[Snyk] Upgrade react-native from 0.70.5 to 0.73.1

[mernjs]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade react-native from 0.70.5 to 0.73.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 202 versions ahead of your current version.
• The recommended version was released 21 days ago, on 2023-12-18.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Improper Authorization SNYK-JS-REACTDEVTOOLSCORE-6023999	646/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.5	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: react-native

• 0.73.1 - 2023-12-18
  

  Added

  • Add enableNetworkInspector experiment to enable Network panel and CDP handlers in inspector proxy (8ef807bfb2 by @ byCedric)

  Changed

  • Chore: bump CLI to 12.3.0 (dff11ab993 by @ szymonrybczak)

  Fixed

  • Fix last spacer constrain logic in VirtualizedList (3ed4bf9046 by @ janicduplessis)

  Android specific

  • Fix type for unrecognisable field mBinding (31d8a93bf3 by @ piaskowyk)

  iOS specific

  • Fix NSAppTransportSecurity being overwritten during pod install (a0b76d90b7 by @ robertying)

  ---

  You can participate in the conversation on the status of this release in this discussion

  ---

  To help you upgrade to this version, you can use the upgrade helper ⚛️

  ---

  You can find the whole changelog history in the changelog.md file.

• 0.73.0 - 2023-12-06
  

  0.73 stable is out!

  This release includes over 2259 commits from 68 contributors! Thank you to all our contributors new and old! See the highlights of the release in our release blog post.

  ---

  You can participate in the conversation on the status of this release in this discussion

  ---

  To help you upgrade to this version, you can use the upgrade helper ⚛️

  ---

  You can find the whole changelog history in the changelog.md file.

• 0.73.0-rc.8 - 2023-12-04
  

  New in this RC

  v0.73.0-rc.7...v0.73.0-rc.8

  How to test

  npx react-native init RN073RC8 --version 0.73.0-rc.8
  

  ---

  • You can participate in the conversation on the status of this release in the working group.

  • To help you upgrade to this version, you can use the upgrade helper ⚛️

  ---

  Help us testing 🧪

  Let us know how it went by posting a comment in the working group discussion! Please specify with system you tried it on (ex. macos, windows).

  Bonus points: It would be even better if you could swap things around: instead of using a fresh new app, use a more complex one - or use a different library that is already leveraging the new architecture!

• 0.73.0-rc.7 - 2023-12-04
  

  v0.73.0-rc.7

• 0.73.0-rc.6 - 2023-11-28
  

  New in this RC

  v0.73.0-rc.5...v0.73.0-rc.6

  How to test

  npx react-native init RN073RC6 --version 0.73.0-rc.6
  

  ---

  • You can participate in the conversation on the status of this release in the working group.

  • To help you upgrade to this version, you can use the upgrade helper ⚛️

  ---

  Help us testing 🧪

  Let us know how it went by posting a comment in the working group discussion! Please specify with system you tried it on (ex. macos, windows).

  Bonus points: It would be even better if you could swap things around: instead of using a fresh new app, use a more complex one - or use a different library that is already leveraging the new architecture!

• 0.73.0-rc.5 - 2023-11-20
  

  New in this RC

  v0.73.0-rc.4...v0.73.0-rc.5

  How to test

  npx react-native init RN073RC3 --version 0.73.0-rc.5
  

  ---

  • You can participate in the conversation on the status of this release in the working group.

  • To help you upgrade to this version, you can use the upgrade helper ⚛️

  ---

  Help us testing 🧪

  Let us know how it went by posting a comment in the working group discussion! Please specify with system you tried it on (ex. macos, windows).

  Bonus points: It would be even better if you could swap things around: instead of using a fresh new app, use a more complex one - or use a different library that is already leveraging the new architecture!

