[Snyk] Security upgrade react-native-bootsplash from 6.3.12 to 7.0.2

[MManke188]

Snyk has created this PR to fix 1 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

• package.json

⚠️ Warning

Failed to update the package-lock.json, please update manually before merging.

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Uncaught Exception SNYK-JS-FASTXMLPARSER-15155603	828

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.
• Snyk has automatically assigned this pull request, set who gets assigned.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
👩‍💻 Set who automatically gets assigned
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Uncaught Exception

[Copilot]

Pull request overview

This PR upgrades react-native-bootsplash from version 6.3.11 to 7.0.2 to address a high-severity security vulnerability (SNYK-JS-FASTXMLPARSER-15155603) with a score of 828/1000 in the transitive dependency fast-xml-parser. The upgrade is a major version change (6.x → 7.x) that typically involves breaking changes requiring native code updates for both Android and iOS platforms. The PR notes that the package-lock.json failed to update automatically and requires manual intervention.

Changes:

• Upgrade react-native-bootsplash from ^6.3.11 to ^7.0.2 to fix security vulnerability
• Major version upgrade requiring verification of API compatibility and native code changes
• Manual package-lock.json update needed before merging

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

The PR title states "from 6.3.12 to 7.0.2", but the actual change in the code is from "^6.3.11" to "^7.0.2". This discrepancy should be noted. The actual previous version in package.json is 6.3.11, not 6.3.12 as stated in the PR title.

[Copilot]

This is a major version upgrade from 6.x to 7.x, which typically involves breaking changes. The react-native-bootsplash library requires native code changes for major version upgrades. Before merging, you should:

1. Review the migration guide for version 7.x (typically found in the library's GitHub repository)
2. Update native code in both Android (MainActivity.kt) and iOS (AppDelegate.swift) if required
3. Test the splash screen initialization and hiding behavior on both platforms
4. Verify that the API usage in src/views/Screens.tsx (BootSplash.hide) is still compatible with version 7.x

The PR description also warns that package-lock.json failed to update and needs manual updating before merging.