Summary:
Bumps [guava](https://github.com/google/guava) from 20.0 to 23.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/google/guava/releases">guava's releases</a>.</em></p>
<blockquote>
<h2>23.0</h2>
<p>Final <a href="https://github.com/google/guava/wiki/Release23">Guava 23.0</a> release.</p>
<h2>23.0-rc1</h2>
<p>First <a href="https://github.com/google/guava/wiki/Release23">Guava 23.0</a> release candidate.</p>
<h2>22.0</h2>
<p>Final <a href="https://github.com/google/guava/wiki/Release22">Guava 22.0</a> release.</p>
<h2>22.0-rc1</h2>
<p>First release candidate for <a href="https://github.com/google/guava/wiki/Release22">Guava 22.0</a>.</p>
<h2>21.0</h2>
<p>Final <a href="https://github.com/google/guava/wiki/Release21">Guava 21.0</a> release.</p>
<p>This release requires Java 8.</p>
<h2>21.0-rc2</h2>
<p>Second release candidate for <a href="https://github.com/google/guava/wiki/Release21">Guava 21.0</a>.</p>
<p>This release candidate fixes a small issue with rc1; a number of methods that create <code>Collector</code>s took Guava's functional types (e.g. <code>base.Function</code>) as parameters rather than the <code>java.util.function</code> equivalent.</p>
<p>This release requires Java 8.</p>
<h2>21.0-rc1</h2>
<p>First release candidate for <a href="https://github.com/google/guava/wiki/Release21">Guava 21.0</a>.</p>
<p>This release requires Java 8.</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="b48cdeb618"><code>b48cdeb</code></a> Set version numbers to 23.0</li>
<li><a href="6dae21fe0e"><code>6dae21f</code></a> Remove some methods that are scheduled for removal in 23.0, along with one th...</li>
<li><a href="22da0910cc"><code>22da091</code></a> Rollforward [] which was rolled back in [] because it</li>
<li><a href="b87e1f19a8"><code>b87e1f1</code></a> Automated g4 rollback of changelist 162220754.</li>
<li><a href="44b908162c"><code>44b9081</code></a> Set version numbers to 23.0-rc1</li>
<li><a href="ee12894c9d"><code>ee12894</code></a> Implement ByteSource.asCharSource(charset).read() using the decoding string c...</li>
<li><a href="71b5b85e1d"><code>71b5b85</code></a> Add submitAsync and scheduleAsync methods, to ease the deprecation of Futures...</li>
<li><a href="b6c86db89a"><code>b6c86db</code></a> Short-circuit null check in Throwables#lazyStackTraceIsLazy</li>
<li><a href="dd78480631"><code>dd78480</code></a> Update Public Suffix List.</li>
<li><a href="1d7f652e18"><code>1d7f652</code></a> Add <a href="https://github.com/SafeVarargs"><code>@SafeVarargs</code></a> to Predicates.and(Predicate<? super T>...).</li>
<li>Additional commits viewable in <a href="https://github.com/google/guava/compare/v20.0...v23.0">compare view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `dependabot rebase` will rebase this PR
- `dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `dependabot merge` will merge this PR after your CI passes on it
- `dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `dependabot cancel merge` will cancel a previously requested merge and block automerging
- `dependabot reopen` will reopen this PR if it is closed
- `dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Pull Request resolved: https://github.com/facebook/flipper/pull/2034
Reviewed By: nikoant
Differential Revision: D26949764
Pulled By: passy
fbshipit-source-id: 90ff14dfa48ed6ce1451c7dd8493af7b04c1f264
Summary:
Bumps espresso-core from 3.1.0 to 3.3.0.
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `dependabot rebase` will rebase this PR
- `dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `dependabot merge` will merge this PR after your CI passes on it
- `dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `dependabot cancel merge` will cancel a previously requested merge and block automerging
- `dependabot reopen` will reopen this PR if it is closed
- `dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Pull Request resolved: https://github.com/facebook/flipper/pull/2004
Reviewed By: fabiomassimo
Differential Revision: D26888849
Pulled By: passy
fbshipit-source-id: 06752c640ffacc9fd6dfbd0bd671c2d71f1dd9b2
Summary:
Bumps de.undercouch.download from 4.0.1 to 4.1.1.
