[Snyk] Security upgrade react-native from 0.42.3 to 0.69.12 by MHxGH-ServiceAccount · Pull Request #26 · moneyhub/react-native-webview-bridge

MHxGH-ServiceAccount · 2025-12-31T00:01:46Z

Snyk has created this PR to fix 1 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

examples/SampleRN42/package.json

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Allocation of Resources Without Limits or Throttling SNYK-JS-QS-14724253	170

Important

Check the changes in this PR to ensure they won't cause issues with your project.
Max score is 1000. Note that the real score may have changed since the PR was raised.
This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Allocation of Resources Without Limits or Throttling

Note

Updates dependency in the example app.

Upgrades react-native from 0.42.3 to 0.69.12 in examples/SampleRN42/package.json

^{Written by Cursor Bugbot for commit 22cf8e5. This will update automatically on new commits. Configure here.}

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-QS-14724253

MHxGH-ServiceAccount · 2025-12-31T00:01:57Z

⛔ Snyk checks have failed. 4 issues have been found so far.

Status	Scanner	Critical	High	Medium	Low	Total (4)
⛔	Open Source Security	0	4	0	0	4 issues
✅	Licenses	0	0	0	0	0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.

MHxGH-ServiceAccount · 2025-12-31T00:02:11Z

This is a massive upgrade across dozens of major versions, representing a fundamental architectural overhaul rather than a simple update. Migrating from version 0.42.3 will require a complete project refactor.

Key Breaking Changes:

Build System: The native dependency management system was completely changed. Manual linking with react-native link is removed and replaced by Autolinking, which requires using Cocoapods on iOS. [1, 2, 5]
AndroidX Migration: React Native 0.60 and later require AndroidX. All Android native code and dependencies must be migrated from the old Support Library. [2, 6]
Lean Core: Many core components and APIs (AsyncStorage, WebView, Slider, etc.) were removed from React Native and must now be installed from separate community packages (@react-native-community/*). [4, 22]
React 18 Support: Version 0.69 introduces support for React 18 and its new concurrent features, which may affect application behavior. [3, 20]

Source: React Native Release Notes
Recommendation: A direct upgrade is not feasible. This requires a staged migration, potentially by creating a new project on the target version and porting code over. Use the official React Native Upgrade Helper to assess the code-level changes between each major version.

Notice 🤖: This content was augmented using artificial intelligence. AI-generated content may contain errors and should be reviewed for accuracy before use.

cursor · 2025-12-31T00:03:41Z