Skip to content
This repository was archived by the owner on Oct 21, 2022. It is now read-only.

Bump node-fetch, expo, expo-updates and react-native-web#17

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/node-fetch-and-expo-and-expo-updates-and-react-native-web-2.6.7
Open

Bump node-fetch, expo, expo-updates and react-native-web#17
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/node-fetch-and-expo-and-expo-updates-and-react-native-web-2.6.7

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Oct 21, 2022
edited
Loading

Copy link
Copy Markdown
Contributor

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

Bumps node-fetch to 2.6.7 and updates ancestor dependencies node-fetch, expo, expo-updates and react-native-web. These dependencies need to be updated together.

Updates node-fetch from 2.6.1 to 2.6.7

Release notes

Sourced from node-fetch's releases.

v2.6.7

Security patch release

Recommended to upgrade, to not leak sensitive cookie and authentication header information to 3th party host while a redirect occurred

What's Changed

Full Changelog: node-fetch/node-fetch@v2.6.6...v2.6.7

v2.6.6

What's Changed

Full Changelog: node-fetch/node-fetch@v2.6.5...v2.6.6

v2.6.2

fixed main path in package.json

Commits
  • 1ef4b56 backport of #1449 (#1453)
  • 8fe5c4e 2.x: Specify encoding as an optional peer dependency in package.json (#1310)
  • f56b0c6 fix(URL): prefer built in URL version when available and fallback to whatwg (...
  • b5417ae fix: import whatwg-url in a way compatible with ESM Node (#1303)
  • 18193c5 fix v2.6.3 that did not sending query params (#1301)
  • ace7536 fix: properly encode url with unicode characters (#1291)
  • 152214c Fix(package.json): Corrected main file path in package.json (#1274)
  • See full diff in compare view
Maintainer changes

This version was pushed to npm by endless, a new releaser for node-fetch since your current version.


Updates expo from 41.0.1 to 46.0.16

Changelog

Sourced from expo's changelog.

Changelog

This is the log of notable changes to the Expo client that are developer-facing. Package-specific changes not released in any SDK will be added here just before the release. Until then, you can find them in changelogs of the individual packages (see packages directory).

Unpublished

📚 3rd party library updates

🛠 Breaking changes

🎉 New features

🐛 Bug fixes

💡 Others

46.0.0 — 2022-07-19

📚 3rd party library updates

... (truncated)

Commits

Updates expo-updates from 0.5.4 to 0.14.6

Commits

Updates react-native-web from 0.13.18 to 0.18.9

Release notes

Sourced from react-native-web's releases.

0.18

Breaking changes

  • Browser support has been reduced. Changes as follows: Safari 10.1+, Edge (Chromium), no IE, no legacy Android browser.
  • Styles are inserted on module eval, not component render. This is needed to account for changes to rendering in React 18.
  • Style sheets rendered on the server will now include styles from all the eval-ed modules, rather than only the styles produced by the initial render.
  • StyleSheet.create() is now the identify function, returning the input style objects. Previously, it replaced styles with numeric ids. This improves compatibility with React Native, but accessing the returned style objects at runtime is still not recommended as it can prevent static extraction to CSS. (#2068)
  • StyleSheet.getSheet() can be used on the server to retrieve the current style sheet as a CSS string. (#2196)
  • I18nManager is now a mock API included only for compatibility with React Native. The ability to flip left/right properties or values has now been removed entirely (use start/end instead). See below for new localization APIs.
  • Inline styles are no longer automatically vendor-prefixed. This improves inline style performance and discourages use of inline styles. This should have little effect in practice if your app is predominantly using StyleSheet.create().
  • The deprecated accessible, accessibilityState, and accessibilityValue props have been removed.
  • The :focus-visible polyfill has been removed, as by default modern browsers no longer show focus rings for pointer interactions.
  • VirtualizedList, FlatList, and SectionList vendor components have been updated to match latest React Native. (#2241) Thanks to @​DavidRieman.
  • The legacy jest preset and snapshot serializer has been removed from the npm package.
  • The unstable_createElement API has changed. Children are no longer accepted as the 3rd argument, they must be included in the props as the 2nd argument. The 3rd argument is now an options object with a field to set the expected writing direction ({ writingDirection }).