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `dependabot rebase` will rebase this PR
- `dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `dependabot merge` will merge this PR after your CI passes on it
- `dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `dependabot cancel merge` will cancel a previously requested merge and block automerging
- `dependabot reopen` will reopen this PR if it is closed
- `dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Pull Request resolved: https://github.com/facebook/flipper/pull/2032
Reviewed By: mweststrate
Differential Revision: D26889090
Pulled By: passy
fbshipit-source-id: 7b95fddbdfa18fbce28654273b8a0eb2ebf96eb3
Summary:
Bumps [okhttp](https://github.com/square/okhttp) from 3.14.1 to 4.9.1.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/square/okhttp/blob/master/CHANGELOG.md">okhttp's changelog</a>.</em></p>
<blockquote>
<h2>Version 4.9.1</h2>
<p><em>2021-01-30</em></p>
<ul>
<li>Fix: Work around a crash in Android 10 and 11 that may be triggered when two threads
concurrently close an SSL socket. This would have appeared in crash logs as
<code>NullPointerException: bio == null</code>.</li>
</ul>
<h2>Version 4.9.0</h2>
<p><em>2020-09-11</em></p>
<p><strong>With this release, <code>okhttp-tls</code> no longer depends on Bouncy Castle and doesn't install the
Bouncy Castle security provider.</strong> If you still need it, you can do it yourself:</p>
<pre><code>Security.addProvider(BouncyCastleProvider())
</code></pre>
<p>You will also need to configure this dependency:</p>
<pre><code>dependencies {
implementation "org.bouncycastle:bcprov-jdk15on:1.65"
}
</code></pre>
<ul>
<li>Upgrade: [Kotlin 1.4.10][kotlin_1_4_10]. We now use Kotlin 1.4.x [functional
interfaces][fun_interface] for <code>Authenticator</code>, <code>Interceptor</code>, and others.</li>
<li>Upgrade: Build with Conscrypt 2.5.1.</li>
</ul>
<h2>Version 4.8.1</h2>
<p><em>2020-08-06</em></p>
<ul>
<li>Fix: Don't crash in <code>HeldCertificate.Builder</code> when creating certificates on older versions of
Android, including Android 6. We were using a feature of <code>SimpleDateFormat</code> that wasn't
available in those versions!</li>
</ul>
<h2>Version 4.8.0</h2>
<p><em>2020-07-11</em></p>
<ul>
<li>New: Change <code>HeldCertificate.Builder</code> to use its own ASN.1 certificate encoder. This is part
of our effort to remove the okhttp-tls module's dependency on Bouncy Castle. We think Bouncy
Castle is great! But it's a large dependency (6.5 MiB) and its security provider feature
impacts VM-wide behavior.</li>
</ul>
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="63dcd95bfa"><code>63dcd95</code></a> Prepare for release 4.9.1.</li>
<li><a href="d2e28ab672"><code>d2e28ab</code></a> Silently ignore 'bio == null' NullPointerExceptions (<a href="https://github-redirect.dependabot.com/square/okhttp/issues/6534">#6534</a>)</li>
<li><a href="cbeaf8f955"><code>cbeaf8f</code></a> Prepare for release 4.9.0.</li>
<li><a href="8fd74a7482"><code>8fd74a7</code></a> Conscrypt 2.5.1 Upgrade (<a href="https://github-redirect.dependabot.com/square/okhttp/issues/6263">#6263</a>)</li>
<li><a href="2bd749dd9d"><code>2bd749d</code></a> Kotlin 1.4.10 Upgrade (<a href="https://github-redirect.dependabot.com/square/okhttp/issues/6264">#6264</a>)</li>
<li><a href="0164696a8a"><code>0164696</code></a> Fix build on windows (<a href="https://github-redirect.dependabot.com/square/okhttp/issues/6257">#6257</a>)</li>
<li><a href="e4c3b28c39"><code>e4c3b28</code></a> Fix HttpUrl documentation (<a href="https://github-redirect.dependabot.com/square/okhttp/issues/6259">#6259</a>)</li>
<li><a href="8c2f383f14"><code>8c2f383</code></a> Document interceptor throwing modes (<a href="https://github-redirect.dependabot.com/square/okhttp/issues/6235">#6235</a>)</li>
<li><a href="a76c40a935"><code>a76c40a</code></a> Kotlin 1.4 dependency upgrade and language features (<a href="https://github-redirect.dependabot.com/square/okhttp/issues/5947">#5947</a>)</li>
<li><a href="1589741a90"><code>1589741</code></a> Fix Caching documentation. (<a href="https://github-redirect.dependabot.com/square/okhttp/issues/6247">#6247</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/square/okhttp/compare/parent-3.14.1...parent-4.9.1">compare view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `dependabot rebase` will rebase this PR
- `dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `dependabot merge` will merge this PR after your CI passes on it
- `dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `dependabot cancel merge` will cancel a previously requested merge and block automerging
- `dependabot reopen` will reopen this PR if it is closed
- `dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Pull Request resolved: https://github.com/facebook/flipper/pull/2006
Reviewed By: nikoant
Differential Revision: D26888990
Pulled By: passy
fbshipit-source-id: d84e67fefcc0ed12cc20423b5fdd77fb9423ba77
Summary:
Bumps rules from 1.1.0 to 1.3.0.
