Commit 9915a14
![snyk-io[bot]](https://avatars.githubusercontent.com/in/372950?v=4&size=40){kind=avatar}
[Snyk] Security upgrade react-native from 0.84.0 to 0.85.0 (#50)
### Description
Bumps `react-native` from `0.84.0` to `0.85.0` in the example app to fix
a medium-severity vulnerability
([SNYK-JS-INFLIGHT-6095116](https://snyk.io/vuln/SNYK-JS-INFLIGHT-6095116):
Missing Release of Resource after Effective Lifetime in the transitive
\`inflight\` dependency).
This PR was originally created by Snyk. The \`yarn.lock\` has been
updated to match.
### Testing
- Dependency-only change in the example app; no behaviour changes.
- CI lint, typecheck, and test suite pass.
### Security Review
> [!IMPORTANT]
> A security review is required for every PR in this repository to
comply with PCI requirements.
- [x] I have considered and reviewed security implications of this PR
and included the summary below.
#### Security Impact Summary
This PR upgrades a transitive dependency (`inflight`) that had a
resource leak vulnerability. No payment flows, authentication logic,
user data handling, or external integrations are changed. The upgrade
only affects the example app's dependency tree, not the SDK itself.
---------
Co-authored-by: snyk-io[bot] <141718529+snyk-io[bot]@users.noreply.github.com>
Co-authored-by: RhysAtBolt <rstewart@bolt.com>
Co-authored-by: Claude Sonnet 4.6 <noreply@anthropic.com>1 parent 2fd9eae commit 9915a14
2 files changed
Lines changed: 438 additions & 2 deletions
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
11 | 11 | | |
12 | 12 | | |
13 | 13 | | |
14 | | - | |
| 14 | + | |
15 | 15 | | |
16 | 16 | | |
17 | 17 | | |
| |||
0 commit comments