[Snyk-dev] Fix for 101 vulnerabilities

[lili2311]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	619/1000 Why? Has a fix available, CVSS 8.1	Prototype Pollution SNYK-JS-AJV-584908	Yes	No Known Exploit
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIHTML-1296849	Yes	Proof of Concept
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-ANSIREGEX-1583908	Yes	Proof of Concept
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Prototype Pollution SNYK-JS-ASYNC-2441827	Yes	Proof of Concept
	706/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.7	Remote Memory Exposure SNYK-JS-BL-608877	Yes	Proof of Concept
	696/1000 Why? Recently disclosed, Has a fix available, CVSS 8.2	Asymmetric Resource Consumption (Amplification) SNYK-JS-BODYPARSER-7926860	Yes	No Known Exploit
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Uncontrolled resource consumption SNYK-JS-BRACES-6838727	Yes	Proof of Concept
	589/1000 Why? Has a fix available, CVSS 7.5	Improper Verification of Cryptographic Signature SNYK-JS-BROWSERIFYSIGN-6037026	Yes	No Known Exploit
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-COLORSTRING-1082939	Yes	Proof of Concept
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Denial of Service (DoS) SNYK-JS-DECODEURICOMPONENT-3149970	Yes	Proof of Concept
	636/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.3	Arbitrary File Write via Archive Extraction (Zip Slip) SNYK-JS-DECOMPRESS-557358	Yes	Proof of Concept
	554/1000 Why? Has a fix available, CVSS 6.8	Cryptographic Issues SNYK-JS-ELLIPTIC-1064899	Yes	No Known Exploit
	509/1000 Why? Has a fix available, CVSS 5.9	Timing Attack SNYK-JS-ELLIPTIC-511941	Yes	No Known Exploit
	706/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.7	Cryptographic Issues SNYK-JS-ELLIPTIC-571484	Yes	Proof of Concept
	776/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 9.1	Improper Verification of Cryptographic Signature SNYK-JS-ELLIPTIC-7577916	Yes	Proof of Concept
	776/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 9.1	Improper Verification of Cryptographic Signature SNYK-JS-ELLIPTIC-7577917	Yes	Proof of Concept
	776/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 9.1	Improper Verification of Cryptographic Signature SNYK-JS-ELLIPTIC-7577918	Yes	Proof of Concept
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-ES5EXT-6095076	Yes	Proof of Concept
	519/1000 Why? Has a fix available, CVSS 6.1	Open Redirect SNYK-JS-EXPRESS-6474509	Yes	No Known Exploit
	541/1000 Why? Recently disclosed, Has a fix available, CVSS 5.1	Cross-site Scripting SNYK-JS-EXPRESS-7926867	Yes	No Known Exploit
	579/1000 Why? Has a fix available, CVSS 7.3	Arbitrary File Overwrite SNYK-JS-FSTREAM-174725	Yes	No Known Exploit
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-GLOBPARENT-1016905	Yes	Proof of Concept
	584/1000 Why? Has a fix available, CVSS 7.4	Regular Expression Denial of Service (ReDoS) SNYK-JS-HAWK-2808852	Yes	No Known Exploit
	786/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 9.3	Authentication Bypass SNYK-JS-HAWK-6969142	Yes	Proof of Concept
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-HOSTEDGITINFO-1088355	Yes	Proof of Concept
	631/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.2	Missing Release of Resource after Effective Lifetime SNYK-JS-INFLIGHT-6095116	Yes	Proof of Concept
	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Prototype Pollution SNYK-JS-INI-1048974	Yes	Proof of Concept
	641/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.4	Prototype Pollution SNYK-JS-JSON5-3182856	Yes	Proof of Concept
	644/1000 Why? Has a fix available, CVSS 8.6	Prototype Pollution SNYK-JS-JSONSCHEMA-1920922	Yes	No Known Exploit
	509/1000 Why? Has a fix available, CVSS 5.9	Denial of Service (DoS) SNYK-JS-JSYAML-173999	Yes	No Known Exploit
