COVID Alert Mobile App

Overview

La version française suit.

COVID Alert Mobile App

Lint + Typscript

Available for iOS and Android:

Download on the App Store Get it on Google Play

Pour iOS et Android:

Télécharger dans l'App Store Disponible sur Google Play

Adapted from https://github.com/CovidShield/mobile (upstream)

This repository implements a React Native client application for Apple/Google's Exposure Notification framework, informed by the guidance provided by Canada's Privacy Commissioners.

Overview

This app is built using React Native and designed to work well with patterns on both Android and iOS devices. It works alongside the COVID Alert Diagnosis Server & COVID Alert Portal.

Local development

Prerequisites

Follow the steps outlined in React Native Development Environment Setup to make sure you have the proper tools installed.

Node

iOS

Android

  • Android device with the ability to run the latest version of Google Play Services or Google Play Services Beta. Sign up for beta program here https://developers.google.com/android/guides/beta-program.
  • You also need a safelisted APPLICATION_ID that will be used to publish to Google Play. You could use APPLICATION_ID from Google Sample App for testing purposes "com.google.android.apps.exposurenotification". Go to Environment config to see how to change APPLICATION_ID.

1. Check out the repository

git clone [email protected]:cds-snc/covid-shield-mobile.git

2. Install dependencies

yarn install
2.1 Additional step for iOS
2.1.1 Install Cocoapods
sudo gem install cocoapods
2.1.2 Install pods
bundle install && yarn pod-install

3. Environment config

Check .env and adjust configuration if necessary. See react-native-config for more information.

Ex:

ENVFILE=.env.production yarn run-ios
ENVFILE=.env.production yarn run-android

4. Start app in development mode

You can now launch the app using the following commands for both iOS and Android.

yarn run-ios
yarn run-android

You can also build the app with native development tool:

  • For iOS, using Xcode by opening the CovidShield.xcworkspace file in the ios folder.
  • For Android, using Android Studio by opening android folder.

Development mode

When the app is running in development mode, you can tap on the COVID Alert logo at the top of the app to open the Test menu. This menu enables you to:

  • Put the app into test mode to bypass the Exposure Notification API check
  • Change the system status
  • Change the exposure status
  • Send a sample notification
  • Reset the app to onboarding state

Note that: Test menu is enabled if the environment config file (.env*) has TEST_MODE=true. To disable test mode UI on production build, simply set it to false in the environment config file TEST_MODE=false.

Customization

You can customize the look and feel of the app largely by editing values found in the Theme File.

Localization

The COVID Alert app is available in French and English. Fully localized content can be modified by editing translations files found in the translations directory. More translations can be added by using the same mechanism as French and English.

After modifying the content you must run the generate-translations command in order for the app to reflect your changes.

yarn generate-translations

Note: For regional content please see updating regional content

Add new translation

  1. Create a new i18n file in src/locale/translations/.
  2. Add the new option pt in translations.js.
  3. Regenerate the translations yarn generate-translations.
  4. Add the new option in src/components/LanguageToggle.tsx.
  5. Add the new option in src/screens/language/Language.tsx.
  6. Add the new option in Xcode Localizations settings (Project -> CovidShield -> Info tab -> Localizations) and make sure Launch Screen.storyboard is checked.

Testing

Who built COVID Alert?

COVID Alert was originally developed by volunteers at Shopify. It was released free of charge under a flexible open-source license.

This repository is being developed by the Canadian Digital Service. We can be reached at [email protected].

Troubleshooting

[Android] Problem with debug.keystore during run Android version

Logs

FAILURE: Build failed with an exception.

* What went wrong:
Execution failed for task ':app:packageDebug'.
> A failure occurred while executing com.android.build.gradle.internal.tasks.Workers$ActionFacade
   > com.android.ide.common.signing.KeytoolException: Failed to read key AndroidDebugKey from store "/Users/YOUR_USER/.android/debug.keystore": keystore password was incorrect

Generate a new debug.keystore:

cd android/app
keytool -genkey -v -keystore debug.keystore -storepass android -alias androiddebugkey -keypass android -keyalg RSA -keysize 2048 -validity 10000

Copy your debug.keystore to ~/.android/debug.keystore:

cd android/app
cp debug.keystore ~/.android/debug.keystore

Now you can run yarn run-android in your root folder.

