Bumps [ip](https://github.com/indutny/node-ip) from 1.1.5 to 1.1.9.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="1ecbf2fd8c"><code>1ecbf2f</code></a>
1.1.9</li>
<li><a
href="6a3ada9b47"><code>6a3ada9</code></a>
lib: fixed CVE-2023-42282 and added unit test</li>
<li><a
href="5dc3b2f3f4"><code>5dc3b2f</code></a>
1.1.8</li>
<li><a
href="8e6f28b23a"><code>8e6f28b</code></a>
lib: even better node 6 support</li>
<li><a
href="088c9e5664"><code>088c9e5</code></a>
1.1.7</li>
<li><a
href="1a4ca35ddc"><code>1a4ca35</code></a>
lib: add back support for Node.js 6</li>
<li><a
href="af82ef42ad"><code>af82ef4</code></a>
1.1.6</li>
<li><a
href="dba19f6c0c"><code>dba19f6</code></a>
package: exclude test folder from publishing</li>
<li><a
href="7cd7f30991"><code>7cd7f30</code></a>
ci: use github workflows</li>
<li><a
href="4de50aec87"><code>4de50ae</code></a>
lib: node 18 support</li>
<li>See full diff in <a
href="https://github.com/indutny/node-ip/compare/v1.1.5...v1.1.9">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/microsoft/react-native-xaml/network/alerts).
</details>
###### Microsoft Reviewers: [Open in
CodeFlow](https://microsoft.github.io/open-pr/?codeflow=https://github.com/microsoft/react-native-xaml/pull/278)
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse)
from 7.20.13 to 7.23.9.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/babel/babel/releases"><code>@babel/traverse</code>'s
releases</a>.</em></p>
<blockquote>
<h2>v7.23.9 (2024-01-25)</h2>
<h4>🐛 Bug Fix</h4>
<ul>
<li><code>babel-helper-transform-fixture-test-runner</code>,
<code>babel-plugin-transform-function-name</code>,
<code>babel-plugin-transform-modules-systemjs</code>,
<code>babel-preset-env</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16225">#16225</a>
fix: <code>systemjs</code> re-traverses helpers (<a
href="https://github.com/liuxingbaoyu"><code>@liuxingbaoyu</code></a>)</li>
</ul>
</li>
<li><code>babel-helper-create-class-features-plugin</code>,
<code>babel-plugin-proposal-decorators</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16226">#16226</a>
Improve decorated private method check (<a
href="https://github.com/JLHwung"><code>@JLHwung</code></a>)</li>
</ul>
</li>
<li><code>babel-plugin-proposal-decorators</code>,
<code>babel-plugin-transform-async-generator-functions</code>,
<code>babel-plugin-transform-runtime</code>,
<code>babel-preset-env</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16224">#16224</a>
Properly sort <code>core-js@3</code> imports (<a
href="https://github.com/nicolo-ribaudo"><code>@nicolo-ribaudo</code></a>)</li>
</ul>
</li>
<li><code>babel-traverse</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/15383">#15383</a>
fix: Don't throw in <code>getTypeAnnotation</code> when using
TS+inference (<a
href="https://github.com/liuxingbaoyu"><code>@liuxingbaoyu</code></a>)</li>
</ul>
</li>
<li>Other
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16210">#16210</a>
[eslint] Fix <code>no-use-before-define</code> for class ref in fields
(<a
href="https://github.com/nicolo-ribaudo"><code>@nicolo-ribaudo</code></a>)</li>
</ul>
</li>
</ul>
<h4>🏠 Internal</h4>
<ul>
<li><code>babel-core</code>, <code>babel-parser</code>,
<code>babel-template</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16222">#16222</a>
Migrate <code>eslint-parser</code> to cts (<a
href="https://github.com/liuxingbaoyu"><code>@liuxingbaoyu</code></a>)</li>
</ul>
</li>
<li><code>babel-types</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16213">#16213</a>
Remove <code>@babel/types</code> props that are not produced by the
parser (<a
href="https://github.com/liuxingbaoyu"><code>@liuxingbaoyu</code></a>)</li>
</ul>
</li>
</ul>
<h4>🏃♀️ Performance</h4>
<ul>
<li><code>babel-parser</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16072">#16072</a>
perf: Improve parser performance for typescript (<a
href="https://github.com/liuxingbaoyu"><code>@liuxingbaoyu</code></a>)</li>
</ul>
</li>
</ul>
<h4>🔬 Output optimization</h4>
<ul>
<li><code>babel-helper-create-class-features-plugin</code>,
<code>babel-plugin-proposal-decorators</code>,