	619/1000 Why? Has a fix available, CVSS 8.1	Arbitrary Code Execution SNYK-JS-JSYAML-174129	Yes	No Known Exploit
	506/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 3.7	Validation Bypass SNYK-JS-KINDOF-537849	Yes	Proof of Concept
	479/1000 Why? Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-LOADERUTILS-3042992	Yes	No Known Exploit
	589/1000 Why? Has a fix available, CVSS 7.5	Prototype Pollution SNYK-JS-LOADERUTILS-3043105	Yes	No Known Exploit
	479/1000 Why? Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-LOADERUTILS-3105943	Yes	No Known Exploit
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-1018905	Yes	Proof of Concept
	681/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.2	Code Injection SNYK-JS-LODASH-1040724	Yes	Proof of Concept
	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Prototype Pollution SNYK-JS-LODASH-450202	Yes	Proof of Concept
	731/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.2	Prototype Pollution SNYK-JS-LODASH-567746	Yes	Proof of Concept
	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Prototype Pollution SNYK-JS-LODASH-608086	Yes	Proof of Concept
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Prototype Pollution SNYK-JS-LODASH-6139239	Yes	Proof of Concept
	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Prototype Pollution SNYK-JS-LODASH-73638	Yes	Proof of Concept
	541/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 4.4	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASH-73639	Yes	Proof of Concept
	731/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.2	Prototype Pollution SNYK-JS-LODASHES-2434283	No	Proof of Concept
	681/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.2	Code Injection SNYK-JS-LODASHES-2434284	No	Proof of Concept
	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Prototype Pollution SNYK-JS-LODASHES-2434285	No	Proof of Concept
	541/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 4.4	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASHES-2434286	No	Proof of Concept
	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Prototype Pollution SNYK-JS-LODASHES-2434287	No	Proof of Concept
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-LODASHES-2434289	No	Proof of Concept
	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Prototype Pollution SNYK-JS-LODASHES-2434290	No	Proof of Concept
	589/1000 Why? Has a fix available, CVSS 7.5	Inefficient Regular Expression Complexity SNYK-JS-MICROMATCH-6838728	Yes	No Known Exploit
	479/1000 Why? Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-3050818	Yes	No Known Exploit
	506/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 3.7	Prototype Pollution SNYK-JS-MINIMIST-2429795	Yes	Proof of Concept
	601/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.6	Prototype Pollution SNYK-JS-MINIMIST-559764	Yes	Proof of Concept
	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Prototype Pollution SNYK-JS-MIXINDEEP-450212	Yes	Proof of Concept
	539/1000 Why? Has a fix available, CVSS 6.5	Information Exposure SNYK-JS-NODEFETCH-2342118	Yes	No Known Exploit
	520/1000 Why? Has a fix available, CVSS 5.9	Denial of Service SNYK-JS-NODEFETCH-674311	Yes	No Known Exploit
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHPARSE-1077067	Yes	Proof of Concept
	738/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 6.9	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHTOREGEXP-7925106	Yes	Proof of Concept
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Prototype Poisoning SNYK-JS-QS-3153490	Yes	Proof of Concept
	/1000 Why?	Arbitrary Code Execution SNYK-JS-REACTDEVUTILS-72875	Yes	No Known Exploit
	/1000 Why?	Server-side Request Forgery (SSRF) SNYK-JS-REQUEST-3361831	Yes	Proof of Concept
	/1000 Why?	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	Yes	Proof of Concept
	/1000 Why?	Cross-site Scripting SNYK-JS-SEND-7926862	Yes	No Known Exploit
	/1000 Why?	Cross-site Scripting SNYK-JS-SERVESTATIC-7926865	Yes	No Known Exploit
	/1000 Why?	Prototype Pollution SNYK-JS-SETVALUE-1540541	Yes	Proof of Concept
	/1000 Why?	Prototype Pollution SNYK-JS-SETVALUE-450213	Yes	Proof of Concept
	/1000 Why?	Improper Privilege Management SNYK-JS-SHELLJS-2332187	Yes	Proof of Concept
	/1000 Why?	Arbitrary File Overwrite SNYK-JS-TAR-1536528	Yes	No Known Exploit
	/1000 Why?	Arbitrary File Overwrite SNYK-JS-TAR-1536531	Yes	No Known Exploit
	/1000 Why?	Regular Expression Denial of Service (ReDoS) SNYK-JS-TAR-1536758	Yes	No Known Exploit
	/1000 Why?	Arbitrary File Write SNYK-JS-TAR-1579147	Yes	No Known Exploit
	/1000 Why?	Arbitrary File Write SNYK-JS-TAR-1579152	Yes	No Known Exploit
	/1000 Why?	Arbitrary File Write SNYK-JS-TAR-1579155	Yes	No Known Exploit
	/1000 Why?	Arbitrary File Overwrite SNYK-JS-TAR-174125	Yes	Proof of Concept
	/1000 Why?	Uncontrolled Resource Consumption ('Resource Exhaustion') SNYK-JS-TAR-6476909	Yes	Proof of Concept
	/1000 Why?	Prototype Pollution SNYK-JS-TOUGHCOOKIE-5672873	Yes	Proof of Concept
	/1000 Why?	Regular Expression Denial of Service (ReDoS) SNYK-JS-UAPARSERJS-1023599	Yes	Proof of Concept
	/1000 Why?	Regular Expression Denial of Service (ReDoS) SNYK-JS-UAPARSERJS-1072471	Yes	Proof of Concept
	/1000 Why?	Regular Expression Denial of Service (ReDoS) SNYK-JS-UAPARSERJS-610226	Yes	Proof of Concept
	/1000 Why?	Prototype Pollution SNYK-JS-UNSETVALUE-2400660	Yes	No Known Exploit
	/1000 Why?	Improper Input Validation SNYK-JS-URLPARSE-1078283	Yes	No Known Exploit
	/1000 Why?	Open Redirect SNYK-JS-URLPARSE-1533425	Yes	Proof of Concept
	/1000 Why?	Access Restriction Bypass SNYK-JS-URLPARSE-2401205	Yes	Proof of Concept
	/1000 Why?	Authorization Bypass SNYK-JS-URLPARSE-2407759	Yes	Proof of Concept
	/1000 Why?	Improper Input Validation SNYK-JS-URLPARSE-2407770	Yes	Proof of Concept
	/1000 Why?	Authorization Bypass Through User-Controlled Key SNYK-JS-URLPARSE-2412697	Yes	Proof of Concept
	/1000 Why?	Improper Input Validation SNYK-JS-URLPARSE-543307	Yes	Proof of Concept
	/1000 Why?	Cross-site Scripting (XSS) SNYK-JS-WEBPACK-7840298	Yes	Proof of Concept
	/1000 Why?	Regular Expression Denial of Service (ReDoS) SNYK-JS-WEBSOCKETEXTENSIONS-570623	Yes	Proof of Concept
	/1000 Why?	Prototype Pollution SNYK-JS-Y18N-1021887	Yes	Proof of Concept
	434/1000 Why? Has a fix available, CVSS 4.4	Time of Check Time of Use (TOCTOU) npm:chownr:20180731	Yes	No Known Exploit
	479/1000 Why? Has a fix available, CVSS 5.3	Insecure Randomness npm:cryptiles:20180710	Yes	No Known Exploit
	506/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 3.7	Regular Expression Denial of Service (ReDoS) npm:debug:20170905	Yes	Proof of Concept
	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Prototype Pollution npm:deep-extend:20180409	Yes	Proof of Concept
	579/1000 Why? Has a fix available, CVSS 7.3	Prototype Pollution npm:extend:20180424	Yes	No Known Exploit
	636/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.3	Prototype Pollution npm:hoek:20180212	Yes	Proof of Concept
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) npm:sshpk:20180409	Yes	Proof of Concept
	646/1000 Why? Mature exploit, Has a fix available, CVSS 5.2	Uninitialized Memory Exposure npm:stringstream:20180511	Yes	Mature
	509/1000 Why? Has a fix available, CVSS 5.9	Regular Expression Denial of Service (ReDoS) npm:tough-cookie:20170905	Yes	No Known Exploit
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) npm:ua-parser-js:20180227	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: react-native

