[Snyk] Security upgrade react-native from 0.63.2 to 0.69.12

[revan-zhang]

Snyk has created this PR to fix 1 vulnerabilities in the yarn dependencies of this project.

Snyk changed the following file(s):

• Example/package.json
• Example/yarn.lock

Note for zero-installs users

If you are using the Yarn feature zero-installs that was introduced in Yarn V2, note that this PR does not update the .yarn/cache/ directory meaning this code cannot be pulled and immediately developed on as one would expect for a zero-install project - you will need to run yarn to update the contents of the ./yarn/cache directory.
If you are not using zero-install you can ignore this as your flow should likely be unchanged.

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Infinite loop SNYK-JS-BRACEEXPANSION-15789759	555

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.

---

---

Note

Medium Risk
Upgrading react-native from 0.63.2 to 0.69.12 can introduce breaking native/build changes and requires careful regression testing on iOS/Android, even though the code diff is dependency-only.

Overview
Upgrades the Example app’s react-native dependency from 0.63.2 to 0.69.12 to address a Snyk-reported vulnerability in the dependency tree.

Updates the Yarn lockfile to the new react-native and transitive dependency set.

^{Written by Cursor Bugbot for commit 3c3c5bc. This will update automatically on new commits. Configure here.}

[revan-zhang]

⛔ Snyk checks have failed. 5 issues have been found so far.

Status	Scan Engine	Critical	High	Medium	Low	Total (5)
⛔	Open Source Security	0	3	2	0	5 issues
✅	Licenses	0	0	0	0	0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	react-native@​0.63.2 ⏵ 0.69.12	+1	+16		+50

View full report

[cursor]

Cursor Bugbot has reviewed your changes and found 1 potential issue.

^{Bugbot Autofix is OFF. To automatically fix reported issues with cloud agents, enable autofix in the Cursor dashboard.}

[cursor]

React 16 incompatible with React Native 0.69

High Severity

Upgrading react-native to 0.69.12 while keeping react pinned at 16.13.1 creates a broken dependency combination. React Native 0.69 requires React 18.0.0 as a peer dependency. This version mismatch will cause build failures or runtime crashes in the Example app.

Additional Locations (1)

• Example/package.json#L16-L17

 

[devin-ai-integration]

✅ Devin Review: No Issues Found

Devin Review analyzed this PR and found no potential bugs to report.

View in Devin Review to see 1 additional finding.