• 0.73.0-rc.4 - 2023-11-06
• 0.73.0-rc.3 - 2023-10-23
• 0.73.0-rc.2 - 2023-10-10
• 0.73.0-rc.1 - 2023-10-04
• 0.73.0-rc.0 - 2023-10-03
• 0.73.0-nightly-20231002-0371014a3 - 2023-10-02
• 0.73.0-nightly-20231001-d95433f82 - 2023-10-01
• 0.73.0-nightly-20230930-df492cc4e - 2023-09-30
• 0.73.0-nightly-20230929-6635474e3 - 2023-09-29
• 0.73.0-nightly-20230928-8e36cc029 - 2023-09-28
• 0.73.0-nightly-20230926-aa1dffbb4 - 2023-09-26
• 0.73.0-nightly-20230926-27b631e5b - 2023-09-26
• 0.73.0-nightly-20230925-2de964cfd - 2023-09-25
• 0.73.0-nightly-20230924-030663bb0 - 2023-09-24
• 0.73.0-nightly-20230923-29f62a41b - 2023-09-23
• 0.73.0-nightly-20230922-353b31c7d - 2023-09-22
• 0.73.0-nightly-20230922-2fb4547aa - 2023-09-22
• 0.73.0-nightly-20230921-f39952ba7 - 2023-09-21
• 0.73.0-nightly-20230920-630cf3b21 - 2023-09-20
• 0.73.0-nightly-20230919-95fb44848 - 2023-09-19
• 0.73.0-nightly-20230918-1ac3dab6e - 2023-09-18
• 0.73.0-nightly-20230917-441822923 - 2023-09-17
• 0.73.0-nightly-20230916-3bc402f61 - 2023-09-16
• 0.73.0-nightly-20230915-850e55042 - 2023-09-15
• 0.73.0-nightly-20230914-4b6fd8145 - 2023-09-14
• 0.73.0-nightly-20230913-fe4dab970 - 2023-09-13
• 0.73.0-nightly-20230912-0e5ea2890 - 2023-09-12
• 0.73.0-nightly-20230911-db4a253c1 - 2023-09-11
• 0.73.0-nightly-20230910-bf955a035 - 2023-09-10
• 0.73.0-nightly-20230909-17ecae9ce - 2023-09-09
• 0.73.0-nightly-20230908-8658bdccb - 2023-09-08
• 0.73.0-nightly-20230907-eb5e7b20b - 2023-09-07
• 0.73.0-nightly-20230906-ef3e771a2 - 2023-09-06
• 0.73.0-nightly-20230905-a04a91838 - 2023-09-05
• 0.73.0-nightly-20230904-3ec22c1e6 - 2023-09-04
• 0.73.0-nightly-20230903-041f459d8 - 2023-09-03
• 0.73.0-nightly-20230902-7a0d2a06f - 2023-09-02
• 0.73.0-nightly-20230901-5f40f0800 - 2023-09-01
• 0.73.0-nightly-20230831-a5fd0f17e - 2023-08-31
• 0.73.0-nightly-20230830-5f1404de0 - 2023-08-30
• 0.73.0-nightly-20230829-f60c5ddc4 - 2023-08-29
• 0.73.0-nightly-20230828-ef7ab56c3 - 2023-08-28
• 0.73.0-nightly-20230827-ef7ab56c3 - 2023-08-27
• 0.73.0-nightly-20230826-246b5cf41 - 2023-08-26
• 0.73.0-nightly-20230825-18c4cb119 - 2023-08-25
• 0.73.0-nightly-20230824-10a076f6e - 2023-08-24
• 0.73.0-nightly-20230823-0b6e9bf0d - 2023-08-23
• 0.73.0-nightly-20230822-4f7cdd572 - 2023-08-22
• 0.73.0-nightly-20230821-80685d52b - 2023-08-21
• 0.73.0-nightly-20230820-eb3d5a4b8 - 2023-08-20
• 0.73.0-nightly-20230819-84e593429 - 2023-08-19