<code>babel-plugin-proposal-destructuring-private</code>,
<code>babel-plugin-proposal-pipeline-operator</code>,
<code>babel-plugin-transform-class-properties</code>,
<code>babel-plugin-transform-class-static-block</code>,
<code>babel-plugin-transform-new-target</code>,
<code>babel-plugin-transform-parameters</code>,
<code>babel-plugin-transform-private-methods</code>,
<code>babel-preset-env</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16218">#16218</a>
Improve temporary variables for decorators (<a
href="https://github.com/liuxingbaoyu"><code>@liuxingbaoyu</code></a>)</li>
</ul>
</li>
<li><code>babel-helpers</code>,
<code>babel-plugin-proposal-explicit-resource-management</code>,
<code>babel-runtime-corejs2</code>, <code>babel-runtime-corejs3</code>,
<code>babel-runtime</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/15959">#15959</a>
Improve output of <code>using</code> (<a
href="https://github.com/liuxingbaoyu"><code>@liuxingbaoyu</code></a>)</li>
</ul>
</li>
</ul>
<h4>Committers: 4</h4>
<ul>
<li>Babel Bot (<a
href="https://github.com/babel-bot"><code>@babel-bot</code></a>)</li>
<li>Huáng Jùnliàng (<a
href="https://github.com/JLHwung"><code>@JLHwung</code></a>)</li>
<li>Nicolò Ribaudo (<a
href="https://github.com/nicolo-ribaudo"><code>@nicolo-ribaudo</code></a>)</li>
<li><a
href="https://github.com/liuxingbaoyu"><code>@liuxingbaoyu</code></a></li>
</ul>
<h2>v7.23.8 (2024-01-08)</h2>
<h4>🐛 Bug Fix</h4>
<ul>
<li><code>babel-preset-env</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16181">#16181</a>
fix: <code>preset-env</code> throws exception for <code>export * as
x</code> (<a
href="https://github.com/liuxingbaoyu"><code>@liuxingbaoyu</code></a>)</li>
</ul>
</li>
<li><code>babel-helpers</code>,
<code>babel-plugin-proposal-decorators</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16201">#16201</a>
fix: decorator binds <code>getter/setter</code> to
<code>ctx.access</code> for public fields (<a
href="https://github.com/liuxingbaoyu"><code>@liuxingbaoyu</code></a>)</li>
<li><a
href="https://redirect.github.com/babel/babel/pull/16199">#16199</a>
fix: Class decorator correctly passes return value (<a
href="https://github.com/liuxingbaoyu"><code>@liuxingbaoyu</code></a>)</li>
</ul>
</li>
</ul>
<h4>↩️ Revert</h4>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16202">#16202</a>
Revert "chore: Update artifact tools (<a
href="https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/16184">#16184</a>)"
(<a href="https://github.com/JLHwung"><code>@JLHwung</code></a>)</li>
</ul>
<h4>🔬 Output optimization</h4>
<ul>
<li><code>babel-helpers</code>,
<code>babel-plugin-proposal-decorators</code>,
<code>babel-plugin-transform-class-properties</code>,
<code>babel-plugin-transform-classes</code>,
<code>babel-plugin-transform-function-name</code>,
<code>babel-plugin-transform-parameters</code>,
<code>babel-plugin-transform-react-jsx</code>,
<code>babel-plugin-transform-runtime</code>,
<code>babel-plugin-transform-spread</code>,
<code>babel-plugin-transform-typescript</code>,
<code>babel-preset-env</code>, <code>babel-runtime-corejs2</code>,
<code>babel-runtime-corejs3</code>, <code>babel-runtime</code></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/babel/babel/blob/main/CHANGELOG.md"><code>@babel/traverse</code>'s
changelog</a>.</em></p>
<blockquote>
<h2>v7.23.9 (2024-01-25)</h2>
<h4>🐛 Bug Fix</h4>
<ul>
<li><code>babel-helper-transform-fixture-test-runner</code>,
<code>babel-plugin-transform-function-name</code>,
<code>babel-plugin-transform-modules-systemjs</code>,
<code>babel-preset-env</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16225">#16225</a>
fix: <code>systemjs</code> re-traverses helpers (<a
href="https://github.com/liuxingbaoyu"><code>@liuxingbaoyu</code></a>)</li>
</ul>
</li>
<li><code>babel-helper-create-class-features-plugin</code>,
<code>babel-plugin-proposal-decorators</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16226">#16226</a>
Improve decorated private method check (<a
href="https://github.com/JLHwung"><code>@JLHwung</code></a>)</li>
</ul>
</li>
