Bump the npm_and_yarn group in /demoApp with 13 updates

[dependabot]

Bumps the npm_and_yarn group in /demoApp with 13 updates:

Package	From	To
react-native	0.60.5	0.69.12
@hapi/hoek	8.2.4	9.3.0
ansi-regex	2.1.1	3.0.0
kind-of	1.1.0	3.2.2
logkitty	0.6.0	0.7.1
minimatch	3.0.4	3.1.2
node-fetch	1.7.3	2.6.0
react-devtools-core	3.6.3	4.24.0
serve-static	1.14.1	1.16.2
shell-quote	1.6.1	1.7.2
ws	1.1.5	5.2.2
y18n	3.2.2	4.0.0
yargs-parser	7.0.0	13.1.1

Updates react-native from 0.60.5 to 0.69.12

Release notes

Sourced from react-native's releases.

0.69.12

Changed

• [0.69] Bump CLI to ^8.0.7, Metro to 0.70.4 (56807fadfa by @​robhogan)

iOS specific

• [0.69] Use Content-Location header in bundle response as JS source URL (#37501) (367fc7ad52 by @​robhogan)

Fixed

Android specific

• Prevent crash in runAnimationStep on OnePlus and Oppo devices (#37487) (4db7a10e25 by @​hsource)

---

0.69.12 is the latest patch the Release Crew will prepare for version 0.69. You can have a look at the latest discussion.

---

To help you upgrade to this version, you can use the upgrade helper ⚛️

---

You can find the whole changelog history in the changelog.md file.

0.69.11

Fixed

iOS specific

• Make 0.69 compatible with Xcode 15 (thanks to @​AlexanderEggers for the commit in main) (37e8df1cdc)

---

You can participate in the conversation on the status of this release in this discussion.

---

To help you upgrade to this version, you can use the upgrade helper ⚛️

---

You can find the whole changelog history in the changelog.md file.

0.69.10

This release is primarily aimed at addressing issues with ANRs using multiline TextInput on Samsung devices (facebook/react-native#35936, facebook/react-native#35590).

Fixed

Android specific

... (truncated)

Changelog

Sourced from react-native's changelog.

v0.69.12

Changed

• [0.69] Bump CLI to ^8.0.7, Metro to 0.70.4 (56807fadfa by @​robhogan)

iOS specific

• [0.69] Use Content-Location header in bundle response as JS source URL (#37501) (367fc7ad52 by @​robhogan)

Fixed

Android specific

• Prevent crash in runAnimationStep on OnePlus and Oppo devices (#37487) (4db7a10e25 by @​hsource)

v0.69.11

Fixed

iOS specific

• Make 0.69 compatible with Xcode 15 (thanks to @​AlexanderEggers for the commit in main) (37e8df1cdc)

v0.69.10

Fixed

Android specific

• Minimize EditText Spans 8/N: CustomStyleSpan (b384bb613b by @​NickGerleman)
• Minimize EditText Spans 6/N: letterSpacing (5791cf1f7b by @​NickGerleman)
• Minimize Spans 5/N: Strikethrough and Underline (0869ea29db by @​NickGerleman)
• Minimize Spans 4/N: ReactForegroundColorSpan (8c9c8ba5ad by @​NickGerleman)
• Minimize Spans 3/N: ReactBackgroundColorSpan (cc0ba57ea4 by @​NickGerleman)
• Minimize Spans 1/N: Fix precedence (1743dd7ab4 by @​NickGerleman)
• Fix measurement of uncontrolled TextInput after edit (8a0fe30591 by @​NickGerleman)

v0.69.9

Changed

iOS specific

• Relax Ruby requirements (4e015c69d6 by @​cipolleschi)

Fixed

iOS specific

• Fix React Codegen podspec to build on Xcode 14.3 (74ba411b55 by @​cipolleschi)
• Blob data is no longer prematurely deallocated when using blob.slice (36cc71ab36 by @​awinograd)

... (truncated)

Commits

• See full diff in compare view

Maintainer changes

This version was pushed to npm by react-native-bot, a new releaser for react-native since your current version.

