Hackers are targeting developers by exploiting the critical vulnerability CVE-2025-11953 in the Metro server for React Native to deliver malicious payloads for Windows and Linux. On Windows, an ...

Threat actors have been observed exploiting a critical security flaw impacting the Metro Development Server in the popular "@react-native-community/cli" npm package. Despite more than a month after ...

The bug exposes the Metro development server to remote attacks, allowing arbitrary OS command execution on developer systems before a fix in version 20.0.0. A critical remote-code execution (RCE) flaw ...

Details have emerged about a now-patched critical security flaw in the popular "@react-native-community/cli" npm package that could be potentially exploited to run malicious operating system (OS) ...

A new library, React Native Godot, enables developers to embed the open-source Godot Engine for 3D graphics within a React Native application. Enterprise development teams often have to balance the ...

I have an Expo app set up with DataStore configured to use the expo sqlite adapter. It was while investigating another issue (#13269) that I realised there was no AmplifyDatastore database being ...

I have a sqlite db that I want to load in my react native app, which already have data in it. I am having trouble that how do I load mydb.sqlite database in my app due to no or less documentation on ...

A threat actor published backdoored versions of 17 NPM packages from GlueStack in a fresh supply chain attack. Over the weekend, multiple React Native Aria packages for GlueStack were backdoored as ...