The new version differs by 250 commits.

• 5883b0b [0.69.12] Bump version numbers
• 4db7a10 Prevent crash in runAnimationStep on OnePlus and Oppo devices (#37487)
• 56807fa [0.69] Bump CLI to ^8.0.7, Metro to 0.70.4 (#38180)
• 367fc7a [0.69] Use `Content-Location` header in bundle response as JS source URL (#37501) (#38179)
• 2407776 [0.69.11] Bump version numbers
• 37e8df1 [LOCAL] Make 0.69 compatible with Xcode 15 (thanks to @ AlexanderEggers for the commit in main)
• 4f52bbc [LOCAL] checkout code for hermesc linux in an empty folder
• 0cfdcb0 [LOCAL] Manually port back the version dependent hermesc for linux and windows
• 4906002 Revert "Make CircleCI caches for hermesc be version dependent (#37452)"
• b959dbd Make CircleCI caches for hermesc be version dependent (#37452)
• 8b9f371 [0.69.10] Bump version numbers
• 4979381 Fix test e2e script (#37081)
• 5834cea Merge pull request #37000 from facebook/kelset/attempt-3-backporting-textinput-fixes
• deb7cda Minimize EditText Spans 8/9: CustomStyleSpan (#36577)
• 4b9b203 Minimize EditText Spans 7/9: Avoid temp list (#36576)
• 64eeb81 Minimize EditText Spans 6/9: letterSpacing (#36548)
• 44a96ac Minimize EditText Spans 5/9: Strikethrough and Underline (#36544)
• ab6be34 Minimize EditText Spans 4/9: ReactForegroundColorSpan (#36545)
• e7e2556 Minimize EditText Spans 3/9: ReactBackgroundColorSpan (#36547)
• 7374892 Minimize EditText Spans 2/9: Make stripAttributeEquivalentSpans generic (#36546)
• ee2d815 Minimize EditText Spans 1/9: Fix precedence (#36543)
• 0bcf293 Fix measurement of uncontrolled TextInput after edit
• f4f3aa3 [0.69.9] Bump version numbers
• 74ba411 fix(xcode): backport Xcode 14.3 fix to 69 (#36767)

See the full diff

Package name: react-native-svg

The new version differs by 250 commits.

• f021120 9.0.7
• 5ba7154 Optimize transform extraction
• 4458b51 Optimize transform extraction, allow passing arrays to avoid parsing
• ab9633f Optimize color extraction, allow passing color arrays to avoid parsing
• f137284 Hoist color parsing regular expressions
• 05a6d4f Simplify color parsing
• 5849c82 Improve color parsing error handling
• 48d5106 Update lock files
• 7a42187 Remove redundant escapes
• 6777211 Use singleQuote
• 1a4958b Remove last dependency
• 5cca5e8 Shrink indent_size / tabWidth
• 76bc07f Shrink indent_size / tabWidth
• 546f225 Allow style arrays to affect text properties
• 3a8ae84 Allow style arrays to affect font properties
• 7177ae7 Simplify extractResponder
• f2feb46 9.0.6
• e90f542 [android] Fix handling of strokeDasharray
• 5483ce7 9.0.5
• 599f8d1 [android] Fix handling of missing width and height when using flex
• 2919cfa Update README.md
• 60988cf Fix linting
• f5cdc31 Simplify Svg element render method and pickNotNil
• 73e85b6 Update README.md

See the full diff

Package name: react-native-vector-icons

The new version differs by 151 commits.