Updates @hapi/hoek from 8.2.4 to 9.3.0

Commits

• 24467c9 9.3.0
• 71250a0 Handle very long waits (#373)
• 3964633 Cleanup (#372)
• e3210f2 add dispatcher and use shared config
• 8b57d38 Fix Hoek.reach() docs formatting issue (#376)
• 0d61497 9.2.1
• 82504b7 Fix reach template regex for timing (#371)
• 4c05eee Update reach template documentation (#370)
• fcc7ba6 add IDE linting
• 7ff448e 9.2.0
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by devinivy, a new releaser for @​hapi/hoek since your current version.

Updates ansi-regex from 2.1.1 to 3.0.0

Commits

• 0a8cc19 3.0.0
• d9d806e Minor tweaks
• 69bebf6 Support urxvt escapes (#13)
• 3dff5e7 Use Map instead of Object for the fixtures
• baacbab Require Node.js 4 and meta tweaks
• See full diff in compare view

Updates kind-of from 1.1.0 to 3.2.2

Changelog

Sourced from kind-of's changelog.

[3.2.2] - 2017-05-16

• fix version

[3.2.1] - 2017-05-16

• add browserify

[3.2.0] - 2017-04-25

• Merge pull request #10 from ksheedlo/unrequire-buffer
• add promise support and tests
• Remove unnecessary Buffer check

[3.1.0] - 2016-12-07

• Merge pull request #7 from laggingreflex/err
• add support for error and tests
• run update

[3.0.4] - 2016-07-29

• move tests
• run update

[3.0.3] - 2016-05-03

• fix prepublish script
• remove unused dep

[3.0.0] - 2015-11-17

• add typed array support
• Merge pull request #5 from miguelmota/typed-arrays
• adds new tests

[2.0.1] - 2015-08-21

• use is-buffer module

[2.0.0] - 2015-05-31

• Create fallback for Array.isArray if used as a browser package
• Merge pull request #2 from dtothefp/patch-1
• Merge pull request #3 from pdehaan/patch-1
• Merge branch 'master' of https://github.com/chorks/kind-of into chorks-master
• optimizations, mostly date and regex

Commits

• 0ffe67c 3.2.2
• 19fa8ab fix version
• 2ccb4ed 3.2.1
• deba378 3.2.1
• 5bfd67b add browserify
• 9c94237 3.2.0
• c9c3f09 run verb
• ddeacd6 run update
• 10265f9 Merge pull request #10 from ksheedlo/unrequire-buffer
• 0cfb70e Remove unnecessary typeof Buffer check
• Additional commits viewable in compare view

Updates logkitty from 0.6.0 to 0.7.1

Release notes

Sourced from logkitty's releases.

logkitty 0.7.1

Changelog

• huntr - Command Injection Fix (#18)
• chore(deps): bump acorn from 5.7.3 to 5.7.4 (#15)

logkitty 0.7.0

Changelog

• chore: update dependencies (2776322da88e8bd40ee9ec59805c75b2c490cd0c)
• chore: update yargs versions (#14)
• chore: remove package-lock.json (#11)

logkitty 0.6.1

Changelog

• fix: custom path to adb (#7)
• fix: logkitty on windows (#8)

Commits

• 6ce971d v0.7.1
• ef2f673 huntr - Command Injection Fix (#18)
• e1e2296 chore(deps): bump acorn from 5.7.3 to 5.7.4 (#15)
• cf2cf28 v0.7.0
• 2776322 chore: update dependencies
• 4fa8f6c chore: update yargs versions (#14)
• bddbacf chore: remove package-lock.json (#11)
• c0a2085 v0.6.1
• 36522cb fix: windows (#8)
• 73bb505 Implement custom path to adb (#7)
• Additional commits viewable in compare view

Updates minimatch from 3.0.4 to 3.1.2

Commits

• 699c459 3.1.2
• 2f2b5ff fix: trim pattern
• 25d7c0d 3.1.1
• 55dda29 fix: treat nocase:true as always having magic
• 5e1fb8d 3.1.0
• f8145c5 Add 'allowWindowsEscape' option
• 570e8b1 add publishConfig for v3 publishes
• 5b7cd33 3.0.6
• 20b4b56 [fix] revert all breaking syntax changes
• 2ff0388 document, expose, and test 'partial:true' option
• Additional commits viewable in compare view

Updates node-fetch from 1.7.3 to 2.6.0

Release notes

Sourced from node-fetch's releases.

v2.6.0

See CHANGELOG.

v2.5.0

See CHANGELOG.

v2.4.1

See CHANGELOG.

v2.4.0

See CHANGELOG.

v2.3.0

See CHANGELOG.

v2.2.1

See CHANGELOG.