• 0.73.0-nightly-20230818-4deb29ae1 - 2023-08-18
• 0.73.0-nightly-20230817-17f957aad - 2023-08-17
• 0.73.0-nightly-20230816-676676c95 - 2023-08-16
• 0.73.0-nightly-20230815-3b43d56f3 - 2023-08-15
• 0.73.0-nightly-20230814-a978d343a - 2023-08-14
• 0.73.0-nightly-20230813-0279a7074 - 2023-08-13
• 0.73.0-nightly-20230812-ae88aef12 - 2023-08-12
• 0.73.0-nightly-20230811-68c7cfe62 - 2023-08-11
• 0.73.0-nightly-20230810-85eb2c95d - 2023-08-10
• 0.73.0-nightly-20230809-cb60e5c67 - 2023-08-09
• 0.73.0-nightly-20230809-8ccd07aa0 - 2023-08-09
• 0.73.0-nightly-20230809-695a03e21 - 2023-08-09
• 0.73.0-nightly-20230808-93d9248e0 - 2023-08-08
• 0.73.0-nightly-20230807-f9a63ec00 - 2023-08-07
• 0.73.0-nightly-20230807-2bf59c764 - 2023-08-07
• 0.73.0-nightly-20230731-b0a8d45e2 - 2023-07-31
• 0.73.0-nightly-20230730-cbf9408dd - 2023-07-30
• 0.73.0-nightly-20230729-265f72f6d - 2023-07-29
• 0.73.0-nightly-20230728-c168a4f88 - 2023-07-28
• 0.73.0-nightly-20230727-d380bb847 - 2023-07-27
• 0.73.0-nightly-20230726-bae63d492 - 2023-07-26
• 0.73.0-nightly-20230725-e64756ae5 - 2023-07-25
• 0.73.0-nightly-20230724-75f458891 - 2023-07-24
• 0.73.0-nightly-20230723-2b9349177 - 2023-07-23
• 0.73.0-nightly-20230722-e6dd22c62 - 2023-07-22
• 0.73.0-nightly-20230721-ccc50ddd2 - 2023-07-21
• 0.73.0-nightly-20230720-2669f8c38 - 2023-07-20
• 0.73.0-nightly-20230719-c0b04d664 - 2023-07-19
• 0.73.0-nightly-20230718-b8d60a834 - 2023-07-18
• 0.73.0-nightly-20230717-eadbfb86c - 2023-07-17
• 0.73.0-nightly-20230716-8ab9a7767 - 2023-07-16
• 0.73.0-nightly-20230715-4c944540f - 2023-07-15
• 0.73.0-nightly-20230714-4c944540f - 2023-07-14
• 0.73.0-nightly-20230712-6172988f4 - 2023-07-12
• 0.73.0-nightly-20230711-f396067cc - 2023-07-11
• 0.73.0-nightly-20230710-43f7781c8 - 2023-07-10
• 0.73.0-nightly-20230709-50f620a1a - 2023-07-09
• 0.73.0-nightly-20230708-170606653 - 2023-07-08
• 0.73.0-nightly-20230707-170606653 - 2023-07-07
• 0.73.0-nightly-20230706-147a02039 - 2023-07-06
• 0.73.0-nightly-20230705-294b1b5a6 - 2023-07-05
• 0.73.0-nightly-20230704-9c0441b8a - 2023-07-04
• 0.73.0-nightly-20230703-2910f87b5 - 2023-07-03
• 0.73.0-nightly-20230702-259a31689 - 2023-07-02
• 0.73.0-nightly-20230701-eca0d1231 - 2023-07-01
• 0.73.0-nightly-20230630-5fd32d71e - 2023-06-30
• 0.73.0-nightly-20230629-3f6412b93 - 2023-06-29
• 0.73.0-nightly-20230628-15d735b35 - 2023-06-28
• 0.73.0-nightly-20230627-6fbbe26f5 - 2023-06-27
• 0.73.0-nightly-20230626-e1fd4a8fc - 2023-06-26
• 0.73.0-nightly-20230625-945ab0dec - 2023-06-25
• 0.73.0-nightly-20230624-2aedda974 - 2023-06-24
• 0.73.0-nightly-20230623-330639f74 - 2023-06-23
• 0.73.0-nightly-20230622-0201e51bb - 2023-06-22
• 0.73.0-nightly-20230620-936936ca5 - 2023-06-20
• 0.73.0-nightly-20230619-33deed518 - 2023-06-19
• 0.73.0-nightly-20230618-564a83681 - 2023-06-18
• 0.73.0-nightly-20230617-061e3245b - 2023-06-17
• 0.73.0-nightly-20230616-5f8bbf2bd - 2023-06-16
• 0.73.0-nightly-20230615-2ae163a7e - 2023-06-15
• 0.73.0-nightly-20230614-b0485bed0 - 2023-06-14
• 0.73.0-nightly-20230612-a300a35f2 - 2023-06-12
• 0.73.0-nightly-20230611-03f70bf99 - 2023-06-11
• 0.73.0-nightly-20230610-03f70bf99 - 2023-06-10
• 0.73.0-nightly-20230609-c5e0e2d16 - 2023-06-09
• 0.73.0-nightly-20230608-f3c86364d - 2023-06-08
• 0.73.0-nightly-20230607-4540668c1 - 2023-06-07
• 0.73.0-nightly-20230606-396cdac62 - 2023-06-06
• 0.73.0-nightly-20230605-5062553c6 - 2023-06-05
• 0.73.0-nightly-20230604-2d07d5f16 - 2023-06-04
• 0.73.0-nightly-20230603-fd9e295be - 2023-06-03
• 0.73.0-nightly-20230602-e25c6632a - 2023-06-02
• 0.73.0-nightly-20230601-d9b3339ef - 2023-06-01
• 0.73.0-nightly-20230531-d0fed3adb - 2023-05-31
• 0.73.0-nightly-20230530-730ca3540 - 2023-05-30
• 0.73.0-nightly-20230529-9084ee133 - 2023-05-29
• 0.73.0-nightly-20230528-20e66db0b - 2023-05-28
• 0.73.0-nightly-20230527-20e66db0b - 2023-05-27
• 0.73.0-nightly-20230526-20e66db0b - 2023-05-26
• 0.73.0-nightly-20230525-58ef9e92d - 2023-05-25
• 0.73.0-nightly-20230524-be8af2274 - 2023-05-24
• 0.73.0-nightly-20230522-d470dee0c - 2023-05-22
• 0.73.0-nightly-20230521-6d24ee13a - 2023-05-21
• 0.73.0-nightly-20230519-fd92341cc - 2023-05-19
• 0.73.0-nightly-20230519-de1e9f5d1 - 2023-05-19
• 0.73.0-nightly-20230517-012e4bd65 - 2023-05-17
• 0.73.0-nightly-20230516-eb0db6f9f - 2023-05-16
• 0.73.0-nightly-20230515-066f0b76d - 2023-05-15
• 0.73.0-nightly-20230514-02ec60bd3 - 2023-05-14
• 0.73.0-nightly-20230513-02ec60bd3 - 2023-05-13
• 0.73.0-nightly-20230512-e98547009 - 2023-05-12
• 0.73.0-nightly-20230511-92fc503d5 - 2023-05-11
• 0.73.0-nightly-20230510-61fc1a579 - 2023-05-10
• 0.73.0-nightly-20230509-9cceb43c5 - 2023-05-09
• 0.73.0-nightly-20230508-17f8c2d12 - 2023-05-08
• 0.73.0-nightly-20230507-e1876af92 - 2023-05-07
• 0.73.0-nightly-20230506-1af868c52 - 2023-05-06
• 0.72.9 - 2024-01-08
  

