Skip to content

[Snyk] Upgrade react-native from 0.72.6 to 0.79.1 #16

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

[Snyk] Upgrade react-native from 0.72.6 to 0.79.1 #16

wants to merge 1 commit into from

Conversation

rayston92
Copy link

snyk-top-banner

Snyk has created this PR to upgrade react-native from 0.72.6 to 0.79.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 699 versions ahead of your current version.

  • The recommended version was released 23 days ago.

Issues fixed by the recommended upgrade:

Issue Score Exploit Maturity
medium severity Server-Side Request Forgery (SSRF)
SNYK-JS-IP-7148531		 646 Proof of Concept
Release notes
Package name: react-native
  • 0.79.1 - 2025-04-15

    Changed

    Android specific

    • DevSupport: Change defaultJSExceptionHandler's type to JSExceptionHandler on the ReleaseDevSupportManager (9eb75d4bd5 by @ alanjhughes)

    iOS specific

    • TextInput: Typing into TextInput now will not cause the caret position to update to the beginning when a zero-length selection is set. (7771317e5c by @ ouchuan)

    Fixed

    Android specific

    iOS specific

    Hermes dSYMS:

    You can file issues or pick requests against this release here.

    To help you upgrade to this version, you can use the Upgrade Helper ⚛️.

    View the whole changelog in the CHANGELOG.md file.

  • 0.79.0 - 2025-04-08

    Added

    Android specific

    • Docs: Improve ToastAndroid jsdocs (299a7a959d by @ mateoguzmana)
    • Gradle: Add support for Gradle Configuration caching (e41887e62f by @ cortinico)
    • Initialization: On DefaultNewArchitectureEntryPoint class add property to specify the desired release level for an application (19c18eb995 by @ jorge-cab)
    • Initialization: Set ReactSurface and ReactRootView to ReactDelegate when created via ReactNavigationActivityDelegate (a302fbcaaf by Maddie Lord)

    iOS specific

    Breaking

    Android specific

    Changed

    • Animated: Introduced a feature flag to test an optimization in Animated to reduce memory usage. (fb8a6a5bb0 by @ yungsters)
    • Animated: The AnimatedNode graph will not occur during the insertion effect phase, which means animations can now be reliably started during layout effects. (e0c0476553 by @ yungsters)
    • Animated: When an Animated component is updated or unmounted, AnimatedNode instances will now detach in a microtask instead of synchronously in the commit phase of React. This will cause the completion callback of finished animations to execute after the commit phase instead of during it. (50b75a74d1 by @ yungsters)
    • Codegen: Replace jscodeshift with @ babel/core (8f19201 by @ kitten)
    • Deps: Bump Node 18 -> 20 to build React Native in OSS (1fd3806ee9 by @ cortinico)
    • Deps: Upgrade React DevTools to 6.1.0. (07860545f5 by @ hoxyq)
    • Deps: Upgrade React DevTools to 6.1.1. (5c88633035 by @ hoxyq)
    • DevX: Debugger.scriptParsed now includes the field sourceMapURL as a (rewritten) remote url as opposed to base64 data url (ff2e40371e by @ vzaidman)
    • DevX: Removed a long-running loop causing the app to lag while attempting a connection to Metro (9b977def6c by @ EdmondChuiHW)
    • FeatureFlags: Re-enable enableFixForViewCommandRace feature flag (ae59702f8e by @ okwasniewski)
    • Flow: Improved eventInitDict type in WebSocketEvent class (fa2fac1372 by @ coado)
    • Flow: Improved Props type in UnimplementedView (b200c7cb2f by @ coado)
    • Flow: Improved types for exported Types and Properties in LayoutAnimation (3c02738ec4 by @ coado)
    • Flow: Improved types in AnimatedWeb (647ca90a30 by @ coado)
    • Flow: Improved types in ScrollView (1be2ba4597 by @ coado)
    • Flow: Improved types in StatusBar by adding StackProps (48cafc0b69 by @ coado)
    • Flow: Improved types in TextAncestor (df9d43f02b by @ coado)
    • Flow: Improved types in WebSockertInterceptor callbacks (d2adb976ab by @ coado)
    • Flow: Refactored Libraries/Components/StaticRenderer syntax (0e6cb590ec by @ coado)
    • Flow: Replaced $FlowFixMe in CodegenTypes with Object type (812c3b33cd by @ coado)
    • Flow: Replaced $FlowFixMe in InteractionManager to Function type (cd7a30ce48 by @ coado)
    • Flow: Replaced $FlowFixMe in NativeModules with any type (286a360d9b by @ coado)
    • Flow: Replaced $FlowFixMe in RCTDeviceEventEmitter with any (8df6cfa56b by @ coado)
    • Flow: Replaced $FlowFixMe with PressEvent in ScrollViewNativeComponentType (8befab1760 by @ coado)
    • Metro: Update Metro to ^0.82.0 (8421b8a872 by @ robhogan)
    • TypeScript: Improve TypeScript types for global objects (094c5be42e by @ coado)
    • TypeScript: Increase minimum typescript version in index.d.ts (721f85adf7 by @ coado)
    • TypeScript: Move view flattening props to cross platform type interface (ecad90ad8b by @ okwasniewski)

    Android specific

    iOS specific

    Deprecated

    • DevX: Deprecated usage of HERMES_ENABLE_DEBUGGER build-time flag for enabling React Native debugger in favour of REACT_NATIVE_DEBUGGER_ENABLED and REACT_NATIVE_DEBUGGER_ENABLED_DEVONLY. (5fcb69e8b7 by @ hoxyq)

    iOS specific

    Android specific

    • Layout: ViewManagerPropertyUpdater.updateProps is deprecated, use the related ViewManager APIs instead (a18bc58645 by @ javache)
    • Layout: Deprecated ViewManagerDelegate#setProperty and ViewManagerDelegate#receiveCommand (5a290c4cab by @ javache)

    Fixed

    Android specific

    iOS specific

    • C++: Update deprecated enums in RCTTextPrimitivesConversions.h (4121d24454 by @ joannaquu)
    • CocoaPods: JSRuntimeFactoryCAPI.h build error for use_frameworks build (7786805337 by @ Kudo)
    • CocoaPods: Make sure 3p libraries depends on React-renderercss to work with use_frameworks (cc12caa0a9 by @ cipolleschi)
    • CocoaPods: Compatibility with Ruby 3.4.0 (b1735bc593 by @ okwasniewski)
    • CocoaPods: Fix wrong cocoapods script on new_architecture.rb (541e655832 by @ CHOIMINSEOK)
    • Codegen: Enable use of multiple RCTAppDependencyProvider instances (0cc1ac18cf by @ vonovak)
    • DeviceInfo: Data race related to read/write of RCTDeviceInfo._invalidated. (2a18d83521 by @ hakonk)
    • DevX: Issue where performance monitor would be hidden under newly presented views. (e7556e921c by @ chrsmys)
    • DevX: Remove private symbols for non-simulator and non-catalyst builds. (9350d6f2f5 by @ EvanBacon)
    • Infra: Workaround for a iOS build app running on Apple Silicon Mac(in Xcode Destination: "Mac(Designed for iPad)") TextInput crash due to serialization attempt of WeakEventEmitter (0511e2e49a by @ iwater)
    • Initialization Make React Native work without AppDelegate window property (ae7bbe06c9 by @ okwasniewski)
    • JSC: Return nullptr when USE_THIRD_PARTY_JSC is set to true (515ff1e626 by @ okwasniewski)
    • Layout: Fix cases where background color, filter, and background image were sized incorrectly if there was a scaling transform (acaf94dc21 by @ joevilches)
    • Layout: Fix cases where background color, filter, and background image were sized incorrectly if there was a scaling transform (f835b824f4 by @ joevilches)
    • Layout: Improve detached keyboard detection, support Stage Manager on iOS (c499ae1192 by @ mhoran)
    • Layout: Layout direction changes are now honored on bundle reload. (36f29beac4 by @ chrsmys)
    • Layout: Suppressed iOS 13 deprecation warnings in RCTStatusBarManager (fffd6d75b4 by Ingrid Wang)
    • Native Module: Add guard for custom module provider lookup in TMManager (d0a101fbea by @ shwanton)
    • PullToRefresh: Fix new arch recycled RefreshControl was missing its title (e3d607fc2e by @ High5Apps)
    • Runtime: Convert to JSException only NSException from sync methods (9805a4f by @ cipolleschi)
    • Runtime: Handle null params in the Interop TM layer (6314925 by @ cipolleschi)
    • Runtime: Call RCTInitializeUIKitProxies before bridge create (a51fa6c002 by @ zhongwuzw)
    • Runtime: Fixed: extraModulesForBridge callback not called when New Architecture enabled (c0a5c2c3cb by Bruno Aybar)
    • Runtime: Enable back the opt-out from the New Architecture (9abdd619da by @ cipolleschi)
    • Runtime: Add missing loadFromSource method in the DefaultRNFactoryDelegate (7739615e0d by @ cipolleschi)
    • Runtime: App crash caused by the [RCTFileRequestHanlder invalidate] method (789ed7d5ad by @ zhouzh1)
    • Runtime: Bridge: Fixes HostTarget use after free when deallocated bridge (3e2e8ec757 by @ zhongwuzw)
    • TextInput: Fixes TextInput crashes when any text is entered while running as iOS app on apple silicon mac (8d7aca30e7 by @ zhongwuzw)
    • Text: Fixed onPress for Text with nested View. (6b2c40c64f by @ coado)
    • TextInput: Fix selection makes TextInput clear its content when using children (e3b176a598 by Olivier Bouillet)
    • TextInput: Fixed TextInput's onContentSizeChange event being dispatched multiple times with the same size (2bb65717b7 by @ j-piasecki)
    • TextInput: Implement dataDetectorTypes in the same way as the old architecture (2ae45ec3ce by @ VidocqH)