• 7c3dbab Release 8.0.0
• 119b234 Update Windows instructions ([FIX] Record audio message throws exception when FileSystem.getInfoAsync is called RocketChat/Rocket.Chat.ReactNative#1272)
• 4438ed9 Bump ini from 1.3.5 to 1.3.7 in /directory ([CHORE] Refactor RoomItem touchable RocketChat/Rocket.Chat.ReactNative#1289)
• 1fe7c7b Bump ini from 1.3.5 to 1.3.7
• 770dc50 Revert TOC to include deleted sections and fix legacy references
• 6556f80 Remove TabBar types and example
• 8cf2a05 update README with react-navigation tabbar example
• 7332f36 remove TabBarIOS dependency
• 9d2b77a Bump Yargs to 16.1.1 (svg custom emojis remain transparent RocketChat/Rocket.Chat.ReactNative#1278)
• a6f9ffd Improve Xcode 12 compatibility ([NFR] "Mark as read" notifications in the Notification bar RocketChat/Rocket.Chat.ReactNative#1251)
• 318d9e6 Correct article in README (wip RocketChat/Rocket.Chat.ReactNative#1293)
• 3458ae8 Release 7.1.0
• 1fe1cd5 Accept any type for color prop ([CHORE] Add security doc RocketChat/Rocket.Chat.ReactNative#1244)
• e03b760 Bump websocket-extensions from 0.1.3 to 0.1.4 in /directory ([FIX] Jest RocketChat/Rocket.Chat.ReactNative#1243)
• cbba560 Bump elliptic from 6.5.2 to 6.5.3 in /directory ([CHORE] Update react-native-safe-area-view RocketChat/Rocket.Chat.ReactNative#1219)
• cf0ff2d Bump http-proxy from 1.18.0 to 1.18.1 in /directory ([REGRESSION] Markdown text RocketChat/Rocket.Chat.ReactNative#1242)
• c837cbc Bump react-scripts in directory app
• 4028855 Upgrading material icons ([CHORE] react-native-jitsi-meet update RocketChat/Rocket.Chat.ReactNative#1235)
• 269bce0 Change feather build script to use docker ([FIX] Link WatermelonDB on share extension RocketChat/Rocket.Chat.ReactNative#1218)
• d0f0998 Using specific version of lodash instead of general version (Serverdrop not closing after changing screens RocketChat/Rocket.Chat.ReactNative#1231)
• 340d6f9 Use full glyph as filename for getImageSource ([FIX] Slash commands not cleaning is typing and not using state RocketChat/Rocket.Chat.ReactNative#1233)
• 6c43932 GitAds are scammers
• 32bbd53 Bump IconExplorer project to RN 0.63.2
• bee9bdd Add sponsoring section

See the full diff

Package name: react-redux

The new version differs by 56 commits.

• b245f83 5.1.0
• 307f463 Rebuild lock files with npm 6.4.1
• 1b43eaa (feat): support react 16.6 ([FIX] Share Extension crash RocketChat/Rocket.Chat.ReactNative#1062)
• 2093fbb Upgrade to babel@7 ([CHORE] Switch to react-native-localize RocketChat/Rocket.Chat.ReactNative#1043)
• bc7b6a9 docs: enable search for docusaurus site ([FIX] Share extension CI build RocketChat/Rocket.Chat.ReactNative#1060)
• 1e93536 Add nodejs version 10 for ci ([BETA] 1.17.0 RocketChat/Rocket.Chat.ReactNative#1058)
• 1ab1596 fix log message hint for ownProps on map function (Load views as needed RocketChat/Rocket.Chat.ReactNative#1056)
• 0d9325e Docs/refactor getting started (Single server branch updates RocketChat/Rocket.Chat.ReactNative#1054)
• ba6b010 Update docs link
• dde1a0a Clean-Ups after `mapState` (Image upload is not working on 0.70.4 server  RocketChat/Rocket.Chat.ReactNative#1042)
• 294c42c [Docs] Fix duplicated words in `mapState` ([Snyk] Fix for 3 vulnerable dependencies RocketChat/Rocket.Chat.ReactNative#1037)
• 05f943d Fixed broked links in footer ([FIX] Improve swipe animations RocketChat/Rocket.Chat.ReactNative#1041)
• cde9c04 Fix a very small typo in mapStateToProps docs ([i18n] Add missing de translations RocketChat/Rocket.Chat.ReactNative#1040)
• 1db16a4 Fix link to getting started doc ([NEW] Mark message as unread RocketChat/Rocket.Chat.ReactNative#1039)
• f930a76 Docs/extracting data with mapstate (Hide "Forgot password" if Accounts_PasswordReset set to False RocketChat/Rocket.Chat.ReactNative#1036)
• 588c565 Changed highlight theme and updated snippet language ([NFR] Backup account settings to file RocketChat/Rocket.Chat.ReactNative#1035)
• 289ef99 [IMPROVEMENT] decrease bigger emoji size to 30 RocketChat/Rocket.Chat.ReactNative#1031 Added metadata to provider markdown and updated the sidebar ([FIX] Rooms swipes RocketChat/Rocket.Chat.ReactNative#1034)
• 2e4465a Remove duplicated page titles, fix sidebar menu (Improve rooms swipes RocketChat/Rocket.Chat.ReactNative#1033)
• 9cbdc69 [IMPROVEMENT] decrease bigger emoji size to 30 RocketChat/Rocket.Chat.ReactNative#1031 Set up basic docusaurus structure ([Snyk] Fix for 3 vulnerable dependencies RocketChat/Rocket.Chat.ReactNative#1032)
• cf91991 Adding temporary new docs index file
• d3a1ec7 Create CNAME
• 1ad1667 Remove folded sourcecode. Use one combined CodeSandbox sourecode for the UI components + unconnected Redux store code sample. (Last messages is not showing on room list view RocketChat/Rocket.Chat.ReactNative#1022)
• 5876977 Clean up some wording and links
• 534356f Add link to getting started page

See the full diff

Package name: realm

The new version differs by 250 commits.

• f3be663 [12.13.1] Bump version
• b798a7b RJS-2888: Fixing React scheduler's call to RN `CallInvoker`'s `invokeAsync` and upgrading our RNTA test app to React Native v0.75.1 (#6851)
• e0645a3 Update expo instructions (#6849)
• 1dae54e Prepare for vNext (#6844)
• b3005de [realm-react-0.10.0] Bump version (#6843)
• 211f623 Refactored binding wrapper (#6820)
• f8eefce Prepare for vNext (#6841)
• b4d00c4 Prepare for 12.13.0 (#6836)
• a2d8a0d Upgrade to Realm Core 14.12.0 (#6835)
• ff3d889 Fix bundling and realm-react progress tests (#6833)
• 281b586 Updated package lock after #6801
• f4963cc RJS-2867: Add useProgress and tests (#6804)
• 9e2b720 RJS-2187: Add progress information to RealmProvider fallback. (#6801)
• 9364039 Avoid circular imports (#6814)
• 780eb13 Update @ react-native/eslint-plugin to version 0.74.87 (#6829)
• 1612b5d Prepare for vNext (#6817)
• 5050d08 [12.12.1] Bump version (#6816)
• 01e5148 Fixed the @ realm/tools package
• f7938c9 Added "prebuild-android" dep to "test:android" script
• a431b86 RJS-2870: Remove an unused header from the iOS and unused import from Android binding (#6812)
• f3db7f1 Update CHANGELOG.md
• d035227 Prepare for vNext (#6806)
• 9d80922 [12.12.0] Bump version (#6805)
• 528c3d7 RJS-2841: Upgrade to Realm Core v14.11.0 (#6739)

See the full diff

Package name: strip-ansi

The new version differs by 15 commits.