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `dependabot rebase` will rebase this PR
- `dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `dependabot merge` will merge this PR after your CI passes on it
- `dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `dependabot cancel merge` will cancel a previously requested merge and block automerging
- `dependabot reopen` will reopen this PR if it is closed
- `dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Pull Request resolved: https://github.com/facebook/flipper/pull/2033
Reviewed By: mweststrate
Differential Revision: D26889135
Pulled By: passy
fbshipit-source-id: 9dd7cff0596ca4013ae3fb101e18ae57cb163cf2
Summary:
Bumps runner from 1.1.0 to 1.3.0.
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `dependabot rebase` will rebase this PR
- `dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `dependabot merge` will merge this PR after your CI passes on it
- `dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `dependabot cancel merge` will cancel a previously requested merge and block automerging
- `dependabot reopen` will reopen this PR if it is closed
- `dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Pull Request resolved: https://github.com/facebook/flipper/pull/2002
Reviewed By: fabiomassimo
Differential Revision: D26888790
Pulled By: passy
fbshipit-source-id: 96d063493c01ab93088bd3906100173333480d71
Summary:
Bumps constraintlayout from 1.1.2 to 2.0.4.
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `dependabot rebase` will rebase this PR
- `dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `dependabot merge` will merge this PR after your CI passes on it
- `dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `dependabot cancel merge` will cancel a previously requested merge and block automerging
- `dependabot reopen` will reopen this PR if it is closed
- `dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Pull Request resolved: https://github.com/facebook/flipper/pull/2005
Reviewed By: fabiomassimo
Differential Revision: D26888882
Pulled By: passy
fbshipit-source-id: 8c2f87193b72a965cd629aeaa88536376ca6e4d2
Summary:
Bumps [stetho](https://github.com/facebook/fresco) from 2.2.0 to 2.4.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/facebook/fresco/releases">stetho's releases</a>.</em></p>
<blockquote>
<h2>Version 2.4.0</h2>
<p>No release notes provided.</p>
<h2>Version 2.3.0</h2>
<h1>Highlights</h1>
<ul>
<li>
<p><strong>Bumped Fresco's minSdk to 14.</strong> We did not remove any Gingerbread-specific code yet, but will do so soon. 091e8b7c4cd11a6cc5b535dd84d8e21a1e243ac0</p>
</li>
<li>
<p>Proper nullability annotations for some classes by using new Infer annotations - this improves Kotlin support and null-safety.</p>
</li>
<li>
<p>Improved Java-only Fresco setup. 4a9961559c8240cbb88eeecf2303f956d0185120</p>
</li>
<li>
<p>Lots of debug logging improvements: More reliable image origin, new MEMORY_BITMAP_SHORTCUT origin, more debug information available. These are available via <code>ImagePerfData#getExtraData()</code></p>
</li>
<li>
<p>Added experimental option to recover from OOMs: f43d5990600c9ac6c3a18e14e4d3c260cf78b462</p>
</li>
<li>
<p>Added option to force a single image pipeline instance: 5f5c076fe26b17a849498c27c7541550c3ef3984</p>
</li>
<li>
<p>Disk cache support for the Fresco Flipper images plugin.</p>
</li>
<li>
<p>Bumped SoLoader version to 0.9.0.</p>
</li>
<li>
<p>Use <code>buildSrc</code> for Fresco's internal dependency management.</p>
</li>
<li>
<p>WIP: Lots of improvements for our new Fresco Vito UI components.</p>
</li>
</ul>
<p>Pull requests:</p>
<ul>
<li>Fixed resource leak problem while using BlurPostProcessor. Thanks <a href="https://github.com/FrancescoJo"><code>@FrancescoJo</code></a> for the PR.</li>
<li>Make sure there is at least one overlay in GenericDraweeHierarchy. Thanks <a href="https://github.com/dengweichao"><code>@dengweichao</code></a> for the PR.</li>
<li>Removed unused padding value. Thanks <a href="https://github.com/erenulas"><code>@erenulas</code></a> for the PR.</li>
</ul>
<h1>Cleanup</h1>
<ul>