[MacOS] Problem installing Cocoapods

When following step 2.1.1 Install Cocoapods if you receive an error that looks like the following (Please Note: Error message will not be identical but simliar):

ERROR:  Loading command: install (LoadError)
  dlopen(/Users/$home/ruby/2.6.5/x86_64-darwin18/openssl.bundle, 9): Library not loaded: /usr/local/opt/openssl/lib/libssl.1.0.0.dylib
  Referenced from: /Users/$home/ruby/2.6.5/x86_64-darwin18/openssl.bundle
ERROR:  While executing gem ... (NoMethodError)

This is because the version of Ruby you have installed does not have OpenSSL included.

You can fix this error by installing Ruby Version Manager (if you do not already have it), and reinstalling the version of Ruby required with OpenSSL using the following steps:

  1. Install RVM following the instructions here: https://rvm.io/
  2. Run the following command to install the version of Ruby needed with OpenSSL included, this will take a few minutes so be patient.
rvm reinstall 2.6.5 --with-openssl-dir=/usr/local/opt/openssl

You should now be able to install cocoapods and gem commands should now work.


Application mobile Alerte COVID

Lint + Typscript

Adapté de https://github.com/CovidShield/mobile (voir les modifications)

Ce dépôt met en œuvre une application client React Native pour le cadriciel Notification d’exposition d’Apple/Google, éclairé par l’orientation fournie par le commissaire à la protection de la vie privée du Canada.

Aperçu

Cette application est construite à l’aide de React Native et est conçue pour bien fonctionner avec des modèles sur les appareils Android et iOS. Elle fonctionne de concert avec le Serveur de diagnostic Alerte COVID & Portail Alerte COVID.

Développement local

Conditions préalables

Suivez les étapes décrites dans Configuration de l’environnement de développement React Native pour vous assurer que les outils appropriés sont installés.

Node

iOS

  • XCode 11.5 ou supérieur
  • appareil ou simulateur iOS avec iOS 13.5 ou plus récent
  • Bundler pour installer la bonne version de CocoaPods localement
  • Vous avez également besoin d’un profil de provisionnement avec le droit de notification d’exposition. Pour obtenir de plus amples renseignements, visitez https://developer.apple.com/documentation/exposurenotification.

Android

  • Appareil Android pouvant exécuter la dernière version de Google Play Services ou Google Play Services Beta. Inscrivez-vous au programme bêta ici https://developers.google.com/android/guides/beta-program.
  • Vous avez également besoin d’un APPLICATION_ID protégé qui sera utilisé pour publier dans Google Play. Vous pouvez utiliser l’APPLICATION_ID de Google Sample App à des fins d’essai « com.google.android.apps.exposurenotification ». Aller à Environment config pour voir comment modifier l’APPLICATION_ID.

1. Consulter le dépôt

git clone [email protected]:cds-snc/covid-shield-mobile.git

2. Installer les dépendances :

yarn install
2.1 Étape supplémentaire pour iOS
2.1.1 Installer Cocoapods
sudo gem install cocoapods
2.1.2 Installer les modules
bundle install && yarn pod-install

3. Configuration environnement

Cocher .env et rajuster la configuration si nécessaire. Voir react-native-config pour plus d’information.

Exemple :

ENVFILE=.env.production yarn run-ios
ENVFILE=.env.production yarn run-android

4. Démarrer l’application en mode développement

Vous pouvez maintenant lancer l’application à l’aide des commandes suivantes pour iOS et Android :

yarn run-ios
yarn run-android

Vous pouvez également construire l’application avec un outil de développement natif :

  • Pour iOS, utilisez XCode en ouvrant le fichier CovidShield.xcworkspace dans le dossier « ios ».
  • Pour Android, utilisez Android Studio en ouvrant le dossier android.

Mode de développement

Lorsque l’application est en mode de développement, vous pouvez appuyer sur le logo Alerte COVID en haut de l’application pour ouvrir le menu Test. Ce menu vous permet de :

  • Mettre l’application en mode test pour contourner le contrôle de l’API de notification d’exposition
  • Modifier l’état du système
  • Modifier le statut d’exposition
  • Envoyer un exemple de notification
  • Réinitialiser l’application à l’état d’intégration

Remarque : Le menu de test est activé si le fichier de configuration de l’environnement (.env*) montre « TEST_MODE=true ». Pour désactiver l’interface utilisateur du mode test en production, il suffit de la définir comme False dans le fichier de configuration d’environnement « TEST_MODE=false ».

Personnalisation

Vous pouvez personnaliser l’apparence de l’application en grande partie en modifiant les valeurs du Theme File.

Localisation

L’application Alerte COVID est disponible en français et en anglais. Le contenu entièrement localisé peut être modifié en modifiant les fichiers de traduction qui se trouvent dans le répertoire des traductions. On peut ajouter plus de traductions en utilisant le même mécanisme pour le français et l’anglais.

Après avoir modifié le contenu, vous devez exécuter la commande generate-translations pour que l’application reflète vos modifications.

yarn generate-translations

Ajouter une nouvelle traduction

  1. Créer un nouveau fichier i18n dans src/local/translations/.
  2. Ajouter la nouvelle option pt dans translations.js.
  3. Régénérer les traductions yarn generate-translations.
  4. Ajouter la nouvelle option dans src/components/Languagetoggle.tsx.
  5. Ajouter la nouvelle option dans src/screens/language/Language.tsx.
  6. Ajouter la nouvelle option dans les paramètres Xcode Localizations (Project -> CovidShield -> onglet Info -> Localizations) et assurez-vous que Launch Screen.storyboard est coché.

Qui a conçu Alerte COVID?

Alerte COVID a été développé à l’origine par des bénévoles de Shopify. Il a été diffusé gratuitement en vertu d’une licence ouverte flexible.

Ce dépôt est maintenu par le Service numérique canadien. Vous pouvez nous joindre à [email protected].

Résolution de problèmes

[Android] Problème avec debug.keystore pendant l’exécution de la version Android

Journaux

FAILURE: Build failed with an exception.

* What went wrong:
Execution failed for task ':app:packageDebug'.
> A failure occurred while executing com.android.build.gradle.internal.tasks.Workers$ActionFacade
   > com.android.ide.common.signing.KeytoolException: Failed to read key AndroidDebugKey from store "/Users/YOUR_USER/.android/debug.keystore": keystore password was incorrect

Créer un nouveau debug.keystore :

cd android/app
keytool -genkey -v -keystore debug.keystore -storepass android -alias androiddebugkey -keypass android -keyalg RSA -keysize 2048 -validity 10000

Copiez votre debug.keystore sur ~/.android/debug.keystore :

cd android/app
cp debug.keystore ~/.android/debug.keystore

Vous pouvez maintenant exécuter yarn run-android dans votre dossier racine.

Comments
  • Potential issue with LifecycleDailyCount

    Potential issue with LifecycleDailyCount

    Summary | Résumé

    This may or not be an issue, depending on if my understand is correct or not. In DebugMetricsHelper.kt we have getLifecycleDailyCount. The DebugMetricsHelper has a cache for cachedLifecycleDailyCount which is initially null. What is the lifetime of this class? Does it get re-created every time we wakeup in the background? Every time the app is opened? When does that cache value get reset, essentially.

    If the cache is reset each background invocation then when we get into getLifecycleDailyCount we'll see the cache is null we then check the last cache time, and if it was today, we return 0, this will then set the cache to 1. If it wasn't today, we read the cache value. It seems like this would, potentially, reset the LifecycleDailyCount to 1 a lot more then we expect?

    Could we remove the cache from this code to simplify things? (Are we caching because the retrieval from sharedPreferences is slow?)