  Fixed

  • Fix installation error for boost dependency — see #42110
  • React-Fabric fails to build with -std=c++20 because implicit constructors are no longer generated (b7c1a40db by @ tido64)

  ---

  You can participate in the conversation on the status of this release in this discussion

  ---

  To help you upgrade to this version, you can use the upgrade helper ⚛️

  ---

  You can find the whole changelog history in the CHANGELOG.md file.

• 0.72.8 - 2023-12-20
  

  Fixed

  • Fix build_codegen! not finding @ react-native/codegen in pnpm setups (e70166a3a8 by @ tido64)
  • Correctly declare runtime dependencies (df2bbba50b by @ tido64)
  • Prevent LogBox from crashing on very long messages (c3c6cf4 by @ motiz88)

  ---

  You can participate in the conversation on the status of this release in this discussion

  ---

  To help you upgrade to this version, you can use the upgrade helper ⚛️

  ---

  You can find the whole changelog history in the changelog.md file.

• 0.72.7 - 2023-11-14
• 0.72.6 - 2023-10-12
• 0.72.5 - 2023-09-25
• 0.72.4 - 2023-08-14
• 0.72.3 - 2023-07-12
• 0.72.2 - 2023-07-11
• 0.72.1 - 2023-06-29
• 0.72.0 - 2023-06-21
• 0.72.0-rc.6 - 2023-06-13
• 0.72.0-rc.5 - 2023-06-01
• 0.72.0-rc.4 - 2023-05-31
• 0.72.0-rc.3 - 2023-05-11
• 0.72.0-rc.2 - 2023-05-04
• 0.72.0-rc.1 - 2023-04-05
• 0.72.0-rc.0 - 2023-03-20
• 0.71.14 - 2023-10-12
• 0.71.13 - 2023-08-22
• 0.71.12 - 2023-07-04
• 0.71.11 - 2023-06-14
• 0.71.10 - 2023-06-07
• 0.71.9 - 2023-06-07
• 0.71.8 - 2023-05-10
• 0.71.7 - 2023-04-19
• 0.71.6 - 2023-04-03
• 0.71.5 - 2023-03-29
• 0.71.4 - 2023-03-08
• 0.71.3 - 2023-02-14
• 0.71.2 - 2023-02-01
• 0.71.1 - 2023-01-19
• 0.71.0 - 2023-01-12
• 0.71.0-rc.6 - 2023-01-09
• 0.71.0-rc.5 - 2022-12-19
• 0.71.0-rc.4 - 2022-12-14
• 0.71.0-rc.3 - 2022-11-30
• 0.71.0-rc.2 - 2022-11-24
• 0.71.0-rc.1 - 2022-11-23
• 0.71.0-rc.0 - 2022-11-04
• 0.70.14 - 2023-10-24
• 0.70.13 - 2023-07-28
• 0.70.12 - 2023-07-05
• 0.70.11 - 2023-07-04
• 0.70.10 - 2023-06-08
• 0.70.9 - 2023-04-19
• 0.70.8 - 2023-04-04
• 0.70.7 - 2023-01-31
• 0.70.6 - 2022-11-15
• 0.70.5 - 2022-11-06

from react-native GitHub release notes

Commit messages

Package name: react-native

• f6b7243 [0.73.1] Bump version numbers
• e15c784 Remove patch range dependency on @ react-native/community-cli-plugin for react-native
• 8c7fc73 Bump package versions
• dff11ab chore: bump CLI to 12.3.0
• a7fc0c6 Fix NSAppTransportSecurity being overwritten during pod install (#41875)
• 6230f9e Fix last spacer constrain logic in VirtualizedList (#41846)
• 39e8e49 Bump CLI to 12.2.1
• 5a44de4 Update Podfile.lock
• 3826a66 Sync debugger-frontend (12a45e0) (#41840)
• 33a6fb8 feature(dev-middleware): add `enableNetworkInspector` experiment (#41787)
• 92254f9 Fix Binding JNI type (#41657)
• 63c0acf Update CLI to 12.2
• 1eb4bf0 [0.73.0] Bump version numbers
• 6a4b434 [0.73.0-rc.8] Bump version numbers
• 0b3a811 Revert D49509633: Multisect successfully blamed "D49509633: [react-native][PR] fix: Text cut off issues when adjusting text size and font weight in system settings" for test or build failures
• d2517af Update Podfile.lock
• bb989e9 [0.73.0-rc.7] Bump version numbers
• d97e8e6 Update Podfile.lock
• cd43de6 Fix android root view group removal during instance re-creation (#41678)
• 0d5e678 [0.73.0-rc.6] Bump version numbers
• 61867e2 Bump package versions
• dcdea80 Fix `build_codegen!` not finding `@ react-native/codegen` in pnpm setups (#41399)
• c32064c Correctly declare runtime dependencies
• e03137e Bump package versions

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
create-mern-app-gatsbyjs	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Jan 8, 2024 3:52pm
create-mern-app-nextjs	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Jan 8, 2024 3:52pm
create-mern-app-reactjs	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Jan 8, 2024 3:52pm