<li><code>babel-plugin-proposal-decorators</code>,
<code>babel-plugin-transform-async-generator-functions</code>,
<code>babel-plugin-transform-runtime</code>,
<code>babel-preset-env</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16224">#16224</a>
Properly sort <code>core-js@3</code> imports (<a
href="https://github.com/nicolo-ribaudo"><code>@nicolo-ribaudo</code></a>)</li>
</ul>
</li>
<li><code>babel-traverse</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/15383">#15383</a>
fix: Don't throw in <code>getTypeAnnotation</code> when using
TS+inference (<a
href="https://github.com/liuxingbaoyu"><code>@liuxingbaoyu</code></a>)</li>
</ul>
</li>
<li>Other
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16210">#16210</a>
[eslint] Fix <code>no-use-before-define</code> for class ref in fields
(<a
href="https://github.com/nicolo-ribaudo"><code>@nicolo-ribaudo</code></a>)</li>
</ul>
</li>
</ul>
<h4>🏠 Internal</h4>
<ul>
<li><code>babel-core</code>, <code>babel-parser</code>,
<code>babel-template</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16222">#16222</a>
Migrate <code>eslint-parser</code> to cts (<a
href="https://github.com/liuxingbaoyu"><code>@liuxingbaoyu</code></a>)</li>
</ul>
</li>
<li><code>babel-types</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16213">#16213</a>
Remove <code>@babel/types</code> props that are not produced by the
parser (<a
href="https://github.com/liuxingbaoyu"><code>@liuxingbaoyu</code></a>)</li>
</ul>
</li>
</ul>
<h4>🏃♀️ Performance</h4>
<ul>
<li><code>babel-parser</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16072">#16072</a>
perf: Improve parser performance for typescript (<a
href="https://github.com/liuxingbaoyu"><code>@liuxingbaoyu</code></a>)</li>
</ul>
</li>
</ul>
<h4>🔬 Output optimization</h4>
<ul>
<li><code>babel-helper-create-class-features-plugin</code>,
<code>babel-plugin-proposal-decorators</code>,
<code>babel-plugin-proposal-destructuring-private</code>,
<code>babel-plugin-proposal-pipeline-operator</code>,
<code>babel-plugin-transform-class-properties</code>,
<code>babel-plugin-transform-class-static-block</code>,
<code>babel-plugin-transform-new-target</code>,
<code>babel-plugin-transform-parameters</code>,
<code>babel-plugin-transform-private-methods</code>,
<code>babel-preset-env</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16218">#16218</a>
Improve temporary variables for decorators (<a
href="https://github.com/liuxingbaoyu"><code>@liuxingbaoyu</code></a>)</li>
</ul>
</li>
<li><code>babel-helpers</code>,
<code>babel-plugin-proposal-explicit-resource-management</code>,
<code>babel-runtime-corejs2</code>, <code>babel-runtime-corejs3</code>,
<code>babel-runtime</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/15959">#15959</a>
Improve output of <code>using</code> (<a
href="https://github.com/liuxingbaoyu"><code>@liuxingbaoyu</code></a>)</li>
</ul>
</li>
</ul>
<h2>v7.23.8 (2024-01-08)</h2>
<h4>🐛 Bug Fix</h4>
<ul>
<li><code>babel-preset-env</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16181">#16181</a>
fix: <code>preset-env</code> throws exception for <code>export * as
x</code> (<a
href="https://github.com/liuxingbaoyu"><code>@liuxingbaoyu</code></a>)</li>
</ul>
</li>
<li><code>babel-helpers</code>,
<code>babel-plugin-proposal-decorators</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16201">#16201</a>
fix: decorator binds <code>getter/setter</code> to
<code>ctx.access</code> for public fields (<a
href="https://github.com/liuxingbaoyu"><code>@liuxingbaoyu</code></a>)</li>
<li><a
href="https://redirect.github.com/babel/babel/pull/16199">#16199</a>
fix: Class decorator correctly passes return value (<a
href="https://github.com/liuxingbaoyu"><code>@liuxingbaoyu</code></a>)</li>
</ul>
</li>
</ul>
<h4>↩️ Revert</h4>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16202">#16202</a>
Revert "chore: Update artifact tools (<a
href="https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/16184">#16184</a>)"
(<a href="https://github.com/JLHwung"><code>@JLHwung</code></a>)</li>
</ul>
<h4>🔬 Output optimization</h4>
<ul>
<li><code>babel-helpers</code>,
<code>babel-plugin-proposal-decorators</code>,
<code>babel-plugin-transform-class-properties</code>,
<code>babel-plugin-transform-classes</code>,
<code>babel-plugin-transform-function-name</code>,
<code>babel-plugin-transform-parameters</code>,
<code>babel-plugin-transform-react-jsx</code>,
<code>babel-plugin-transform-runtime</code>,
<code>babel-plugin-transform-spread</code>,
<code>babel-plugin-transform-typescript</code>,
<code>babel-preset-env</code>, <code>babel-runtime-corejs2</code>,
<code>babel-runtime-corejs3</code>, <code>babel-runtime</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16194">#16194</a>
Improve output of <code>super()</code> (<a
href="https://github.com/liuxingbaoyu"><code>@liuxingbaoyu</code></a>)</li>
</ul>
</li>
</ul>
<h2>v7.23.7 (2023-12-29)</h2>
<h4>🐛 Bug Fix</h4>
<ul>
<li><code>babel-traverse</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16191">#16191</a>
fix: Crash when removing without <code>Program</code> (<a
href="https://github.com/liuxingbaoyu"><code>@liuxingbaoyu</code></a>)</li>
</ul>
</li>
<li><code>babel-helpers</code>,
<code>babel-plugin-proposal-decorators</code></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="a0dd614d12"><code>a0dd614</code></a>
v7.23.9</li>
<li><a
href="1200542a44"><code>1200542</code></a>
fix: Don't throw in <code>getTypeAnnotation</code> when using
TS+inference (<a
href="https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/15383">#15383</a>)</li>
<li><a
href="e428a6d5f9"><code>e428a6d</code></a>
v7.23.7</li>
<li><a
href="d2928229f6"><code>d292822</code></a>
fix: Crash when removing without <code>Program</code> (<a
href="https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/16191">#16191</a>)</li>
<li><a
href="d02c1f76ac"><code>d02c1f7</code></a>
v7.23.6</li>
<li><a
href="cce807f1eb"><code>cce807f</code></a>
Bump debug to ^4.3.1 (<a
href="https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/16164">#16164</a>)</li>
<li><a
href="8479012ee7"><code>8479012</code></a>
v7.23.5</li>
<li><a
href="da7dc40fda"><code>da7dc40</code></a>
Do not remove bindings when removing assignment expression path (<a
href="https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/16131">#16131</a>)</li>
<li><a
href="fadc081db1"><code>fadc081</code></a>
fix: Unexpected duplication of comments (<a
href="https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/16110">#16110</a>)</li>
<li><a
href="13a5c83807"><code>13a5c83</code></a>
v7.23.4</li>
<li>Additional commits viewable in <a
href="https://github.com/babel/babel/commits/v7.23.9/packages/babel-traverse">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/microsoft/react-native-xaml/network/alerts).
</details>
###### Microsoft Reviewers: [Open in
CodeFlow](https://microsoft.github.io/open-pr/?codeflow=https://github.com/microsoft/react-native-xaml/pull/274)
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
## Why is this change being made?
We detected a latent issue (#267) impacting the reliability of our
application(s) using `react-native-xaml` which appeared to be the result
of memory being used after it had previously been freed/released.
Although this ocurred most often when being run under Application
Verifier, it stands to reason that this issue could potentially be
reproduced on any machine at any time.
## What is being changed?
There were two main issues here:
1. The `EventAttachInfo` struct is being updated to hold a property
ref-counted `std::shared_ptr<XamlMetadata>` instead of a **reference**
to a `XamlMetadata` object
> In effect, the previous implementation meant that the
`EventAttachInfo` was holding on to a pointer to the `EventAttachInfo`
object, completely irrespective of the fact that it was extending
`std::enable_shared_from_this`, so it wouldn't participate in
ref-counting. This would allow the object to be destroyed even if we
_believed_ there was still a strong reference to it.
2. The `EventAttachInfo` struct is now passed **by-value** into the
`DispatchTheEvent` and code-gen'd `attachHandlers_t` functions, instead
of by-reference.