    Would something like the following work?

    fun getLifecycleDailyCount(context: Context): Number {
      val sharedPreferences = context.getSharedPreferences(SharedPreferencesFileKey, Context.MODE_PRIVATE)
      val cachedCount = sharedPreferences.getInt(LifecycleDailyCountKey, 0)
     
      if (didDayChange(LifecycleDailyCountResetTimestampKey, context)) {
        cachedCount = cachedCount + 1
        with (sharedPreferences.edit()) {
          putInt(LifecycleDailyCountKey, cachedCount)
          apply()
        }
      }
      return cachedCount
    }
    

    (If the above works a similar change could also be applied to getSuccessfulDailyBackgroundChecks and possibly other methods which cache values.

    optimization 
    opened by dj2 24
  • Menu

    Menu "Push notifications are off" tile does not redirect anywhere

    Environment : Pixel 3XL - Android v9 (BrowserStack), version v14

    Scenario :

    • Make sure your phone has push notifications turned off for the app
    • Open the app
    • Open the menu

    Issue : There is a tile "Push notifications are off" with an arrow on it indicating that clicking on this tile would redirect users somewhere but I cannot click on it (nothing happens on click). Not sure if this tile was supposed to redirect somewhere or not...

    bs_realdroid_Mobile_Google Pixel 3 XL-9 0-1440x2960

    high priority regression testing tester fixed v1launch 
    opened by srepussard 21
  • Large time gaps between exposure checks

    Large time gaps between exposure checks

    Summary | Résumé

    App did not check for exposures for a whole week on two separate occasions between Dec 11-18 and Dec 2-9. My phone is on 99.9% of the time, with internet access and Bluetooth has consistently been on. Exposure logs attached. all-exposure-checks.json.txt

    Steps to reproduce | Étapes à reproduire

    I did not open the app on a regular basis because I did not expect to be required to do so - as the documentation assured that it would not be necessary.

    Environment | Environnement logiciel

    Google Pixel 3a, COVID Alert 1.1.3, Android 11.

    Unresolved questions / Out of scope | Questions non résolues ou hors sujet

    Are there any related issues you consider out of scope for this issue that could be addressed in the future?

    It would be useful to know if your device has recorded any keys.... how am I to know that my device was recording anything during those time gaps.

    bug inbox 
    opened by csavard-sudo 17
  • No message for Bluetooth being off on Android

    No message for Bluetooth being off on Android

    Environment: Nexus 6, Android 6 (Browserstack)

    To reproduce:

    • Before installing the app, disable Bluetooth
    • Install

    User gets message that the phone is running Bluetooth

    Screen Shot 2020-06-30 at 3 43 24 PM to confirm tester Browserstack 
    opened by jpeersoxd 16
  • App on/off status and iPhone status out of sync and cannot discover a way to recover

    App on/off status and iPhone status out of sync and cannot discover a way to recover

    Summary | Résumé

    I am running IOS 14.2 beta 2 on iPhone X. After a phone restart, the next time the Covid App was opened, it claimed the collection was off.

    and the iPhone screen shows:

    The App does not seem to re-synchronize to the ON state and the iPhone screen promises to delete all my exposure data if I try the turn off and on fix. So I assume the onus falls to the Covid App to get itself On again somehow.

    Steps to reproduce | Étapes à reproduire

    Sequence from memory of how I got out of sync; cannot repeat as my phone is in an out-of-sync state now.

    1. Covid app was working on IOS14.2

    2. Upgraded to IOS 14.2 beta 2 developer beta

    3. Covid App worked (I'm pretty sure but not 100% on this)

    4. iPhone restarted.

    5. Covid App opened now in off state.

    Environment | Environnement logiciel

    iPhone X IOS14.2 beta 2 (developer beta)

    Unresolved questions / Out of scope | Questions non résolues ou hors sujet

    This out of sync is not a desired state. If it remains possible the a help procedure to correctly recover sync without losing the last 14 days of exposure data would be desirable

    bug inbox 
    opened by steve-h 15
  • Check location service on Android

    Check location service on Android

    Resolves https://github.com/cds-snc/covid-alert-app/issues/891

    How to test

    • Run
    rm -rf node_modules/react-native-system-setting
    yarn add [email protected]
    yarn
    
    • Open the app, pass onboarding flow and enable EN.
    • Verify CovidAlert is active.
    • Go to device settings, disable location.
    • Back to the app, verify CovidAlert is inactive.
    • Turn on EN in the app, verify that location is enabled.
    • Turn off bluetooth.
    • Back to the app, verify CovidAlert is inactive.
    • Turn on EN in the app, verify that bluetooth is enabled.
    • Keep the app in foreground, toggle Location off in notification bar (not system settings), verify that the app change status properly.
    opened by henrytao-me 15
  • COVID Alert crashed in the background (iOS)

