jens/flipper
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
Files
23f15c525aafd77d246f2fcf9d59ad221a31a9b3
flipper/react-native/ReactNativeFlipperExample/yarn.lock
dependabot[bot] 4893c0ffb7 Bump react-native from 0.64.0 to 0.64.1 in /react-native/ReactNativeFlipperExample (#2291) 
Summary:
allow-large-files
Bumps [react-native](https://github.com/facebook/react-native) from 0.64.0 to 0.64.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/facebook/react-native/releases">react-native's releases</a>.</em></p>
<blockquote>
<h2>v0.64.1</h2>
<p>This patch release is specifically targetted towards fixing iOS build problems in Xcode 12.5. If it doesn't help, please refer to <a href="https://github-redirect.dependabot.com/facebook/react-native/issues/31480">this issue</a>.</p>
<p>Aside from bumping your version from 0.64.0 to 0.64.1, please check your podfile.lock and make sure that Flipper is on 0.75 or higher, and Flipper-Folly is 2.5.3 or higher; if not, add this line to your podfile (or modify it if you already had it):</p>
<pre><code>use_flipper!('Flipper' =&gt; '0.75.1', 'Flipper-Folly' =&gt; '2.5.3', 'Flipper-RSocket' =&gt; '1.3.1')
</code></pre>
<p>After which, do all the classic necessary cleans (node_modules, caches, pod folders, etc)(<a href="https://github.com/pmadruga/react-native-clean-project">react-native-clean-project</a> is your ally) then do <code>yarn install</code> and a <code>pod install --repo-update</code> (if pod install fails on an error about a Flipper package, just remove the relevant lines from the podfile.lock and run the pod install again).</p>
<p>The only other commit picked &amp; released along the Xcode 12.5 fixes is:</p>
<ul>
<li>Update validateBaseUrl to use latest regex (<a href="ca09ae8271">commit</a>) which fixes CVE-2020-1920, GHSL-2020-293.</li>
</ul>
<hr />
<p>You can participate in the conversation on the status of this release at <a href="https://github-redirect.dependabot.com/react-native-community/releases/issues/224">this issue</a>.</p>
<hr />
<p>To help you upgrade to this version, you can use the <a href="https://react-native-community.github.io/upgrade-helper/">upgrade helper</a> {emoji:269b}</p>
<hr />
<p>You can find the whole <a href="https://github.com/react-native-community/react-native-releases/blob/master/CHANGELOG.md">changelog history</a> over at <code>react-native-releases</code>.</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="787567a150"><code>787567a</code></a> [0.64.1] Bump version numbers</li>
<li><a href="cf8a364767"><code>cf8a364</code></a> [local] change post-install to patch RTC-Folly</li>
<li><a href="1c4ac48a55"><code>1c4ac48</code></a> [local] yarn lock update (?)</li>
<li><a href="76f45d35e7"><code>76f45d3</code></a> [local] update RNTester files for 0.64</li>
<li><a href="3912fef6bf"><code>3912fef</code></a> Update validateBaseUrl to use latest regex</li>
<li>See full diff in <a href="https://github.com/facebook/react-native/compare/v0.64.0...v0.64.1">compare view</a></li>
</ul>
</details>
<br />

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=react-native&package-manager=npm_and_yarn&previous-version=0.64.0&new-version=0.64.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

 ---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `dependabot rebase` will rebase this PR
- `dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `dependabot merge` will merge this PR after your CI passes on it
- `dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `dependabot cancel merge` will cancel a previously requested merge and block automerging
- `dependabot reopen` will reopen this PR if it is closed
- `dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

</details>

Pull Request resolved: https://github.com/facebook/flipper/pull/2291

Reviewed By: passy

Differential Revision: D28323822

Pulled By: cekkaewnumchai

fbshipit-source-id: 85f9c195d0ad53b6497be6701e29c8556ac19e64
2021-05-11 04:55:23 -07:00

276 KiB
Raw Blame History

View Raw
Reference in New Issue View Git Blame Copy Permalink