#42184)
36a4a24 [0.73.4] Bump version numbers
de8b34a bumped packages versions
80aac8b bumped packages versions
6e18674 bumped packages versions
6b69b34 bumped packages versions
562447b [LOCAL][0.73] fix: cannot find module `react-native-*/Libraries/Core/InitializeCore` (#42877)
055b35d bumped packages versions

<a href="https://snyk.io/redir...

Snyk has created this PR to upgrade react-native from 0.60.5 to 0.73.5. See this package in npm: https://www.npmjs.com/package/react-native See this project in Snyk: https://app.snyk.io/org/nexuscompute/project/97dad2f1-8e5c-4578-b086-d3fbb19a6c3c?utm_source=github&utm_medium=referral&page=upgrade-pr

guardrails · 2024-03-19T06:14:18Z

⚠️ We detected 1 security issue in this pull request:

Vulnerable Libraries (1)

Severity	Details
Critical	pkg:npm/react-native@0.73.5 upgrade to: > 0.73.5

More info on how to fix Vulnerable Libraries in JavaScript.

👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.

[Snyk] Upgrade react-native from 0.60.5 to 0.73.5 #1267

Are you sure you want to change the base?

[Snyk] Upgrade react-native from 0.60.5 to 0.73.5 #1267

Conversation

NOUIY commented Mar 19, 2024

Snyk has created this PR to upgrade react-native from 0.60.5 to 0.73.5.

Changelog

Security

Changed

Fixed

How to Test

Help us testing 🧪

v0.73.4

Fixed

Android

iOS

Fixed

Added

iOS specific

Changed

Android specific

iOS specific

Fixed

iOS specific

Added

Changed

iOS specific

Fixed

iOS specific

Added

Fixed

Fixed

Changed

Android specific

Fixed

iOS specific

v0.71.15

Fixed

Android specific

iOS specific

Changed

Changed

Fixed

iOS specific

guardrails bot commented Mar 19, 2024