> Since the code-gen'd `attachHandlders_t` lambdas would basically just
capture the `EventAttachInfo` inside another, nested lambda (which was
provided as the callback handler for the XAML control's event), passing
by-reference was a dangerous pattern to use. Although this may all
happen on the same thread, we know that the XAML event callbacks could
happen at any point, much later in the future. So, we can't assume that
the original reference to the `EventAttachInfo` captured in the lambda
is actually still valid memory.
While, in theory, we could use `std::weak_ptr` within the
`EventAttachInfo` as perhaps a more direct replacement for how the
`EventAttachInfo&` was previously being used, the minimal extra overhead
of using a strong reference seems to justify reducing the risk of
leaving open other latent issues or introducing new issues.
Now that typescript types are included in RN, they've deprecated the
package `@types/react-native`, which unfortunately breaks creating new
test apps for RN < 0.71 because RNX needs the types to do its codegen
and they're no longer available.
This PR fixes our CI/PR workflows to use the typescript templates for
the older versions so we get typescript and the proper RN types.
PR/CI are failing because the test certs expired for the example and
examplenuget packages. This PR refreshes then to unblock things.
This is just a temporary fix, technically we shouldn't have these files
checked-in at all. See #269
This PR upgrades RNX to target RNW 0.72, along with several fixes to
make that possible.
Changes:
* RNX project and examples updated (dev) dependency to target RN/RNW 0.72
* RNX now default targets WinUI 2.8.0 (as per RNW 0.72)
* Improved Codegen to understand environment variables in winmd paths
* Adds the paths of winmd's used into codegened files for future debugging
* Removes the "source line" comments in the codegen that contain local dev paths
* RNX project will now run codegen before building if it detects that the version of WinUI being requested doesn't match the version last used to run the codegen
* RNX project updated to make sure it can still be built against older supported versions of RNW
* Pipeline fixes to make sure we're testing against the correct versions of everything
* Removal of (now) unnecessary SetupAppForNuGet script as apps will target whichever WinUI RNW targets
* Added `yarn test` for example and cli app builds
Closes#260
In RNW .72, we bump WinUI from 2.7 to 2.8 which targets a higher
TargetPlatformMinVersion. This PR bumps the
WindowsTargetPlatformMinVersion to the correct version for RNW .72
Bumps [semver](https://github.com/npm/node-semver) from 5.7.1 to 5.7.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/npm/node-semver/releases">semver's
releases</a>.</em></p>
<blockquote>
<h2>v5.7.2</h2>
<h2><a
href="https://github.com/npm/node-semver/compare/v5.7.1...v5.7.2">5.7.2</a>
(2023-07-10)</h2>
<h3>Bug Fixes</h3>
<ul>
<li><a
href="2f8fd41487"><code>2f8fd41</code></a>
<a href="https://redirect.github.com/npm/node-semver/pull/585">#585</a>
better handling of whitespace (<a
href="https://redirect.github.com/npm/node-semver/issues/585">#585</a>)
(<a href="https://github.com/joaomoreno"><code>@joaomoreno</code></a>,
<a
href="https://github.com/lukekarrys"><code>@lukekarrys</code></a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/npm/node-semver/blob/v5.7.2/CHANGELOG.md">semver's
changelog</a>.</em></p>
<blockquote>
<h2><a
href="https://github.com/npm/node-semver/compare/v5.7.1...v5.7.2">5.7.2</a>
(2023-07-10)</h2>
<h3>Bug Fixes</h3>
<ul>
<li><a
href="2f8fd41487"><code>2f8fd41</code></a>
<a href="https://redirect.github.com/npm/node-semver/pull/585">#585</a>
better handling of whitespace (<a
href="https://redirect.github.com/npm/node-semver/issues/585">#585</a>)
(<a href="https://github.com/joaomoreno"><code>@joaomoreno</code></a>,
<a
href="https://github.com/lukekarrys"><code>@lukekarrys</code></a>)</li>
</ul>
<h2>5.7</h2>
<ul>
<li>Add <code>minVersion</code> method</li>
</ul>
<h2>5.6</h2>
<ul>
<li>Move boolean <code>loose</code> param to an options object, with
backwards-compatibility protection.</li>
<li>Add ability to opt out of special prerelease version handling with
the <code>includePrerelease</code> option flag.</li>
</ul>
<h2>5.5</h2>
<ul>
<li>Add version coercion capabilities</li>
</ul>
<h2>5.4</h2>
<ul>
<li>Add intersection checking</li>
</ul>
<h2>5.3</h2>
<ul>
<li>Add <code>minSatisfying</code> method</li>
</ul>
<h2>5.2</h2>