• 59533da 6.0.0
• 976f459 Require Node.js 8
• 57878e2 Tidelift tasks
• a022f23 Tidelift tasks
• b9c4929 5.2.0
• 81cd3cc Meta tweaks
• 89dc7f6 Add TypeScript definition (Greenkeeper/initial RocketChat/Rocket.Chat.ReactNative#28)
• 5cb7e20 Fix readme (Add Codefactor badge RocketChat/Rocket.Chat.ReactNative#27)
• 581fd4e 5.1.0
• 41b0a8b Add support for terminal link (Code Coverage RocketChat/Rocket.Chat.ReactNative#26)
• 841f0c4 Add security section
• dfab677 5.0.0
• 6a25566 Require Node.js 6 and upgrade dependencies
• e8d149c Add Tidelift mention in the readme
• 52dcf65 Add related streaming version of this module to the readme ([Snyk-dev] Fix for 1 vulnerabilities #15)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

[//]: # (snyk:metadata:{"prId":"ec51b126-03e5-4a34-9785-0a6f169f9a84","prPublicId":"ec51b126-03e5-4a34-9785-0a6f169f9a84","dependencies":[{"name":"@storybook/react-native","from":"3.4.10","to":"5.1.1"},{"name":"react","from":"16.4.2","to":"16.5.0"},{"name":"react-native","from":"0.56.0","to":"0.69.12"},{"name":"react-native-responsive-ui","from":"1.1.1","to":"2.1.3"},{"name":"react-native-svg","from":"6.5.2","to":"9.0.7"},{"name":"react-native-vector-icons","from":"5.0.0","to":"8.0.0"},{"name":"react-redux","from":"5.0.7","to":"5.1.0"},{"name":"realm","from":"2.14.2","to":"12.13.1"},{"name":"strip-ansi","from":"4.0.0","to":"6.0.1"}],"packageManager":"npm","projectPublicId":"c044b389-ecb5-4e43-bf40-8ba92d6c60a5","projectUrl":"https://app.dev.snyk.io/org/1/project/c044b389-ecb5-4e43-bf40-8ba92d6c60a5?utm_source=github&utm_medium=referral&page=fix-pr","type":"auto","patch":[],"vulns":["SNYK-JS-AJV-584908","SNYK-JS-ANSIHTML-1296849","SNYK-JS-ANSIREGEX-1583908","SNYK-JS-ASYNC-2441827","SNYK-JS-BL-608877","SNYK-JS-BODYPARSER-7926860","SNYK-JS-BRACES-6838727","SNYK-JS-BROWSERIFYSIGN-6037026","SNYK-JS-COLORSTRING-1082939","SNYK-JS-DECODEURICOMPONENT-3149970","SNYK-JS-DECOMPRESS-557358","SNYK-JS-ELLIPTIC-1064899","SNYK-JS-ELLIPTIC-511941","SNYK-JS-ELLIPTIC-571484","SNYK-JS-ELLIPTIC-7577916","SNYK-JS-ELLIPTIC-7577917","SNYK-JS-ELLIPTIC-7577918","SNYK-JS-ES5EXT-6095076","SNYK-JS-EXPRESS-6474509","SNYK-JS-EXPRESS-7926867","SNYK-JS-FSTREAM-174725","SNYK-JS-GLOBPARENT-1016905","SNYK-JS-HAWK-2808852","SNYK-JS-HAWK-6969142","SNYK-JS-HOSTEDGITINFO-1088355","SNYK-JS-INFLIGHT-6095116","SNYK-JS-INI-1048974","SNYK-JS-JSON5-3182856","SNYK-JS-JSONSCHEMA-1920922","SNYK-JS-JSYAML-173999","SNYK-JS-JSYAML-174129","SNYK-JS-KINDOF-537849","SNYK-JS-LOADERUTILS-3042992","SNYK-JS-LOADERUTILS-3043105","SNYK-JS-LOADERUTILS-3105943","SNYK