    COVID Alert crashed in the background (iOS)

    COVID Alert crashed while in the background while another app was being used. My partner is blushing about her choice of game, but here's a screen shot 😸 :

    Image from iOS

    This happened somewhere around 20:00 ET on July 2, 2020 and she tapped Share, so there should be a dump of the issue in the Apple App Store Connect account. Since it crashed in the background, it may or may not be relevant that she has the iOS Setting Background App Refresh set to Off.

    Some extra details:

    • Device: iPhone 7
    • OS: iOS 13.5.1
    • App Version: 1.0 (13)
    bug high priority v1launch 
    opened by jeffmaher 15
  • "Share your random codes" notification - Screen in background on infinite load state

    Environment : Pixel 3XL, Android v9 (BrowserStack), version v14

    Scenario :

    • Go to Enter you code screen from the menu
    • Enter a 8-digit code and submit
    • Click on "Agree" on the upload code screen

    Expected : A notification about "share you random codes" is displayed on top of the upload code screen

    Issue : The screen in the background of the notification is on an infinite load state

    bs_realdroid_Mobile_Google Pixel 3 XL-9 0-1440x2960 (3)

    bug high priority tester v1launch 
    opened by srepussard 15
  • Fix SafeAreaView

    Fix SafeAreaView

    Summary

    This PR removes usage of react-native-safe-area-context as it causes crashes on Android on prod. New SafeAreaView component should be used as a replacement for handling notches on both Android and iOS.

    Test instructions

    Go through onboarding and all screens in the app on both Android / iOS with and without notches.

    Help requested

    Things that you (the submitter) want reviewers to pay very close attention to when they review this.

    Unresolved questions / Out of scope

    Are there any related issues or tangent features you consider out of scope for this issue that could be addressed in the future?

    Reviewer checklist

    This is a suggested checklist of questions reviewers might ask during their review:

    • [x] Does this meet a user need?
    • [x] Is it accessible?
    • [x] Is it translated between both offical languages?
    • [x] Is the code maintainable?
    • [x] Have you tested it?
    • [ ] Are there automated tests?
    • [ ] Does this cause automated test coverage to drop?
    • [ ] Does this break existing functionality?
    • [ ] Should this be split into smaller PRs to decrease change risk?
    • [ ] Does this change the privacy policy?
    • [ ] Does this introduce any security concerns?
    • [ ] Does this significantly alter performance?
    • [ ] What is the risk level of using added dependencies?
    • [ ] Should any documentation be updated as a result of this? (i.e. README setup, etc.)
    opened by henrytao-me 14
  • COVID Alert has stopped working - Android 8 (v33)

    COVID Alert has stopped working - Android 8 (v33)

    One Plus 3 Android 8 App version 33 is installed COVID 19 Exposure notifications are ON, Notifications = On Bluetooth = On Entered a valid diagnosis code earlier this morning.

    Left the app running in the background and left phone. 1hr or so later, returned to phone and had a message: COVID Alert has stopped. see image. Was able to reproduce it 3x

    COVIDAlert has stopped

    bug tester fixed v1launch 
    opened by mmiron-HC 14
  • List is not announced as list with VoiceOver

    List is not announced as list with VoiceOver

    VoiceOver doesn't announce that this is a list (highlighted in screenshot). It should say "list start" and "list end". VoiceOver should also say "bullet" for each list item but instead it says "unpronounceable, black circle" for each bullet.

    iOS 13.5.1 on iPhone 7

    7

    a11y low priority tester fixed 
    opened by qanitah 14
  • [Snyk] Security upgrade react-native from 0.64.0 to 0.69.0

    [Snyk] Security upgrade react-native from 0.64.0 to 0.69.0

    This PR was automatically created by Snyk using the credentials of a real user.


    Snyk has created this PR to fix one or more vulnerable packages in the `yarn` dependencies of this project.