Version 2.1.2

• Fix: allow Body methods to work on ArrayBuffer-backed Body` objects
• Fix: reject promise returned by Body methods when the accumulated Buffer exceeds the maximum size
• Fix: support custom Host headers with any casing
• Fix: support importing fetch() from TypeScript in browser.js
• Fix: handle the redirect response body properly

See CHANGELOG.

Version 2.1.1

See CHANGELOG.

Fix packaging errors in version 2.1.0.

Version 2.1.0

See CHANGELOG:

• Enhance: allow using ArrayBuffer as the body of a fetch() or Request
• Fix: store HTTP headers of a Headers object internally with the given case, for compatibility with older servers that incorrectly treated header names in a case-sensitive manner
• Fix: silently ignore invalid HTTP headers
• Fix: handle HTTP redirect responses without a Location header just like non-redirect responses
• Fix: include bodies when following a redirection when appropriate

Version 2.0.0

This is a major release. See upgrade guide on how to upgrade from v1.x, and the changelog for all changes.

v2.0.0-alpha.9

see changelog for details

v2.0.0-alpha.8

see changelog for details

... (truncated)

Changelog

Sourced from node-fetch's changelog.

v2.6.0

• Enhance: options.agent, it now accepts a function that returns custom http(s).Agent instance based on current URL, see readme for more information.
• Fix: incorrect Content-Length was returned for stream body in 2.5.0 release; note that node-fetch doesn't calculate content length for stream body.
• Fix: Response.url should return empty string instead of null by default.

v2.5.0

• Enhance: Response object now includes redirected property.
• Enhance: fetch() now accepts third-party Blob implementation as body.
• Other: disable package-lock.json generation as we never commit them.
• Other: dev dependency update.
• Other: readme update.

v2.4.1

• Fix: Blob import rule for node < 10, as Readable isn't a named export.

v2.4.0

• Enhance: added Brotli compression support (using node's zlib).
• Enhance: updated Blob implementation per spec.
• Fix: set content type automatically for URLSearchParams.
• Fix: Headers now reject empty header names.
• Fix: test cases, as node 12+ no longer accepts invalid header response.

v2.3.0

• Enhance: added AbortSignal support, with README example.
• Enhance: handle invalid Location header during redirect by rejecting them explicitly with FetchError.
• Fix: update browser.js to support react-native environment, where self isn't available globally.

v2.2.1

• Fix: compress flag shouldn't overwrite existing Accept-Encoding header.
• Fix: multiple import rules, where PassThrough etc. doesn't have a named export when using node <10 and --exerimental-modules flag.
• Other: Better README.

v2.2.0

• Enhance: Support all ArrayBuffer view types
• Enhance: Support Web Workers
• Enhance: Support Node.js' --experimental-modules mode; deprecate .es.js file
• Fix: Add __esModule property to the exports object
• Other: Better example in README for writing response to a file
• Other: More tests for Agent

v2.1.2

• Fix: allow Body methods to work on ArrayBuffer-backed Body objects

... (truncated)

Commits

• 95286f5 v2.6.0 (#638)
• bf8b4e8 Allow agent option to be a function (#632)
• 0c2294e 2.5.0 release (#630)
• 0fc414c Allow third party blob implementation (#629)
• d8f5ba0 build: disable generation of package-lock since it is not used (#623)
• 1fe1358 test: enable --throw-deprecation for tests (#625)
• a35dcd1 chore(deps): address deprecated url-search-params package (#622)
• b3ecba5 2.4.1 release (#619)
• 1a88481 Fix Blob for older node versions and webpack. (#618)
• c9805a2 2.4.0 release (#616)
• Additional commits viewable in compare view

Updates react-devtools-core from 3.6.3 to 4.24.0

Commits

• See full diff in compare view

Updates serve-static from 1.14.1 to 1.16.2

Release notes

Sourced from serve-static's releases.

1.16.0

What's Changed

• Remove link renderization in html while redirecting (expressjs/serve-static#173)

New Contributors

• @​UlisesGascon made their first contribution in expressjs/serve-static#173

Full Changelog: expressjs/serve-static@v1.15.0...1.16.0

1.15.0

• deps: send@0.18.0
  • Fix emitted 416 error missing headers property
  • Limit the headers removed for 304 response
  • deps: depd@2.0.0
  • deps: destroy@1.2.0
  • deps: http-errors@2.0.0
  • deps: on-finished@2.4.1
  • deps: statuses@2.0.1

1.14.2

• deps: send@0.17.2
  • deps: http-errors@1.8.1
  • deps: ms@2.1.3
  • pref: ignore empty http tokens

Changelog

Sourced from serve-static's changelog.

1.16.2 / 2024-09-11

• deps: encodeurl@~2.0.0

1.16.1 / 2024-09-11

• deps: send@0.19.0

1.16.0 / 2024-09-10

• Remove link renderization in html while redirecting

1.15.0 / 2022-03-24

• deps: send@0.18.0
  • Fix emitted 416 error missing headers property
  • Limit the headers removed for 304 response
  • deps: depd@2.0.0
  • deps: destroy@1.2.0
  • deps: http-errors@2.0.0
  • deps: on-finished@2.4.1
  • deps: statuses@2.0.1

1.14.2 / 2021-12-15

• deps: send@0.17.2
  • deps: http-errors@1.8.1
  • deps: ms@2.1.3
  • pref: ignore empty http tokens

Commits

• ec9c5ec 1.16.2
• f454d37 fix(deps): encodeurl@~2.0.0
• 77a8255 1.16.1
• 4263f49 fix(deps): send@0.19.0
• 48c7397 1.16.0
• 0c11fad Merge commit from fork
• 9b5a12a 1.15.0
• a39a0df docs: update CI link
• d702ea2 build: Node.js@17.8
• ff1510a deps: send@0.18.0
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by wesleytodd, a new releaser for serve-static since your current version.

Updates shell-quote from 1.6.1 to 1.7.2

Changelog

Sourced from shell-quote's changelog.

v1.7.2 - 2019-08-30

• Fix a regression introduced in 1.6.3. This reverts the Windows path quoting fix. (144e1c2)

v1.7.1 - 2019-08-13

• Fix $ being removed when not part of an environment variable name. (@​Adman in #32)

v1.7.0 - 2019-08-13

• Add support for parsing >> and >& redirection operators. (@​forivall in #16)
• Add support for parsing <( process substitution operator. (@​cuonglm in #15)

v1.6.3 - 2019-08-13

• Fix Windows path quoting problems. (@​dy in #34)

v1.6.2 - 2019-08-13

Merged

• Use native JSON and Array methods [#21](https://github.com/ljharb/shell-quote/issues/21)

Commits

• fix whitespace 72fb5a8
• Disable package-lock.json d450577

Commits

• 89a1993 1.7.2
• df7e4c7 add test for #37
• 144e1c2 revert windows path unescaping, fixes #37
• c24f3aa ci: nvs does not have iojs
• c2950fb 1.7.1
• 8f6a1cc fix: do not remove $ when env variable not found (#32)
• 8b70a68 add tests
• faaa452 Merge branch 'master' of github.com:Adman/node-shell-quote into Adman-master
• 729a5a8 fix: updated parsing non existing var
• 79f2932 Merge branch 'master' into Adman-master
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by goto-bus-stop, a new releaser for shell-quote since your current version.

Updates ws from 1.1.5 to 5.2.2

Release notes

Sourced from ws's releases.

5.2.2

Bug fixes

• Fixed a use after invalidation bug introduced in 6046a28 (8aba871).

5.2.1

Bug fixes

• Fixed a bug that could prevent buffered data from being processed under certain circumstances (6046a28).

5.2.0

Features

• Added ability to specify custom headers when rejecting the handshake (#1379).

5.1.1

Bug fixes

• Fixed a regression introduced in 9e152f9 (#1347).

5.1.0

Features

• The address argument of the WebSocket constructor can now be a URL instance (#1329).
• The options argument of the WebSocket constructor now accepts any TLS option that is also accepted by https.request() (#1332).

5.0.0

Breaking changes

• Dropped support for Node.js < 4.5.0 (#1313).
• The connection is no longer closed if the server does not agree to any of the client's requested subprotocols (#1312).
• net.Socket errors are no longer re-emitted (a4050db).

Features

• Read backpressure is now properly handled when permessage-deflate is enabled (#1302).

4.1.0

Features

• Added WebSocketServer.prototype.address() (#1294).
• Added zlib{Deflate,Inflate}Options options (#1306).

... (truncated)

Commits

• 5d55e52 [dist] 5.2.2
• 8aba871 [fix] Fix use after invalidation bug
• 175ce46 [dist] 5.2.1
• 307be7a [fix] Remove the 'data' listener when the receiver emits an error
• 6046a28 [fix] Do not prematurely remove the listener of the 'data' event
• bf9b2ec chore(package): update nyc to version 12.0.2 (#1395)
• bcab531 chore(package): update eslint-plugin-promise to version 3.8.0 (#1389)
• e4d032c [dist] 5.2.0
• e7bfe5f chore(package): update mocha to version 5.2.0 (#1385)
• 6dae94b chore(package): update eslint-plugin-import to version 2.12.0 (#1384)
• Additional commits viewable in compare view

Updates y18n from 3.2.2 to 4.0.0

Release notes

Sourced from y18n's releases.

y18n y18n-v4.0.3

Bug Fixes

• release: 4.x.x should not enforce Node 10 (#126) (1e21a53)

y18n y18n-v4.0.2

Bug Fixes

• security: ensure entry exists for backport (#120) (b22c0df)

Changelog

Sourced from y18n's changelog.

4.0.0 (2017-10-10)

Bug Fixes

• allow support for falsy values like 0 in tagged literal (#45) (c926123)

Features

• __: added tagged template literal support (#44) (0598daf)

BREAKING CHANGES

• __: dropping Node 0.10/Node 0.12 support

Commits

• See full diff in compare view

Updates yargs-parser from 7.0.0 to 13.1.1

Changelog

Sourced from yargs-parser's changelog.

13.1.1 (2019-06-10)

Bug Fixes

• convert values to strings when tokenizing (#167) (57b7883)
• nargs should allow duplicates when duplicate-arguments-array=false (#164) (47ccb0b)
• should populate "_" when given config with "short-option-groups" false (#179) (6055974)

13.1.0 (2019-05-05)

Features

• add strip-aliased and strip-dashed configuration options. (#172) (a3936aa)
• support boolean which do not consume next argument. (#171) (0ae7fcb)

13.0.0 (2019-02-02)

Features

• don't coerce number from string with leading '0' or '+' (#158) (18d0fd5)

BREAKING CHANGES

• options with leading '+' or '0' now parse as strings

12.0.0 (2019-01-29)

Bug Fixes

• better handling of quoted strings (#153) (2fb71b2)

Features

• default value is now used if no right-hand value provided for numbers/strings (#156) (5a7c46a)

BREAKING CHANGES

... (truncated)

Commits

• 7e01a2c chore: release 13.1.1 (#183)
• 47ccb0b fix: nargs should allow duplicates when duplicate-arguments-array=false (#164)
• 57b7883 fix: convert values to strings when tokenizing (#167)
• 6055974 fix: should populate "_" when given config with "short-option-groups" false (...
• 7f33140 docs: add description of "opts.configObjects" (#178)
• 981e151 refactor: remove duplicate check for args[i] in tokenize-arg-string.js (#175)
• 69ddfed chore(release): 13.1.0
• 89aa3cd chore: update dev deps
• b1012f8 docs: fix example halt-at-non-option (#165)
• a3936aa feat: add strip-aliased and strip-dashed configuration options. (#172)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
  You can disable automated security fix PRs for this repo from the Security Alerts page.