[Snyk] Upgrade realm from 12.4.0 to 12.5.0 #71
Merged
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to upgrade realm from 12.4.0 to 12.5.0.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
Release notes
Package name: realm
Enhancements
keyPaths
argument to theaddListener
methods ofCollection
andObject
. Use this to indicate a lower bound on the changes relevant for the listener. This is a lower bound, since if multiple listeners are added (each with their own "key paths") the union of these key-paths will determine the changes that are considered relevant for all listeners registered on the object or collection. In other words: A listener might fire more than the key-paths specify, if other listeners with different key-paths are present. (#6285)Fixed
!m_sess
assertion. (realm/realm-core#7196, since v10.18.0)SyncSession
was explicitly resumed viareconnect()
while it was waiting to auto-resume after a non-fatal error and then another non-fatal error was received, the sync client could crash with a!m_try_again_activation_timer
assertion. (realm/realm-core#6961, since device sync was introduced)Collection
orObject
used to be undefined behavior. Now it throws, which results in runtime errors that can be resolved by ensuring that the callback is only added once per object. (#6310)Compatibility
Internal
Enhancements
RealmEventName
type. (#6300)Realm.Object
andRealm.Collection
objects on Node.js, by providing a custom "inspect" symbol. (#2758)Fixed
When mapTo is used on a property of type List, an error like
Property 'test_list' does not exist on 'Task' objects
occurs when trying to access the property. (#6268, since v12.0.0)Fixed bug where apps running under JavaScriptCore on Android will terminate with the error message
No identifiers allowed directly after numeric literal
. (#6194, since v12.2.0)When an object had an embedded object as one of its properties, updating that property to
null
orundefined
did not update the property in the database. (#6280, since v12.0.0)Fixed download of platform + arch specific prebuilt binaries when building an Electron app using
electron-builder
. (#3828)Fixed deadlock which occurred when accessing the current user from the
App
from within a callback from theUser
listener. (realm/realm-core#7183, since v12.2.1)Errors encountered while reapplying local changes for client reset recovery on partition-based sync Realms would result in the client reset attempt not being recorded, possibly resulting in an endless loop of attempting and failing to automatically recover the client reset. Flexible sync and errors from the server after completing the local recovery were handled correctly. (realm/realm-core#7149, since v10.3.0-rc.1)
During a client reset with recovery when recovering a move or set operation on a
List<Object>
orList<Mixed>
that operated on indices that were not also added in the recovery, links to an object which had been deleted by another client while offline would be recreated by the recovering client. But the objects of these links would only have the primary key populated and all other fields would be default values. Now, instead of creating these zombie objects, the lists being recovered skip such deleted links. (realm/realm-core#7112 since the beginning of client reset with recovery in v10.18.0)During a client reset recovery a Set of links could be missing items, or an exception could be thrown that prevents recovery e.g.,
Requested index 1 calling get() on set 'source.collection' when max is 0
. (realm/realm-core#7112, since the beginning of client reset with recovery in v10.18.0)Calling
sort()
ordistinct()
on aLnkSet
that had unresolved links in it would produce duplicate indices. (realm/realm-core#7112, since the beginning of client reset with recovery in v10.18.0)Automatic client reset recovery would duplicate insertions in a list when recovering a write which made an unrecoverable change to a list (i.e. modifying or deleting a pre-existing entry), followed by a subscription change, followed by a write which added an entry to the list. (realm/realm-core#7155, since v10.19.4)
Fixed several causes of "decryption failed" exceptions that could happen when opening multiple encrypted Realm files in the same process while using Apple/linux and storing the Realms on an exFAT file system. (realm/realm-core#7156, since v1.0.0)
If the very first open of a flexible sync Realm triggered a client reset, the configuration had an initial subscriptions callback, both before and after reset callbacks, and the initial subscription callback began a read transaction without ending it (which is normally going to be the case), opening the frozen Realm for the after reset callback would trigger a BadVersion exception. (realm/realm-core#7161, since v10.19.4)
Compatibility
Internal
Commit messages
Package name: realm
Compare
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:![](https://camo.githubusercontent.com/d54898a55d19a28fb62fe3bd75d70c742c97d90c1b62885f3d278a3ad8539f70/68747470733a2f2f6170692e7365676d656e742e696f2f76312f706978656c2f747261636b3f646174613d65794a33636d6c305a55746c65534936496e4a79576d785a634564485932527954485a7362306c596430645563566734576b4652546e4e434f5545774969776959573576626e6c746233567a535751694f6949784f54497a4e6d49344f53316a5a6a67314c5451794f446b744f575a685969316d5a544d794d7a646d596a41785a6a55694c434a6c646d567564434936496c425349485a705a58646c5a434973496e42796233426c636e52705a584d694f6e736963484a4a5a434936496a45354d6a4d32596a67354c574e6d4f4455744e4449344f5330355a6d46694c575a6c4d7a497a4e325a694d44466d4e534a3966513d3d)
🧐 View latest project report
🛠 Adjust upgrade PR settings
🔕 Ignore this dependency or unsubscribe from future upgrade PRs