    Removed

    iOS specific

    Hermes dSYMS:

    You can file issues or pick requests against this release here.

    To help you upgrade to this version, you can use the Upgrade Helper ⚛️.

    View the whole changelog in the CHANGELOG.md file.

  • 0.79.0-rc.4 - 2025-03-31

    🥇 GOLDEN RC 🥇

    Stable release coming up next week.

    Fixed

    iOS specific

    • Network: Back out "fix: avoid race condition crash in [RCTDataRequestHandler invalidate]" (53eaf3e by @ cipolleschi)
    • CocoaPods: JSRuntimeFactoryCAPI.h build error for use_frameworks build (7786805337 by @ Kudo)

    Hermes dSYMS:

    You can file issues or pick requests against this release here.

    To help you upgrade to this version, you can use the Upgrade Helper ⚛️.

    View the whole changelog in the CHANGELOG.md file.

  • 0.79.0-rc.3 - 2025-03-24
  • 0.79.0-rc.2 - 2025-03-17
  • 0.79.0-rc.1 - 2025-03-11
  • 0.79.0-rc.0 - 2025-03-04
  • 0.79.0-nightly-20250303-cee63397b - 2025-03-03
  • 0.79.0-nightly-20250303-7ccb1e1fb - 2025-03-03
  • 0.79.0-nightly-20250220-41b597c73 - 2025-02-20
  • 0.79.0-nightly-20250219-b53e86b4b - 2025-02-19
  • 0.79.0-nightly-20250218-cda2d11c1 - 2025-02-18
  • 0.79.0-nightly-20250217-acdddef48 - 2025-02-17
  • 0.79.0-nightly-20250216-1498566c2 - 2025-02-16
  • 0.79.0-nightly-20250215-103f8b388 - 2025-02-15
  • 0.79.0-nightly-20250214-b3c41cef9 - 2025-02-14
  • 0.79.0-nightly-20250213-9a401c810 - 2025-02-13
  • 0.79.0-nightly-20250212-a73393001 - 2025-02-12
  • 0.79.0-nightly-20250211-fffd6d75b - 2025-02-11
  • 0.79.0-nightly-20250210-b45a3e5cd - 2025-02-10
  • 0.79.0-nightly-20250209-7b7c45030 - 2025-02-09
  • 0.79.0-nightly-20250208-7b7c45030 - 2025-02-08
  • 0.79.0-nightly-20250207-5d4f9467d - 2025-02-07
  • 0.79.0-nightly-20250206-fb8a6a5bb - 2025-02-06
  • 0.79.0-nightly-20250205-b0501a5be - 2025-02-05
  • 0.79.0-nightly-20250204-bc4dee94f - 2025-02-04
  • 0.79.0-nightly-20250203-e45883e44 - 2025-02-03
  • 0.79.0-nightly-20250202-e45883e44 - 2025-02-02
  • 0.79.0-nightly-20250201-4523fdd93 - 2025-02-01
  • 0.79.0-nightly-20250131-64c2a52ca - 2025-01-31
  • 0.79.0-nightly-20250130-40575f26d - 2025-01-30
  • 0.79.0-nightly-20250129-3b5dc5626 - 2025-01-29
  • 0.79.0-nightly-20250128-701622506 - 2025-01-28
  • 0.79.0-nightly-20250127-aa5760837 - 2025-01-27
  • 0.79.0-nightly-20250126-aa5760837 - 2025-01-26
  • 0.79.0-nightly-20250125-e44b2fa97 - 2025-01-25
  • 0.79.0-nightly-20250124-5ea7594b5 - 2025-01-24
  • 0.79.0-nightly-20250123-d1028885e - 2025-01-23
  • 0.79.0-nightly-20250122-6cbdc9445 - 2025-01-22
  • 0.79.0-nightly-20250121-140b3b38d - 2025-01-21
  • 0.79.0-nightly-20250116-843582b8b - 2025-01-16
  • 0.78.2 - 2025-04-01