    Changes included in this PR

    • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
      • package.json
    ⚠️ Warning
    Failed to update the yarn.lock, please update manually before merging.
    

    Vulnerabilities that will be fixed

    With an upgrade:

    Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity :-------------------------:|-------------------------|:-------------------------|:-------------------------|:------------------------- high severity | 619/1000
    Why? Has a fix available, CVSS 8.1 | Remote Code Execution (RCE)
    SNYK-JS-SHELLQUOTE-1766506 | No | No Known Exploit

    (*) Note that the real score may have changed since the PR was raised.

    Check the changes in this PR to ensure they won't cause issues with your project.


    Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

    For more information: 🧐 View latest project report

    🛠 Adjust project settings

    📚 Read more about Snyk's upgrade and patch logic


    Learn how to fix vulnerabilities with free interactive lessons:

    🦉 Remote Code Execution (RCE)

    opened by maxneuvians 0
  • [Snyk] Security upgrade fastlane from 2.181.0 to 2.181.0

    [Snyk] Security upgrade fastlane from 2.181.0 to 2.181.0

    Snyk has created this PR to fix one or more vulnerable packages in the `rubygems` dependencies of this project.

    Changes included in this PR

    • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
      • Gemfile.lock

    Vulnerabilities that will be fixed

    With an upgrade:

    Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity :-------------------------:|-------------------------|:-------------------------|:-------------------------|:------------------------- high severity | 691/1000
    Why? Recently disclosed, Has a fix available, CVSS 8.1 | Deserialization of Untrusted Data
    SNYK-RUBY-JMESPATH-2859799 | No | No Known Exploit

    (*) Note that the real score may have changed since the PR was raised.

    Check the changes in this PR to ensure they won't cause issues with your project.


    Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

    For more information: 🧐 View latest project report

    🛠 Adjust project settings

    📚 Read more about Snyk's upgrade and patch logic


    Learn how to fix vulnerabilities with free interactive lessons:

    🦉 Deserialization of Untrusted Data

    opened by snyk-bot 0
  • [Snyk] Security upgrade react-native from 0.64.0 to 0.65.0

    [Snyk] Security upgrade react-native from 0.64.0 to 0.65.0

    Snyk has created this PR to fix one or more vulnerable packages in the `yarn` dependencies of this project.

    Changes included in this PR

    • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
      • package.json
    ⚠️ Warning
    Failed to update the yarn.lock, please update manually before merging.
    

    Vulnerabilities that will be fixed

    With an upgrade:

    Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity :-------------------------:|-------------------------|:-------------------------|:-------------------------|:------------------------- high severity | 768/1000
    Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 7.5 | Prototype Pollution
    SNYK-JS-ASYNC-2441827 | No | Proof of Concept

    (*) Note that the real score may have changed since the PR was raised.

    Check the changes in this PR to ensure they won't cause issues with your project.


    Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

    For more information: 🧐 View latest project report

    🛠 Adjust project settings

    📚 Read more about Snyk's upgrade and patch logic


    Learn how to fix vulnerabilities with free interactive lessons:

    🦉 Prototype Pollution

    opened by snyk-bot 0
  • [Snyk] Security upgrade react-native from 0.64.0 to 0.68.0

    [Snyk] Security upgrade react-native from 0.64.0 to 0.68.0

    Snyk has created this PR to fix one or more vulnerable packages in the `yarn` dependencies of this project.

    merge advice

    Changes included in this PR

    • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
      • package.json
    ⚠️ Warning
    Failed to update the yarn.lock, please update manually before merging.
    

    Vulnerabilities that will be fixed

    With an upgrade:

    Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity :-------------------------:|-------------------------|:-------------------------|:-------------------------|:------------------------- medium severity | 519/1000
    Why? Has a fix available, CVSS 6.1 | Denial of Service (DoS)
    SNYK-JS-HERMESENGINE-2342071 | No | No Known Exploit high severity | 619/1000
    Why? Has a fix available, CVSS 8.1 | Remote Code Execution (RCE)
    SNYK-JS-SHELLQUOTE-1766506 | No | No Known Exploit

    (*) Note that the real score may have changed since the PR was raised.

    Check the changes in this PR to ensure they won't cause issues with your project.


    Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

    For more information: 🧐 View latest project report

    🛠 Adjust project settings

    📚 Read more about Snyk's upgrade and patch logic


    Learn how to fix vulnerabilities with free interactive lessons:

    🦉 Remote Code Execution (RCE)

    opened by snyk-bot 0
  • [Snyk] Fix for 1 vulnerabilities

    [Snyk] Fix for 1 vulnerabilities

    Snyk has created this PR to fix one or more vulnerable packages in the `yarn` dependencies of this project.

    Changes included in this PR

    • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:

      • package.json
      • yarn.lock
    • Adding or updating a Snyk policy (.snyk) file; this file is required in order to apply Snyk vulnerability patches. Find out more.

    Vulnerabilities that will be fixed

    With a Snyk patch:

    Severity | Priority Score (*) | Issue | Exploit Maturity :-------------------------:|-------------------------|:-------------------------|:------------------------- high severity | 731/1000
    Why? Proof of Concept exploit, Has a fix available, CVSS 8.2 | Prototype Pollution
    SNYK-JS-LODASH-567746 | Proof of Concept

    (*) Note that the real score may have changed since the PR was raised.

    Check the changes in this PR to ensure they won't cause issues with your project.


    Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

    For more information: 🧐 View latest project report

    🛠 Adjust project settings

    📚 Read more about Snyk's upgrade and patch logic


    Learn how to fix vulnerabilities with free interactive lessons:

    🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.

    opened by snyk-bot 0
  • [Snyk] Security upgrade react-native-svg from 12.1.0 to 12.3.0

    [Snyk] Security upgrade react-native-svg from 12.1.0 to 12.3.0

    Snyk has created this PR to fix one or more vulnerable packages in the `yarn` dependencies of this project.

    merge advice

    Changes included in this PR

    • Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
      • package.json
      • yarn.lock

    Vulnerabilities that will be fixed

    With an upgrade:

    Severity | Priority Score (*) | Issue | Breaking Change | Exploit Maturity :-------------------------:|-------------------------|:-------------------------|:-------------------------|:------------------------- medium severity | 479/1000
    Why? Has a fix available, CVSS 5.3 | Regular Expression Denial of Service (ReDoS)
    SNYK-JS-CSSWHAT-1298035 | No | No Known Exploit high severity | 589/1000
    Why? Has a fix available, CVSS 7.5 | Regular Expression Denial of Service (ReDoS)
    SNYK-JS-NTHCHECK-1586032 | No | No Known Exploit

    (*) Note that the real score may have changed since the PR was raised.

    Check the changes in this PR to ensure they won't cause issues with your project.


    Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

    For more information: 🧐 View latest project report

    🛠 Adjust project settings

    📚 Read more about Snyk's upgrade and patch logic


    Learn how to fix vulnerabilities with free interactive lessons:

    🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.

    opened by snyk-bot 0
Releases(Android-v1.4.4-349)
Owner
Canadian Digital Service – Service numérique canadien
Canadian Digital Service – Service numérique canadien
COVID Safe Paths (based on Private Kit) is an open and privacy preserving system to use personal information to battle COVID

COVID Safe Paths is a mobile app for digital contract tracing (DCT) sponsored by Path Check a nonprofit and developed by a growing global community of engineers, designers, and contributors. Safe Paths is based on research originally conducted at the MIT Media Lab.

PathCheck Foundation 470 Nov 6, 2022
ViruSafe aims to help the fight with COVID-19 by offering people to share their symptoms as well track the spread of COVID-19 with an interactive map

ViruSafe aims to help the fight with COVID-19 by offering people to share their symptoms as well track the spread of COVID-19 with an interactive map, that shows how the infection has spread throughout Bulgaria.

scalefocus 16 Feb 9, 2022
Covid 19 Tracing Mobile Application

PVAMU-COVID19-APP Covid 19 Tracing Mobile Application This is my Senior Design Project 2021-2022 Mobile applications are the new gateway to have easy

null 0 Nov 15, 2021
A simple App to Track the status of Covid-19 around the World. Using SwiftUI and GraphQL

CovidUI CovidUI is a simple App to Track the status of Covid-19 around the World. This is a simple App I made to track the spread of Covid-19 for me a

Mathias Quintero 77 Dec 14, 2022
Rakning C-19 is an app that can be downloaded voluntarily and facilitates the contact tracing process amidst the ongoing Covid-19 pandemic in Iceland

Rakning C-19 App Rakning C-19 is an app that can be downloaded voluntarily and facilitates the contact tracing process amidst the ongoing Covid-19 pan

Aranja 242 Nov 21, 2022
Koronavilkku - the official COVID-19 Exposure Notifications app

Koronavilkku iOS app Koronavilkku is the official COVID-19 Exposure Notifications app for Finland, maintained by the Finnish Institute for Health and

Finnish Institute for Health and Welfare (THL) 76 Oct 7, 2022
COVID-19 SwiftUI Demo

COVID-19_SwiftUI_Demo About COVID-19_SwiftUI_Demo is the coronavirus information application using SwiftUI which is first introduced in WWDC19 keynote

Hưng Thái 17 Feb 9, 2022
Get notified about available COVID-19 vaccination appointments in Berlin's vaccination centers

VaccinationMonitor If you live in Berlin you might know how difficult it is to find an appointment to get a COVID-19 vaccination. This app notifies yo

Christian Lobach 8 Jan 14, 2022
EU Digital COVID Certificate Kit for the Apple Platform  (unofficial)

EU Digital COVID Certificate Kit A Swift Package to decode, verify and validate EU Digital COVID Certificates for iOS, tvOS, watchOS and macOS Disclai

Sven Tiigi 32 Oct 4, 2022
iOS 14 widget for stats on COVID -19.

A Covid-19 Tracking Widget for iOS 14 WidgetKit WidgetKit gives users ready access to content in apps by putting widgets on the iOS Home screen or mac

Aaryan Kothari 71 Jul 4, 2022
iOS application to help fight COVID-19

iOS application to help fight COVID-19 This app is aiming at helping fight COVID-19 spread by collecting anonymous data about people meeting each othe

Covid World 12 Feb 9, 2022
Aplikasi iOS Statistik Internasional Penyebaran Covid-19 dengan SwiftUI, MVVM Design Pattern, dan REST APIs dari rapidapi.com

CovStats CovStats adalah aplikasi iOS Data Statistik Internasional Covid-19 yang datanya didapatkan dari rapidapi.com dengan struktur REST API. Dibuat

DK 7 Aug 1, 2022
INTUZ is presenting an interesting a custom alert view in SwiftUI

Introduction INTUZ is presenting an interesting a custom alert view in SwiftUI, App Control to integrate inside your native iOS-based application. Cus

INTUZ 2 Jul 10, 2022
iOS mobile app to find and display the nearest boba shop

iOSBoba - Boba App Description Basic mobile app where you can plug in a location (or let the app find your current location), and the app will tap int

Jacob Pernell 1 Oct 27, 2021
Mobile app for University of Washington students to find resources and information about the school.

ExploreUW App Description Mobile app for University of Washington students to find resources and information about the school. Collaborators Christian

Christian Calloway 2 Jun 3, 2022
Nova Wallet iOS - Next get mobile app for Polkadot & Kusama ecosystem

Next gen application for Polkadot & Kusama ecosystem, transparent & community-oriented, focused on convenient UX/UI, fast performance & security.

Novasama Technologies 15 Dec 15, 2022
A mobile application that presents the news received via NewsAPI to the user. Built with SwiftUI.

?? SwiftUI News App with NewsAPI A mobile application that presents the news received via NewsAPI to the user. Built with SwiftUI. ✅ Features The data

Doğancan Mavideniz 5 Nov 15, 2021
This mobile application built in SwiftUI is designed to help you medicate your cat faster.

MediKitty This mobile application built in SwiftUI is designed to help you medicate your cat faster. If you medicate your kitty it will be happy Add w

Elijah J Grealish 0 Nov 2, 2021
iOS mobile development using Swift - Online Shopping Application

iOS mobile development using Swift - Online Shopping Application - yr4_sem1 This is an application developed as an individual project for Mobile Appli

Madhawa Jayagoda 2 Nov 10, 2021