<li>Removed Drawee-Volley module. If you're using Drawee-Volley, you can still continue using it by just copying the files removed with 7c2517edee7d4080fab0daf54fd4ac4eca6a8497 into your project. We did not significantly change these in a long time, so this has been stable.</li>
<li>Removed OkHttp2 image pipeline artifact. See deba7d1c3c218377a5b67e58f269914d8f8a88be</li>
</ul>
<p>Full changelog: <a href="https://github.com/facebook/fresco/compare/v2.2.0...v2.3.0">https://github.com/facebook/fresco/compare/v2.2.0...v2.3.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="be9cb64a97"><code>be9cb64</code></a> Bump version to 2.4.0</li>
<li><a href="3364e6e8aa"><code>3364e6e</code></a> Annotate public APIs as <a href="https://github.com/Nullable"><code>@Nullable</code></a></li>
<li><a href="21e43cfc22"><code>21e43cf</code></a> report the number of inflight requests when the request was created</li>
<li><a href="0aa2f094f3"><code>0aa2f09</code></a> Fix issues caused by use of FB internal things (<a href="https://github-redirect.dependabot.com/facebook/fresco/issues/2574">#2574</a>)</li>
<li><a href="0dcdfc5642"><code>0dcdfc5</code></a> Update giflib to address stack buffer overflow issue. (<a href="https://github-redirect.dependabot.com/facebook/fresco/issues/2571">#2571</a>)</li>
<li><a href="4178929873"><code>4178929</code></a> Add nullable annotations and mark classes nullsafe</li>
<li><a href="b49891bdb4"><code>b49891b</code></a> narrow fbcore proguard rule (<a href="https://github-redirect.dependabot.com/facebook/fresco/issues/2519">#2519</a>)</li>
<li><a href="0ec9738d8d"><code>0ec9738</code></a> Update gradle wrapper to 6.7.1 so it's compatible with AGP 4.1.1 (<a href="https://github-redirect.dependabot.com/facebook/fresco/issues/2572">#2572</a>)</li>
<li><a href="1c1feaa181"><code>1c1feaa</code></a> Add Infer Annotations to testCompileOnly (<a href="https://github-redirect.dependabot.com/facebook/fresco/issues/2573">#2573</a>)</li>
<li><a href="d7ef94ad97"><code>d7ef94a</code></a> Update libpng to address CVE-2019-7317 (<a href="https://github-redirect.dependabot.com/facebook/fresco/issues/2570">#2570</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/facebook/fresco/compare/v2.2.0...v2.4.0">compare view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `dependabot rebase` will rebase this PR
- `dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `dependabot merge` will merge this PR after your CI passes on it
- `dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `dependabot cancel merge` will cancel a previously requested merge and block automerging
- `dependabot reopen` will reopen this PR if it is closed
- `dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Pull Request resolved: https://github.com/facebook/flipper/pull/2008
Reviewed By: priteshrnandgaonkar
Differential Revision: D26843914
Pulled By: passy
fbshipit-source-id: 891f1ba93e88ea21d0c751aacde959866333649d
Summary:
Bumps [fresco](https://github.com/facebook/fresco) from 2.2.0 to 2.4.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/facebook/fresco/releases">fresco's releases</a>.</em></p>
<blockquote>
<h2>Version 2.4.0</h2>
<p>No release notes provided.</p>
<h2>Version 2.3.0</h2>
<h1>Highlights</h1>
<ul>
<li>
<p><strong>Bumped Fresco's minSdk to 14.</strong> We did not remove any Gingerbread-specific code yet, but will do so soon. 091e8b7c4cd11a6cc5b535dd84d8e21a1e243ac0</p>
</li>
<li>
<p>Proper nullability annotations for some classes by using new Infer annotations - this improves Kotlin support and null-safety.</p>
</li>
<li>
<p>Improved Java-only Fresco setup. 4a9961559c8240cbb88eeecf2303f956d0185120</p>
</li>
<li>
<p>Lots of debug logging improvements: More reliable image origin, new MEMORY_BITMAP_SHORTCUT origin, more debug information available. These are available via <code>ImagePerfData#getExtraData()</code></p>
</li>
<li>
<p>Added experimental option to recover from OOMs: f43d5990600c9ac6c3a18e14e4d3c260cf78b462</p>
</li>
<li>
<p>Added option to force a single image pipeline instance: 5f5c076fe26b17a849498c27c7541550c3ef3984</p>
</li>
<li>
<p>Disk cache support for the Fresco Flipper images plugin.</p>
</li>
<li>
<p>Bumped SoLoader version to 0.9.0.</p>
</li>
<li>
<p>Use <code>buildSrc</code> for Fresco's internal dependency management.</p>
</li>
<li>
<p>WIP: Lots of improvements for our new Fresco Vito UI components.</p>
</li>
</ul>
<p>Pull requests:</p>
<ul>
<li>Fixed resource leak problem while using BlurPostProcessor. Thanks <a href="https://github.com/FrancescoJo"><code>@FrancescoJo</code></a> for the PR.</li>
<li>Make sure there is at least one overlay in GenericDraweeHierarchy. Thanks <a href="https://github.com/dengweichao"><code>@dengweichao</code></a> for the PR.</li>
<li>Removed unused padding value. Thanks <a href="https://github.com/erenulas"><code>@erenulas</code></a> for the PR.</li>
</ul>
<h1>Cleanup</h1>
<ul>
<li>Removed Drawee-Volley module. If you're using Drawee-Volley, you can still continue using it by just copying the files removed with 7c2517edee7d4080fab0daf54fd4ac4eca6a8497 into your project. We did not significantly change these in a long time, so this has been stable.</li>
<li>Removed OkHttp2 image pipeline artifact. See deba7d1c3c218377a5b67e58f269914d8f8a88be</li>
</ul>
<p>Full changelog: <a href="https://github.com/facebook/fresco/compare/v2.2.0...v2.3.0">https://github.com/facebook/fresco/compare/v2.2.0...v2.3.0</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="be9cb64a97"><code>be9cb64</code></a> Bump version to 2.4.0</li>
<li><a href="3364e6e8aa"><code>3364e6e</code></a> Annotate public APIs as <a href="https://github.com/Nullable"><code>@Nullable</code></a></li>
<li><a href="21e43cfc22"><code>21e43cf</code></a> report the number of inflight requests when the request was created</li>
<li><a href="0aa2f094f3"><code>0aa2f09</code></a> Fix issues caused by use of FB internal things (<a href="https://github-redirect.dependabot.com/facebook/fresco/issues/2574">#2574</a>)</li>
<li><a href="0dcdfc5642"><code>0dcdfc5</code></a> Update giflib to address stack buffer overflow issue. (<a href="https://github-redirect.dependabot.com/facebook/fresco/issues/2571">#2571</a>)</li>
<li><a href="4178929873"><code>4178929</code></a> Add nullable annotations and mark classes nullsafe</li>
<li><a href="b49891bdb4"><code>b49891b</code></a> narrow fbcore proguard rule (<a href="https://github-redirect.dependabot.com/facebook/fresco/issues/2519">#2519</a>)</li>
<li><a href="0ec9738d8d"><code>0ec9738</code></a> Update gradle wrapper to 6.7.1 so it's compatible with AGP 4.1.1 (<a href="https://github-redirect.dependabot.com/facebook/fresco/issues/2572">#2572</a>)</li>
<li><a href="1c1feaa181"><code>1c1feaa</code></a> Add Infer Annotations to testCompileOnly (<a href="https://github-redirect.dependabot.com/facebook/fresco/issues/2573">#2573</a>)</li>
<li><a href="d7ef94ad97"><code>d7ef94a</code></a> Update libpng to address CVE-2019-7317 (<a href="https://github-redirect.dependabot.com/facebook/fresco/issues/2570">#2570</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/facebook/fresco/compare/v2.2.0...v2.4.0">compare view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `dependabot rebase` will rebase this PR
- `dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `dependabot merge` will merge this PR after your CI passes on it
- `dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `dependabot cancel merge` will cancel a previously requested merge and block automerging
- `dependabot reopen` will reopen this PR if it is closed
- `dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Pull Request resolved: https://github.com/facebook/flipper/pull/2009
Reviewed By: mweststrate
Differential Revision: D26843912
Pulled By: passy
fbshipit-source-id: f8a240e8f228746dab95c11d85c0c68d754a3bc0
Summary:
Bumps [junit](https://github.com/junit-team/junit4) from 4.12 to 4.13.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/junit-team/junit4/releases">junit's releases</a>.</em></p>
<blockquote>
<h2>JUnit 4.13.2</h2>
<p>Please refer to the <a href="https://github.com/junit-team/junit/blob/HEAD/doc/ReleaseNotes4.13.2.md">release notes</a> for details.</p>
<h2>JUnit 4.13.1</h2>
<p>Please refer to the <a href="https://github.com/junit-team/junit/blob/HEAD/doc/ReleaseNotes4.13.1.md">release notes</a> for details.</p>
<h2>JUnit 4.13</h2>
<p>Please refer to the <a href="https://github.com/junit-team/junit/blob/HEAD/doc/ReleaseNotes4.13.md">release notes</a> for details.</p>
<h2>JUnit 4.13 RC 2</h2>
<p>Please refer to the <a href="https://github.com/junit-team/junit4/wiki/4.13-Release-Notes">release notes</a> for details.</p>
<h2>JUnit 4.13 RC 1</h2>
<p>Please refer to the <a href="https://github.com/junit-team/junit4/wiki/4.13-Release-Notes">release notes</a> for details.</p>
<h2>JUnit 4.13 Beta 3</h2>
<p>Please refer to the <a href="https://github.com/junit-team/junit4/wiki/4.13-Release-Notes">release notes</a> for details.</p>
<h2>JUnit 4.13 Beta 2</h2>
<p>Please refer to the <a href="https://github.com/junit-team/junit4/wiki/4.13-Release-Notes">release notes</a> for details.</p>
<h2>JUnit 4.13 Beta 1</h2>
<p>Please refer to the <a href="https://github.com/junit-team/junit4/wiki/4.13-Release-Notes">release notes</a> for details.</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="05fe2a64f5"><code>05fe2a6</code></a> [maven-release-plugin] prepare release r4.13.2</li>
<li><a href="ff57344f71"><code>ff57344</code></a> Add build for JDK 17-ea</li>
<li><a href="02aaa01b8f"><code>02aaa01</code></a> Improve check that thread is stopped</li>
<li><a href="e9a75f4be7"><code>e9a75f4</code></a> Merge test for exception type and message</li>
<li><a href="d27ad52592"><code>d27ad52</code></a> Rename DelegateStatement to DelegatingStatement</li>
<li><a href="b83dc2e8c4"><code>b83dc2e</code></a> Better name for test that stops statement</li>
<li><a href="527f3a3d0d"><code>527f3a3</code></a> Replace InfiniteLoop with RunForASecond</li>
<li><a href="2db6394288"><code>2db6394</code></a> Tidy up FailOnTimeoutTest</li>
<li><a href="64634e1c3e"><code>64634e1</code></a> Update 4.13.2 release notes to document pull 1654</li>
<li><a href="f8ee412316"><code>f8ee412</code></a> Fix serialization of AssumptionViolatedException (<a href="https://github-redirect.dependabot.com/junit-team/junit4/issues/1654">https://github.com/facebook/flipper/issues/1654</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/junit-team/junit4/compare/r4.12...r4.13.2">compare view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `dependabot rebase` will rebase this PR
- `dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `dependabot merge` will merge this PR after your CI passes on it
- `dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `dependabot cancel merge` will cancel a previously requested merge and block automerging
- `dependabot reopen` will reopen this PR if it is closed
- `dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
Pull Request resolved: https://github.com/facebook/flipper/pull/2007
Reviewed By: mweststrate
Differential Revision: D26843915
Pulled By: passy
fbshipit-source-id: 94f52da0efdd601382bc85a8ad5f4d9d60bd517c
Summary:
This should fix https://github.com/facebook/flipper/issues/1968
Pull Request resolved: https://github.com/facebook/flipper/pull/1999
Test Plan:
Built our sample app; built the sample app provided in the repo as part
of the issue; locally released the Flipper artifacts and built the RN
app against it.
Reviewed By: fabiomassimo
Differential Revision: D26817589
Pulled By: passy
fbshipit-source-id: c6db5f947c08e4236442b08306791e45b4d15ec3
Summary:
Upgraded to the latest Android Studio and this popped up.
Pull Request resolved: https://github.com/facebook/flipper/pull/1936
Test Plan:
Built the sample app.
Repro'd the previous build failure. Weirdly enough, this only occurred on Linux, not on my Mac. Now it's passing.
Reviewed By: mweststrate
Differential Revision: D26483694
Pulled By: passy
fbshipit-source-id: 9c27eb6d28a0f390154899d67469a504d68c2ad4
Summary:
This includes some improvements to the closing process, which
is quite important for us.
Reviewed By: mweststrate
Differential Revision: D26452587
fbshipit-source-id: 533e97148160c4f15da52e31fbe8b136ab884e0b
Summary:
This removes Bintray/JCenter specific code and replaces it with a new plugin recommended by [Chris Banes](https://chris.banes.dev/publishing-to-maven-central/).
Pull Request resolved: https://github.com/facebook/flipper/pull/1914
Test Plan:
Manually uploaded as snapshot and full release, but with this setup still requires all sorts of manual setup, including GPG. Next PR will include automation for this.
CI here should also verify that I didn't split this diff up incorrectly.
Reviewed By: jknoxville
Differential Revision: D26367350
Pulled By: passy
fbshipit-source-id: faa6b488d6c95bc643d2f9328362e29fb4b05ded
Summary:
Used this to find out that my 0.10 release was borked but this one works.
This doesn't require any code changes because we're already using the
equivalent of 0.10.1 internally through the mono repo.
Changelog: Update to SoLoader 0.10.1
Reviewed By: nikoant
Differential Revision: D26148652
fbshipit-source-id: 7d8c2bc8d8dfaca7118d240bd365be08948e4623
Summary: FlipperEditor has migrated to `litho-editor-flipper`, so this diff fixes the dependency tree and deletes the file.
Reviewed By: muraziz
Differential Revision: D23380023
fbshipit-source-id: 75f5f037dc392194212fc156499f090c381999bd
Summary: jknoxville helped me debug this. The underlying problem was that we didn't include a dependency which is transitive in gradle land. We swallowed the exception and just returned an empty list. I left an error log in there to make future debugging easier. For reference, this was the error:
Reviewed By: cekkaewnumchai
Differential Revision: D23759727
fbshipit-source-id: 244510d2765913bf4c89458e336889c3c6838fc4
Summary: This broke DB opening in FB apps. Will try to fix and reland this, but need to unblock people first.
Reviewed By: cekkaewnumchai
Differential Revision: D23705962
fbshipit-source-id: 3c9ff3a74e5a6d34e6cb2c75e7e2cec749b5a60e
Summary:
This change will allow to use various SQLiteDatabase implementations: standard Android implementation, [requery/sqlite-android](https://github.com/requery/sqlite-android) and so on. See issue https://github.com/facebook/flipper/issues/1183
## Changelog
Android Databases Plugin: `SqliteDatabaseConnectionProvider` returns `SupportSQLiteDatabase` instead of `SQLiteDatabase`.
Pull Request resolved: https://github.com/facebook/flipper/pull/1196
Test Plan: Check that Databases Plugin shows correct data on the sample Android application.
Reviewed By: mweststrate
Differential Revision: D23294272
Pulled By: passy
fbshipit-source-id: c07ebeb869ab01d41281f75541cbb3411f0ebae0
Summary:
This diff implements the integration between a Litho Editor and Flipper. It does so by converting the Editor format to FlipperObject, and then converting it back from FlipperDynamic.
This conversion works for both `State` and `Prop`. We already provide default implementations for primitive + wrapped types and String, so the functionality should match the existing one.
Reviewed By: passy, Katalune
Differential Revision: D22455220
fbshipit-source-id: f7f633765f3d997ce6de09d2c1277019e72c0802
Summary:
Android Studio is on 4.0 now, we need the plugin for proper support.
Pull Request resolved: https://github.com/facebook/flipper/pull/1327
Test Plan: Synced and build with it.
Reviewed By: nikoant
Differential Revision: D22356268
Pulled By: passy
fbshipit-source-id: 63c7b727e9a0eaaea7beed1f9819c1e2d15a0ff4
Summary:
Pull Request resolved: https://github.com/facebook/flipper/pull/999
Pritesh reminded me of this. Just some of the basics,
the plugin itself for simpler dep updates, Kotlin,
NDK (as the one referenced wasn't even installed on my laptop anymore),
Litho.
Reviewed By: jknoxville
Differential Revision: D20946199
fbshipit-source-id: 85ee57ef239ab219af3f07d90c121f3ab8b5f9b9
Summary:
This is in line with the most recent stable Android Studio Release.
Pull Request resolved: https://github.com/facebook/flipper/pull/958
Test Plan:
Used it myself.
Open Source CI required a higher NDK, so let's first check what CI says to that internally now.
Reviewed By: jknoxville
Differential Revision: D20794634
Pulled By: passy
fbshipit-source-id: c32f934634b036ad3c1cad9fc49541e585d64329
Summary:
Tracks images in disk cache. It seems performant even with 500+ images in disk cache. Sidebar displays the local path for an image when that image is selected. Shows total size of images in disk cache. 'Clear Cache' clears the disk cache.
For now we unpack the async cache request in the plugin, should implement a `getSync()` method on `bufferedDiskCache` in the future. For some reason Flipper doesn't work with a blocking call (https://fburl.com/smj0s4li).
Reviewed By: defHLT
Differential Revision: D20001062
fbshipit-source-id: 1e7a7900e9f42d05e3bf30472e57cd643caa5aca
Summary: No changes that should impact us in any way.
Reviewed By: priteshrnandgaonkar
Differential Revision: D19856578
fbshipit-source-id: 35113b4b9e56b6c0b09681ac5649705cf840f60c
Summary:
## Summary
Resolves https://github.com/facebook/flipper/issues/607
This removes stetho dependencies directly in favor of just copying in the used classes. This removes the last non-androidx dependency from the project, and is useful as stetho appears to be unmaintained. The fresco stetho dependency appeared to be completely unused.
## Changelog
Remove stetho dependencies. It was unused other than a few utility methods, but came at the cost of preventing Flipper consumers from completely removing dependencies that hadn't updated to Androidx yet.
Pull Request resolved: https://github.com/facebook/flipper/pull/762
Test Plan: Existing tests still pass with no regressions. Functionally this should be no difference.
Reviewed By: jknoxville
Differential Revision: D19577969
Pulled By: passy
fbshipit-source-id: b277ddf97a9d2c846dd0b9227c02bb46c1ecd930
Summary: 0.8.0 is required for compatibility of our sample app with new fbjni.
Reviewed By: jknoxville
Differential Revision: D17547812
fbshipit-source-id: 5ad98fe5629cd63be8a253c881e20e8df4d0df74
Summary:
This is now published to Maven Central and doesn't require a
separate repository.
Pull Request resolved: https://github.com/facebook/flipper/pull/557
Test Plan: CI
Reviewed By: danielbuechele
Differential Revision: D17526448
Pulled By: passy
fbshipit-source-id: 169b5bc5f6568d40697e5e48a9873f8a64bd5e00
Summary: Android Studio asked me to.
Reviewed By: danielbuechele
Differential Revision: D17501199
fbshipit-source-id: 4e57fad00c2b92ff04909d21474f3869d9adedc1
Summary:
Pull Request resolved: https://github.com/facebook/flipper/pull/530
Use the pre-release of fbjni instead of our bundled copy. I hope this can be made a little less awkward, but it works for now.
Reviewed By: jknoxville
Differential Revision: D16988077
fbshipit-source-id: 936e414f9b2bf82ccb54b107228d79d01acdbf14
Summary:
Without this, our build will break with the next Litho release
because the `DoNotStrip` annotation will no longer be exported
as part of `litho-annotations`.
Reviewed By: jknoxville
Differential Revision: D16828144
fbshipit-source-id: f9a78b331678882025732498f18a3443d148ef4d
Summary: Need a Fresco release including the previous diff first.
Reviewed By: danielbuechele
Differential Revision: D15762090
fbshipit-source-id: ec30778ffc1cd3e48dcfc4d514a9ba13fb26fd75
Summary: Includes the LeakTracker interface change. Restores the temporarily deleted tracker, wires it back up. Requires Fresco 0.14.2 being released which has yet to happen.
Reviewed By: oprisnik
Differential Revision: D15655667
fbshipit-source-id: ab4361be35101efe7564dfdd7a69cba93135eb7e
Summary: Required for the next diff as we make use of the new CloseableReference interface.
Reviewed By: oprisnik
Differential Revision: D15558423
fbshipit-source-id: 98ce5bf3f01a6f0e7ca568544709656c41093505
Summary:
This matches the latest stable Android Studio version which will loudly
complain unless you accept this modification.
Reviewed By: danielbuechele
Differential Revision: D15520117
fbshipit-source-id: 81301722d85cbcb07fc1b17b6ce7418d03103874
Summary:
Fresco plugin on the desktop side used to ask for all the image list along with the metadata when it was mounted. The mobile side never sent the image list and other information if not requested from it. That means, although Fresco plugin is a background plugin, there weren't any messages sent from the mobile side. Thus there was no trace available for Images plugin when the trace was exported. This diff, adds a hook which gets called before the export, where we request all the metadata from the mobile SDK.
BUG:
{F159305887}
Reviewed By: passy
Differential Revision: D15407962
fbshipit-source-id: 0012de2ab29d0f62e92d00f4926b04b1e394b62a
Summary: Noticed that this is still spamming the warning logs during build.
Reviewed By: danielbuechele
Differential Revision: D15354006
fbshipit-source-id: f34b99267d946ccb9ae0704beebbd48d39e9723a
Summary:
A very basic app with a scrolling list backed by a static data source. It also covers two bases that we hadn't before: Sections and Kotlin; the latter being the better choice for a modern Android tutorial anyway.
Missing right now: BUCK support (likely not going to come anytime soon due to the kapt limitations), the actual Flipper plugin integration (that's up next).
Reviewed By: jknoxville
Differential Revision: D15166195
fbshipit-source-id: 3cfaa1d243548279cabc4f244c13363f1bcaa36c
