[Snyk] Upgrade react-native from 0.14.2 to 0.69.1

[omahn]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade react-native from 0.14.2 to 0.69.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 341 versions ahead of your current version.
• The recommended version was released 22 days ago, on 2022-06-29.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Prototype Override Protection Bypass npm:qs:20170213	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Regular Expression Denial of Service (ReDoS) npm:negotiator:20160616	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Regular Expression Denial of Service (ReDoS) npm:fresh:20170908	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Prototype Pollution npm:deep-extend:20180409	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Uninitialized Memory Exposure npm:base64-url:20180512	589/1000 Why? Has a fix available, CVSS 7.5	Mature
	Denial of Service (DoS) npm:ws:20171108	589/1000 Why? Has a fix available, CVSS 7.5	Mature
	Denial of Service (DoS) npm:ws:20160624	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Denial of Service (DoS) SNYK-JS-TRIMNEWLINES-1298042	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Improper Privilege Management SNYK-JS-SHELLJS-2332187	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-NTHCHECK-1586032	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) npm:minimatch:20160620	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-1019388	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Prototype Pollution SNYK-JS-MERGE-1042987	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-MERGE-1040469	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Command Injection SNYK-JS-LODASHTEMPLATE-1088054	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-73638	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-608086	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-567746	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-LODASH-450202	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Command Injection SNYK-JS-LODASH-1040724	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Remote Code Execution (RCE) SNYK-JS-EJS-2803307	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Uninitialized Memory Exposure npm:tunnel-agent:20170305	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Prototype Pollution npm:hoek:20180212	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Insecure Randomness npm:ws:20160920	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Remote Memory Exposure npm:ws:20160104	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-WS-1296835	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-UGLIFYJS-1727251	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Denial of Service SNYK-JS-NODEFETCH-674311	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Information Exposure SNYK-JS-NODEFETCH-2342118	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Arbitrary Code Injection SNYK-JS-MORGAN-72579	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-MINIMIST-559764	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Prototype Pollution npm:lodash:20180130	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-73639	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-1018905	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Open Redirect SNYK-JS-GOT-2932019	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-GLOBPARENT-1016905	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-GLOBPARENT-1016905	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Arbitrary Code Injection SNYK-JS-EJS-1049328	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Arbitrary File Write via Archive Extraction (Zip Slip) SNYK-JS-DECOMPRESSTAR-559095	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Arbitrary File Write via Archive Extraction (Zip Slip) SNYK-JS-DECOMPRESS-557358	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-CSSWHAT-1298035	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Regular Expression Denial of Service (ReDoS) npm:ms:20170412	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Regular Expression Denial of Service (ReDoS) npm:ms:20170412	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Regular Expression Denial of Service (ReDoS) npm:mime:20170907	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Regular Expression Denial of Service (ReDoS) npm:debug:20170905	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit
	Regular Expression Denial of Service (ReDoS) npm:braces:20180219	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept
	Prototype Pollution SNYK-JS-MINIMIST-2429795	589/1000 Why? Has a fix available, CVSS 7.5	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: react-native

• 587eb4e [0.69.1] Bump version numbers
• 802d324 fix(build): fixes React-RCTText build with RN 0.69.0 (#34064)
• 050924a Fix RCT-Folly build error when use_frameworks! and hermes are both enabled (#34030)
• 9e591ac Fix broken use_frameworks from React-bridging (#34011)
• 9d3ce32 revert #33381 changes (#33973)
• aa068e0 Make all headers public and add #ifdef __cplusplus (#1150)
• dc334a2 Use monotonic clock for performance.now() (#33983)
• 74a08a3 [0.69.0] Bump version numbers
• e68aa6a [0.69.0-rc.6] Bump version numbers
• e8af5b8 Make sure sdks/.hermesversion is included inside the NPM package.
• 7262acc Fix Hermes not being downloaded on RC5 (#33945)
• 6d200c3 [0.69.0-rc.5] Bump version numbers
• f50936b Lazily query for git branch & remote (#33936)
• 88fa872 Fix downloading prebuilt hermes from the Github release (#33935)
• 2c6df02 [0.69.0-rc.4] Bump version numbers
• 0ca6e41 Check isOnAReleaseTag alongside isOnAReleaseBranch
• 9a4e716 Revert "[0.69.0-rc.4] Bump version numbers"
• 5f50b0b [0.69.0-rc.4] Bump version numbers
• 605c90e Circle CI: Build Hermes apple runtime artifacts on CI (#33876)
• 2a6832a Fix formatting for hermes-utils.js
• 659b693 Fix hermes-utils.js building from source when on the release branch
• a72d196 Fix hermes-engine.podspec building from source when on the release branch
• b33cc1f Remove duplicate pod dependency on local hermes-engine
• 6759dc3 Remove broken hermes-utils-test.js

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs