Skip to content

[Snyk] Upgrade react-native from 0.61.5 to 0.74.1#3

Open
ceconcarlsen wants to merge 1 commit into
masterfrom
snyk-upgrade-cfdcb5825dfd568ddd2ba763d2008b38
Open

[Snyk] Upgrade react-native from 0.61.5 to 0.74.1#3
ceconcarlsen wants to merge 1 commit into
masterfrom
snyk-upgrade-cfdcb5825dfd568ddd2ba763d2008b38

Conversation

@ceconcarlsen

Copy link
Copy Markdown
Owner

This PR was automatically created by Snyk using the credentials of a real user.


![snyk-top-banner](https://github.com/andygongea/OWASP-Benchmark/assets/818805/c518c423-16fe-447e-b67f-ad5a49b5d123)

Snyk has created this PR to upgrade react-native from 0.61.5 to 0.74.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.


  • The recommended version is 465 versions ahead of your current version.

  • The recommended version was released on a month ago.

Issues fixed by the recommended upgrade:

Issue Score Exploit Maturity
high severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-REACTNATIVE-1298632
586 No Known Exploit
high severity Use After Free
SNYK-JS-HERMESENGINE-1309667
586 No Known Exploit
high severity Out-of-Bounds
SNYK-JS-HERMESENGINE-1727253
586 No Known Exploit
high severity Arbitrary File Write
SNYK-JS-TAR-1579147
586 No Known Exploit
high severity Arbitrary File Write
SNYK-JS-TAR-1579152
586 No Known Exploit
high severity Prototype Pollution
SNYK-JS-INI-1048974
586 Proof of Concept
high severity Prototype Pollution
SNYK-JS-ASYNC-2441827
586 Proof of Concept
high severity Prototype Pollution
SNYK-JS-PLIST-2405644
586 Proof of Concept
high severity Uncontrolled resource consumption
SNYK-JS-BRACES-6838727
586 Proof of Concept
high severity Prototype Pollution
SNYK-JS-XMLDOM-3042242
586 No Known Exploit
high severity Arbitrary File Write
SNYK-JS-TAR-1579155
586 No Known Exploit
high severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-UAPARSERJS-1023599
586 Proof of Concept
high severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-UAPARSERJS-610226
586 Proof of Concept
high severity Prototype Pollution
SNYK-JS-UNSETVALUE-2400660
586 No Known Exploit
high severity Arbitrary File Overwrite
SNYK-JS-TAR-1536528
586 No Known Exploit
high severity Arbitrary File Overwrite
SNYK-JS-TAR-1536531
586 No Known Exploit
high severity Remote Code Execution (RCE)
SNYK-JS-LOGKITTY-568763
586 Proof of Concept
high severity Inefficient Regular Expression Complexity
SNYK-JS-MICROMATCH-6838728
586 No Known Exploit
medium severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-WS-1296835
586 Proof of Concept
medium severity Improper Authorization
SNYK-JS-REACTDEVTOOLSCORE-6023999
586 Proof of Concept
medium severity Denial of Service (DoS)
npm:mem:20180117
586 No Known Exploit
medium severity Denial of Service (DoS)
SNYK-JS-HERMESENGINE-2342071
586 No Known Exploit
medium severity Prototype Pollution
SNYK-JS-HERMESENGINE-608850
586 No Known Exploit
medium severity Denial of Service (DoS)
SNYK-JS-HERMESENGINE-629268
586 No Known Exploit
medium severity Out-of-Bounds
SNYK-JS-HERMESENGINE-629748
586 No Known Exploit
medium severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-HOSTEDGITINFO-1088355
586 Proof of Concept
medium severity Command Injection
SNYK-JS-NODENOTIFIER-1035794
586 No Known Exploit
medium severity Prototype Pollution
SNYK-JS-JSON5-3182856
586 Proof of Concept
medium severity Prototype Pollution
SNYK-JS-HAPIHOEK-548452
586 No Known Exploit
medium severity Cross-site Scripting (XSS)
SNYK-JS-HERMESENGINE-1015406
586 No Known Exploit
medium severity XML External Entity (XXE) Injection
SNYK-JS-XMLDOM-1084960
586 No Known Exploit
medium severity Improper Input Validation
SNYK-JS-XMLDOM-1534562
586 No Known Exploit
critical severity Improper Input Validation
SNYK-JS-XMLDOM-3092935
586 Proof of Concept
medium severity Prototype Pollution
SNYK-JS-YARGSPARSER-560381
586 Proof of Concept
medium severity Prototype Pollution
SNYK-JS-YARGSPARSER-560381
586 Proof of Concept
medium severity Uncontrolled Resource Consumption ('Resource Exhaustion')
SNYK-JS-TAR-6476909
586 Proof of Concept
medium severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-UAPARSERJS-1072471
586 Proof of Concept
medium severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-WS-1296835
586 Proof of Concept
low severity Regular Expression Denial of Service (ReDoS)
SNYK-JS-TAR-1536758
586 No Known Exploit

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.
  • Max score is 1000. Note that the real score may have changed since the PR was raised.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

Snyk has created this PR to upgrade react-native from 0.61.5 to 0.74.1.

See this package in yarn:
react-native

See this project in Snyk:
https://app.snyk.io/org/ceconcarlsen/project/ef035f4d-9922-43d9-966f-37fb00777958?utm_source=github&utm_medium=referral&page=upgrade-pr
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants