Skip to content

harden: managed executor, resource cleanup, Zip Slip guard, TS types, CI updates#356

Open
plrthink wants to merge 35 commits into
masterfrom
harden-native-modules
Open

harden: managed executor, resource cleanup, Zip Slip guard, TS types, CI updates#356
plrthink wants to merge 35 commits into
masterfrom
harden-native-modules

Conversation

@plrthink

@plrthink plrthink commented Jun 22, 2026
edited by devin-ai-integration Bot
Loading

Copy link
Copy Markdown
Collaborator

Summary

Addresses the critical + high severity findings from a recent native-module review:

  • Android: Replace raw "Thread" usage with a managed "ExecutorService", close all zip/stream handles with try-with-resources, and add a Zip Slip guard to "unzip".
  • Android: Extract Zip Slip validation into a testable "ZipSecurity" utility with JUnit regression tests.
  • Android: Emit progress events on the main thread and flush output streams in "StreamUtil.copy".
  • TypeScript: Fix invalid default-parameter syntax in "index.d.ts" and move the import to the top level.
  • iOS: Add nullability annotations to "RNZipArchive.h".
  • Build: Align Android "minSdkVersion" fallback with documented API 23 minimum.
  • CI: Update publish workflow to modern action versions, Node 20, and a tagged npm-publish-action release; fix E2E workflow job names.

Verification

  • "npm test" passes (27/27)
  • "npm run lint" passes
  • Android library compiles successfully (":react-native-zip-archive:compileReleaseJavaWithJavac")
  • Android unit tests pass (":react-native-zip-archive:testReleaseUnitTest")
  • TypeScript strict typecheck against "index.d.ts" passes
  • iOS header + .mm syntax check passes

Notes

  • The iOS "getUncompressedSize" contract is preserved: it still resolves "-1" on error to maintain backward compatibility.
  • "pod lib lint" still fails in this environment due to React header resolution, which is a pre-existing lint-environment issue unrelated to these changes.
Open in Devin Review

plrthink added 2 commits June 22, 2026 18:43
@plrthink
harden: managed executor, resource cleanup, Zip Slip guard, TS types,…
e4f0a66 
… CI updates

- Replace raw Thread usage with ExecutorService in Android module
- Close ZipFile/stream handles with try-with-resources on all paths
- Extract Zip Slip validation into ZipSecurity utility and add JUnit tests
- Emit progress events on the main thread
- Fix TypeScript declarations (optional params, import placement)
- Add iOS nullability annotations
- Align Android minSdkVersion fallback with docs (23)
- Update CI workflows to modern action versions and Node 20
@plrthink
ci: add iOS build validation workflow for playground-rn
bffbff4
devin-ai-integration[bot]
devin-ai-integration Bot reviewed Jun 22, 2026
View reviewed changes

@devin-ai-integration devin-ai-integration Bot left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Devin Review found 3 potential issues.

View 1 additional finding in Devin Review.

Open in Devin Review

Comment thread android/src/main/java/com/rnziparchive/RNZipArchiveModule.java
Comment thread android/src/main/java/com/rnziparchive/RNZipArchiveModule.java
Comment thread android/src/main/java/com/rnziparchive/RNZipArchiveModule.java
plrthink added 27 commits June 22, 2026 19:02
@plrthink
fix: close assetsInputStream in unzipAssets finally block
d8802a8
@plrthink
ci: restore expo e2e checks and add build checks for rn/expo on ios/a…
f693328 
…ndroid