New features

  • Localized LTR/RTL layouts can now be nesting to arbitrary depths simply by setting the dir or lang prop on a component. By default, layouts are rendering RTL. To render RTL you must set dir="rtl" on an outer element rendered by React.
  • Localized LTR/RTL layouts can be switched dynamically at runtime.
  • useLocaleContext is a new export API. Use it to query a component's locale and writing direction context for fine-grained control over localized layout.
  • Rendering into multiple windows and shadow roots in now supported. (#1517, #2138)
  • Extraction to static CSS and consumption of external CSS is now possible but not yet recommended. The StyleSheet runtime can consume any styles that match an expected format, but StyleSheet.flatten cannot work with extracted styles. (See below for more details.)

Fixes

  • Fixes static and dynamic shortform / longform deduplication. (#2007)
  • Display the focus ring on CheckBox and Switch elements. (#2242)
  • Prevent href navigation for disabled Pressables and Touchables. (#2299)
  • Linking.openURL supports target value. (#2277)

Notes

StyleSheet runtime

StyleSheet has been rewritten to better separate the runtime from the compiler. The performance of the new merging runtime is on par with using css-modules. The core runtime is a standalone package called styleQ; refer to the styleQ documentation for more details.

The performance of inline styles has also been significantly improved, although StyleSheet still has to perform extra work to transform non-standard React Native styles and polyfill logical styles.

The StyleSheet import is now a standalone module. StyleSheet itself is a function that can be called to resolve styles to DOM className and style values, e.g.,

const [ className, inlineStyle ] = StyleSheet([ styles.root, prop.styles ])

StyleSheet extraction

... (truncated)

Commits
  • dee258a 0.18.9
  • 9766fe6 [fix] Export useLocaleContext as default export
  • c764f96 [fix] Allow TextInput to dispatch 'submit' event
  • b6c8da8 Bump terser from 5.14.1 to 5.15.0
  • bd409f6 0.18.8
  • 290cae2 [fix] Image throws error if packager asset isn't resolved
  • 93b1d04 [fix] CheckBox supports readOnly on native control
  • 107c6ee [fix] Allow Pressable to be programmatically focused when disabled
  • 3fc40bd Fix README examples app url
  • bac3651 0.18.7
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by necolas, a new releaser for react-native-web since your current version.


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump node-fetch, expo, expo-updates and react-native-web
1d0c42d 
Bumps [node-fetch](https://github.com/node-fetch/node-fetch) to 2.6.7 and updates ancestor dependencies [node-fetch](https://github.com/node-fetch/node-fetch), [expo](https://github.com/expo/expo/tree/HEAD/packages/expo), [expo-updates](https://github.com/expo/expo/tree/HEAD/packages/expo-updates) and [react-native-web](https://github.com/necolas/react-native-web). These dependencies need to be updated together.


Updates `node-fetch` from 2.6.1 to 2.6.7
- [Release notes](https://github.com/node-fetch/node-fetch/releases)
- [Commits](node-fetch/node-fetch@v2.6.1...v2.6.7)

Updates `expo` from 41.0.1 to 46.0.16
- [Release notes](https://github.com/expo/expo/releases)
- [Changelog](https://github.com/expo/expo/blob/main/CHANGELOG.md)
- [Commits](https://github.com/expo/expo/commits/HEAD/packages/expo)

Updates `expo-updates` from 0.5.4 to 0.14.6
- [Release notes](https://github.com/expo/expo/releases)
- [Changelog](https://github.com/expo/expo/blob/main/CHANGELOG.md)
- [Commits](https://github.com/expo/expo/commits/HEAD/packages/expo-updates)

Updates `react-native-web` from 0.13.18 to 0.18.9
- [Release notes](https://github.com/necolas/react-native-web/releases)
- [Commits](necolas/react-native-web@0.13.18...0.18.9)

---
updated-dependencies:
- dependency-name: node-fetch
  dependency-type: indirect
- dependency-name: expo
  dependency-type: direct:production
- dependency-name: expo-updates
  dependency-type: direct:production
- dependency-name: react-native-web
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label Oct 21, 2022
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants