CutCat
CutCat copied to clipboard
Published
20 hours ago •
ansnoussi
ansnoussi
[Snyk] Security upgrade expo from 42.0.3 to 44.0.0
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.
Changes included in this PR
- Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- mobile-client/package.json
- mobile-client/package-lock.json
Vulnerabilities that will be fixed
With an upgrade:
| Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity |
|---|---|---|---|---|
 |
786/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 9.3 |
Incomplete List of Disallowed Inputs SNYK-JS-BABELTRAVERSE-5962462 |
Yes | Proof of Concept |
 |
696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5 |
Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795 |
Yes | Proof of Concept |
(*) Note that the real score may have changed since the PR was raised.
Commit messages
Package name: expo
The new version differs by 250 commits.- e8bb7f2 Publish packages
- 150733e Publish packages
- a32dfd8 [core][ios] Fixed the deep link wasn't passed to the application (#15593)
- 6c4b756 [android] Bump versions
- 4e2f7fe [android] Fix another background task exception (#15591)
- 805f1c6 [android] Fix reanimated exception in remote debugging mode (#15588)
- c8baac8 [templates] Update for latest packages
- 779a011 Publish packages
- 2dd1db1 [expo] update bundledNativeModules for [email protected] (#15571)
- 3ba8649 [bare-expo][skip ci] Update Podfile.lock
- 05ed3e3 [autolinking] Add `podspecPath` option to config (#15578)
- 46fa196 [android][ios] Bump versions
- 3d08e4e [android] Fix headless mode crash (#15575)
- d4557ac [android][ios] Upgrade react-native-reanimated to 2.3.1 (#15574)
- 3435520 [android][ios] Upgrade react-native-gesture-handler to 2.1.0 (#15568)
- 58a32c5 Publish expo-dev-launcher, expo-dev-client
- ef8feec [dev-launcher] Rebuild plugin
- 88e27f1 [expo-dev-launcher] take 2 at SDK 44 plugin compatibility (#15570)
- 78867f1 [location] Add missing dependency on unimodules-task-manager-interface (#15569)
- f501345 [config][dev-launcher] Fix compatibility with SDK 44 (#15562)
- e133020 [expo-dev-launcher] include expo-platform header in manifest requests (#15563)
- 6c62ca1 [expo-dev-launcher] fix config plugin when expo-updates isn't found (#15541)
- 58ec4b4 [bare-expo] fix launch crash from admob (#15528)
- bf83eeb [core] Add onNewIntent and onBackPressed to ReactActivityLifecycleListener (#15550)
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📚 Read more about Snyk's upgrade and patch logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Regular Expression Denial of Service (ReDoS)