<ul>
<li>Add <code>prerelease(v)</code> that returns prerelease
components</li>
</ul>
<h2>5.1</h2>
<ul>
<li>Add Backus-Naur for ranges</li>
<li>Remove excessively cute inspection methods</li>
</ul>
<h2>5.0</h2>
<ul>
<li>Remove AMD/Browserified build artifacts</li>
<li>Fix ltr and gtr when using the <code>*</code> range</li>
<li>Fix for range <code>*</code> with a prerelease identifier</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="f8cc313550"><code>f8cc313</code></a>
chore: release 5.7.2</li>
<li><a
href="2f8fd41487"><code>2f8fd41</code></a>
fix: better handling of whitespace (<a
href="https://redirect.github.com/npm/node-semver/issues/585">#585</a>)</li>
<li><a
href="deb5ad51bf"><code>deb5ad5</code></a>
chore: <code>@npmcli/template-oss</code><a
href="https://github.com/4"><code>@4</code></a>.16.0</li>
<li>See full diff in <a
href="https://github.com/npm/node-semver/compare/v5.7.1...v5.7.2">compare
view</a></li>
</ul>
</details>
<details>
<summary>Maintainer changes</summary>
<p>This version was pushed to npm by <a
href="https://www.npmjs.com/~lukekarrys">lukekarrys</a>, a new releaser
for semver since your current version.</p>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/microsoft/react-native-xaml/network/alerts).
</details>
###### Microsoft Reviewers:
codeflow:open?pullrequest=https://github.com/microsoft/react-native-xaml/pull/256&drop=dogfoodAlpha
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [@sideway/formula](https://github.com/sideway/formula) from 3.0.0
to 3.0.1.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="5b44c1bffc"><code>5b44c1b</code></a>
3.0.1</li>
<li><a
href="9fbc20a02d"><code>9fbc20a</code></a>
chore: better number regex</li>
<li><a
href="41ae98e042"><code>41ae98e</code></a>
Cleanup</li>
<li><a
href="c59f35ec40"><code>c59f35e</code></a>
Move to Sideway</li>
<li>See full diff in <a
href="https://github.com/sideway/formula/compare/v3.0.0...v3.0.1">compare
view</a></li>
</ul>
</details>
<details>
<summary>Maintainer changes</summary>
<p>This version was pushed to npm by <a
href="https://www.npmjs.com/~marsup">marsup</a>, a new releaser for
<code>@sideway/formula</code> since your current version.</p>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
You can trigger a rebase of this PR by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the
default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as
the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as
the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the
default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/microsoft/react-native-xaml/network/alerts).
</details>
###### Microsoft Reviewers: [Open in
CodeFlow](https://portal.fabricbot.ms/api/codeflow?pullrequest=https://github.com/microsoft/react-native-xaml/pull/245)
> **Note**
> Automatic rebases have been disabled on this pull request as it has
been open for over 30 days.
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Add prIssueManagement.yml to onboard repo to GitOps.ResourceManagement
as FabricBot replacement
---------
Co-authored-by: microsoft-github-policy-service[bot] <77245923+microsoft-github-policy-service[bot]@users.noreply.github.com>
Our PR jobs now call into templates and use a matrix strategy for all
tested configurations.
GitHub Actions branch protections do not let you set "all jobs are
required" nor even "all matrix permutations of this one job" are
required.
You literally have to set every individual permutation as required
manually, which makes it hard to maintain.
This PR adds a final "Successful PR Check" job that is dependent on all
the others, that can be the *one* set to required.
This PR is to refactor our CI/PR and publish pipelines to:
* Separate our CI and PR pipelines. That way failing PR results don't
set our CI as failed
* Build reusable, parameterized template pipelines to avoid all the
copy/paste
* Add a "Setup Check" to PR where it checks for change files so we can
start using beachball properly
* Set CI to run a larger matrix than PR and on a regular schedule
This PR also fixes `example`, which wasn't being build in the pipelines
before and was actually broken during the upgrade to 0.71.
###### Microsoft Reviewers: [Open in
CodeFlow](https://portal.fabricbot.ms/api/codeflow?pullrequest=https://github.com/microsoft/react-native-xaml/pull/244)
jbgski
dependabot[bot]
Jon Thysell
Andrew Coates
Max Benat
Tatiana Kapos
microsoft-github-policy-service[bot]
Alexander Sklar
Louie Bertoncin
Jon Thysell