    Changed

    • Deps: M...

@snyk-bot
fix: upgrade react-native from 0.72.6 to 0.79.1
6620562 
Snyk has created this PR to upgrade react-native from 0.72.6 to 0.79.1.

See this package in npm:
react-native

See this project in Snyk:
https://app.snyk.io/org/rayston92/project/34489d72-b2e3-4961-ad49-9f998520afcb?utm_source=github&utm_medium=referral&page=upgrade-pr
@coderabbitai coderabbitai
Copy link

coderabbitai bot commented May 8, 2025

Important

Review skipped

Ignore keyword(s) in the title.

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share
🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

  • Review comments: Directly reply to a review comment made by CodeRabbit. Example:
    • I pushed a fix in commit <commit_id>, please review it.
    • Generate unit testing code for this file.
    • Open a follow-up GitHub issue for this discussion.
  • Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
    • @coderabbitai generate unit testing code for this file.
    • @coderabbitai modularize this function.
  • PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
    • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
    • @coderabbitai read src/utils.ts and generate unit testing code.
    • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
    • @coderabbitai help me debug CodeRabbit configuration file.

Support

Need help? Create a ticket on our support page for assistance with any issues or questions.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

  • @coderabbitai pause to pause the reviews on a PR.
  • @coderabbitai resume to resume the paused reviews.
  • @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
  • @coderabbitai full review to do a full review from scratch and review all the files again.
  • @coderabbitai summary to regenerate the summary of the PR.
  • @coderabbitai generate docstrings to generate docstrings for this PR.
  • @coderabbitai generate sequence diagram to generate a sequence diagram of the changes in this PR.
  • @coderabbitai resolve resolve all the CodeRabbit review comments.
  • @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
  • @coderabbitai help to get help.

Other keywords and placeholders

  • Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
  • Add @coderabbitai summary or Summary to generate the high-level summary at a specific location in the PR description.
  • Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

  • You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
  • Please see the configuration documentation for more information.
  • If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

  • Visit our Documentation for detailed information on how to use CodeRabbit.
  • Join our Discord Community to get help, request features, and share feedback.
  • Follow us on X/Twitter for updates and announcements.

@socket-security Socket Security
Copy link

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security		 Vulnerability Quality Maintenance License
Addednode-releases@​2.0.131001004179100
Addedside-channel@​1.0.4671006552100
Addedtyped-array-buffer@​1.0.0671007451100
Addedwhich-collection@​1.0.1671008751100
Addedsafer-buffer@​2.1.26710010051100
Addedtypedarray@​0.0.6671008751100
Addedsafe-regex-test@​1.0.0671007651100
Addedobject.hasown@​1.1.3671008351100
Addedset-function-length@​1.1.1671008351100
Addedobject.fromentries@​2.0.7671008151100
Addedpath-parse@​1.0.7671007851100
Addedobject-keys@​1.1.1671009151100
Addedunbox-primitive@​1.0.2671008051100
Addedsafe-array-concat@​1.0.1671008352100
Addedtyped-array-length@​1.0.4671008852100
Addedstring.prototype.trim@​1.2.8671008152100
Addedobject.values@​1.1.7671008552100
Addedstring.prototype.matchall@​4.0.10661009252100
Addedtyped-array-byte-length@​1.0.0671009052100
See 285 more rows in the dashboard

View full report

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@rayston92 @snyk-bot