- Re-add Expo matrix entries to e2e.yml for iOS and Android
- Rename e2e jobs to E2E iOS/Android (rn|expo) to match branch protection
- Add Android build workflow for RN and Expo
- Update iOS build workflow to build both RN and Expo
- Disambiguate artifact names by app in matrix jobs
@plrthink
ci: bump Swift version and relax concurrency for Expo iOS builds
b6a2b2a 
Expo Modules Core uses @MainActor/Sendable which require Swift 5.5+
and fail under Xcode 16 strict concurrency when compiled as Swift 5.0.
Apply SWIFT_VERSION=5.5 and SWIFT_STRICT_CONCURRENCY=minimal to the
iOS build commands so both RN and Expo simulator builds pass.
@plrthink
ci: use Swift 6.0 for iOS builds to satisfy expo-modules-core
dae2503 
SWIFT_VERSION=5.5 was rejected/ignored by Xcode 16, leaving ExpoModulesCore
in Swift 5 mode where @mainactor is unknown. Use 6.0 (matching the podspec)
along with SWIFT_STRICT_CONCURRENCY=minimal to keep RN builds relaxed.
@plrthink
ci: use Swift 5 language mode for iOS builds
5b78cd9 
Swift 5 mode on the Xcode 16 / Swift 6 compiler supports @mainactor
but treats strict concurrency diagnostics as warnings, avoiding the
hard errors seen in react-native-screens and expo-modules-core under
Swift 6 complete concurrency checking.
@plrthink
ci: run iOS jobs on macos-14 with Xcode 15.4
bedbedc 
macos-latest uses Xcode 16.4 / Swift 6, which enforces strict concurrency
as errors for Expo's dependencies. macos-14 defaults to Xcode 15.4 with
Swift 5.10, avoiding those hard errors while keeping @mainactor support
via SWIFT_VERSION=5.5.
@plrthink
ci: revert macos-14 and update react-native-screens to 4.25.2
6f92285 
- Keep iOS jobs on macos-latest (Xcode 16 / Swift 6)
- Update react-native-screens 4.25.1 -> 4.25.2 in playground-expo
@plrthink
ci: restore Swift 6.0 + minimal concurrency with updated screens
be90155 
With react-native-screens bumped to 4.25.2, retry Swift 6.0 language
mode and SWIFT_STRICT_CONCURRENCY=minimal to see if the RNScreens
strict-concurrency errors are resolved.
@plrthink
ci: move iOS jobs back to macos-14 (Xcode 15.4)
fa785a0 
react-native-screens 4.25.2 still fails under Swift 6 on macos-latest.
Use macos-14 with Xcode 15.4 / Swift 5.10 as the pragmatic workaround
until upstream dependencies are Swift-6 clean.
@plrthink
ci: per-target Swift versions for Expo iOS Xcode 16 build
47d8db5 
React Native 0.83.9 requires Xcode >= 16.1, so we must stay on
macos-latest. Use a Podfile post-install hook to pin:
- ExpoModulesCore -> Swift 6.0 (needs @mainactor support)
- RNScreens -> Swift 5.0 (still has Swift 6 strict-concurrency issues)

Remove the global SWIFT_VERSION/SWIFT_STRICT_CONCURRENCY xcodebuild
overrides so the per-target settings take effect.
@plrthink
ci: restore macos-latest for iOS jobs
c8d62e9 
The per-target Swift version fix belongs on Xcode 16 / macos-latest,
not macos-14. Restore the runner.
@plrthink
chore: force Swift 6.0 + minimal concurrency for Expo iOS
375065a
@plrthink
chore: patch generated xcconfigs for Swift 6.0 + minimal concurrency
adcb4bb
@plrthink
chore: keep RNScreens on Swift 5.10 to avoid Swift 6 concurrency errors
0a299ac
@plrthink
chore: use Swift 5.10 across Expo iOS workspace
c54ea1e
@plrthink
chore: Swift 6.0 targeted for Expo pods, Swift 5.0 for RNScreens
ae28323
@plrthink
chore: enable Swift 6.2 isolated-conformance experimental features fo…
39ef33d 
…r Expo pods
@plrthink
ci: use macos-26 runner for Expo iOS builds
f0883c1
@plrthink
chore: enable InferIsolatedConformances for Expo iOS pods
d8b46e2
@plrthink
chore: set Swift 6 strict concurrency to minimal for Expo pods
0ae1737
@plrthink
chore: enable main-actor-by-default for Expo iOS workspace
644bc48
@plrthink
fix(ios): revert main-actor-by-default, use InferIsolatedConformances…
6ea1bb4 
…; pin RN iOS to macos-15
@plrthink
fix(ios): patch expo-router isolated conformances for Swift 6.2
f6f7aa1
@plrthink
fix(ios): patch expo-linking Sendable singleton for Swift 6.2
967f644
@plrthink
fix(ios): patch ExpoHeadModule global mutable state for Swift 6.2
2ffb9f0
@plrthink
fix(ios): patch expo-router main-actor isolation for Swift 6.2
8782f40
@plrthink
fix(ios): use actual newlines in @mainactor pod patches
60be459
@plrthink plrthink force-pushed the harden-native-modules branch from c37c7ab to 5446876 Compare June 23, 2026 17:17
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@devin-ai-integration devin-ai-integration[bot] devin-ai-integration[bot] left review comments

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@plrthink