-JS-LODASH-1018905","SNYK-JS-LODASH-1040724","SNYK-JS-LODASH-450202","SNYK-JS-LODASH-567746","SNYK-JS-LODASH-608086","SNYK-JS-LODASH-6139239","SNYK-JS-LODASH-73638","SNYK-JS-LODASH-73639","SNYK-JS-LODASHES-2434283","SNYK-JS-LODASHES-2434284","SNYK-JS-LODASHES-2434285","SNYK-JS-LODASHES-2434286","SNYK-JS-LODASHES-2434287","SNYK-JS-LODASHES-2434289","SNYK-JS-LODASHES-2434290","SNYK-JS-MICROMATCH-6838728","SNYK-JS-MINIMATCH-3050818","SNYK-JS-MINIMIST-2429795","SNYK-JS-MINIMIST-559764","SNYK-JS-MIXINDEEP-450212","SNYK-JS-NODEFETCH-2342118","SNYK-JS-NODEFETCH-674311","SNYK-JS-PATHPARSE-1077067","SNYK-JS-PATHTOREGEXP-7925106","SNYK-JS-QS-3153490","SNYK-JS-REACTDEVUTILS-72875","SNYK-JS-REQUEST-3361831","SNYK-JS-SEMVER-3247795","SNYK-JS-SEND-7926862","SNYK-JS-SERVESTATIC-7926865","SNYK-JS-SETVALUE-1540541","SNYK-JS-SETVALUE-450213","SNYK-JS-SHELLJS-2332187","SNYK-JS-TAR-1536528","SNYK-JS-TAR-1536531","SNYK-JS-TAR-1536758","SNYK-JS-TAR-1579147","SNYK-JS-TAR-1579152","SNYK-JS-TAR-1579155","SNYK-JS-TAR-174125","SNYK-JS-TAR-6476909","SNYK-JS-TOUGHCOOKIE-5672873","npm:tough-cookie:20170905","SNYK-JS-UAPARSERJS-1023599","SNYK-JS-UAPARSERJS-1072471","SNYK-JS-UAPARSERJS-610226","npm:ua-parser-js:20180227","SNYK-JS-UNSETVALUE-2400660","SNYK-JS-URLPARSE-1078283","SNYK-JS-URLPARSE-1533425","SNYK-JS-URLPARSE-2401205","SNYK-JS-URLPARSE-2407759","SNYK-JS-URLPARSE-2407770","SNYK-JS-URLPARSE-2412697","SNYK-JS-URLPARSE-543307","SNYK-JS-WEBPACK-7840298","SNYK-JS-WEBSOCKETEXTENSIONS-570623","SNYK-JS-Y18N-1021887","npm:chownr:20180731","npm:cryptiles:20180710","npm:debug:20170905","npm:deep-extend:20180409","npm:extend:20180424","npm:hoek:20180212","npm:sshpk:20180409","npm:stringstream:20180511"],"upgrade":["SNYK-JS-AJV-584908","SNYK-JS-ANSIHTML-1296849","SNYK-JS-ANSIREGEX-1583908","SNYK-JS-ASYNC-2441827","SNYK-JS-BL-608877","SNYK-JS-BODYPARSER-7926860","SNYK-JS-BRACES-6838727","SNYK-JS-BROWSERIFYSIGN-6037026","SNYK-JS-COLORSTRING-1082939","SNYK-JS-DECODEURICOMPONENT-3149970","SNYK-JS-DECOMPRESS-557358","SNYK-JS-ELLIPTIC-1064899","SNYK-JS-ELLIPTIC-511941","SNYK-JS-ELLIPTIC-571484","SNYK-JS-ELLIPTIC-7577916","SNYK-JS-ELLIPTIC-7577917","SNYK-JS-ELLIPTIC-7577918","SNYK-JS-ES5EXT-6095076","SNYK-JS-EXPRESS-6474509","SNYK-JS-EXPRESS-7926867","SNYK-JS-FSTREAM-174725","SNYK-JS-GLOBPARENT-1016905","SNYK-JS-HAWK-2808852","SNYK-JS-HAWK-6969142","SNYK-JS-HOSTEDGITINFO-1088355","SNYK-JS-INFLIGHT-6095116","SNYK-JS-INI-1048974","SNYK-JS-JSON5-3182856","SNYK-JS-JSONSCHEMA-1920922","SNYK-JS-JSYAML-173999","SNYK-JS-JSYAML-174129","SNYK-JS-KINDOF-537849","SNYK-JS-...