Skip to content

[Snyk] Security upgrade expo-app-loading from 1.3.0 to 2.1.0#71

Open
hauni97 wants to merge 1 commit into
mainfrom
snyk-fix-a76f481f35bb04da794af5f21dd57693
Open

[Snyk] Security upgrade expo-app-loading from 1.3.0 to 2.1.0#71
hauni97 wants to merge 1 commit into
mainfrom
snyk-fix-a76f481f35bb04da794af5f21dd57693

Conversation

@hauni97

@hauni97 hauni97 commented May 14, 2024

Copy link
Copy Markdown
Owner

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

  • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
    • Clublit_front_end/package.json

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Breaking Change Exploit Maturity
high severity 661/1000
Why? Recently disclosed, Has a fix available, CVSS 7.5
Uncontrolled resource consumption
SNYK-JS-BRACES-6838727
Yes No Known Exploit
high severity 661/1000
Why? Recently disclosed, Has a fix available, CVSS 7.5
Inefficient Regular Expression Complexity
SNYK-JS-MICROMATCH-6838728
Yes No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages
Package name: expo-app-loading The new version differs by 250 commits.
  • 093d340 Publish packages
  • 0d778fd [config-types] Update for SDK 46 [skip ci]
  • a6f72bc [jest-expo] Update mocks
  • 7790515 [expo-updates] fix proguard in Android builds (#18035)
  • 1b721d6 [github] Disable dogfood home job until someone has time to fix it
  • 5d0ad63 [android][ios][ncl] Add FlashList (#18137)
  • cdbc6fc [docs] Upgrading Expo SDK: Add SDK 45 (#18149)
  • 963d32f [docs] Update `uploadAsync` example (#17967)
  • 480b540 [docs] Fix typo in "Using Firebase" guide (#18140)
  • 719c467 [image-picker][ios] Restore support for GIFs (#18138)
  • 54b2c8c [packages] update problematic doc comments, regenerate files (#18128)
  • 1b633e4 [image-picker][ios] Fix crash when picking gif (#18135)
  • db8d77d [image-picker][ios] Support selecting multiple media (#18102)
  • 9f301b3 Bump moment from 2.29.2 to 2.29.4 (#18136)
  • fe0fd9e [prebuild-config] Remove the dependency on expo-modules-autolinking (#18110)
  • 44d93d1 [expo][expo-dev-launcher] improve error messaging in development clients (#18064)
  • 6bc8d37 [github] fix labeling on dev client issue template
  • 7274e17 [docs] update dev dependencies (#18087)
  • dab52cf [docs] Upgrades @ expo/styleguide (#18095)
  • f514d6f Update Podfile.lock in bare-expo
  • cf684fb [module-template] Add support for web (#18124)
  • a49fe69 [docs] ConfigPluginsProperties: use APISection Platform tags (#18123)
  • e5fa02c [e-m-c][docs] Document permission types (#18111)
  • 514c610 [create-expo-module] Ensure the target directory exists when provided (#18126)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.


Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic


Learn how to fix vulnerabilities with free interactive lessons:

🦉 Uncontrolled resource consumption

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants