TL;DR

Create React App now fully supports React 18, updating project templates to use the new createRoot API (React rendering method) for improved performance and features.

New

• React 18 Support: Templates now use createRoot for compatibility with React 18.
• Relaxed Version Check: Warnings about using older versions of Create React App are less strict.

Fixes Worth Knowing

• Webpack output is now cleaner, only displaying errors and warnings.
• Improved URL handling for cross-platform compatibility.
• Updated React Testing Library (RTL) version for React 18 support.

Before You Upgrade

Run npm install --save --save-exact [email protected] or yarn add --exact [email protected] within your existing project to update.

TL;DR

create-react-app updates dependencies to address a security vulnerability in immer and fixes an issue with the ESLint (code quality tool) opt-out flag.

Fixes Worth Knowing

• Updated eslint-webpack-plugin to correctly respect the opt-out flag for ESLint checks.
• Addressed a security vulnerability by updating the immer dependency.

Before You Upgrade

Run npm install --save --save-exact [email protected] or yarn add --exact [email protected] within your existing projects.

TL;DR

Recent updates to Create React App address security vulnerabilities reported by npm audit, ensuring cleaner dependency checks without impacting existing projects.

Before You Upgrade

Run npm install --save --save-exact [email protected] or yarn add --exact [email protected] within your project to incorporate the latest dependency updates.

TL;DR

TypeScript projects now have significantly faster rebuild times during development thanks to optimizations in react-dev-utils.

New

• Faster TypeScript Builds: Development rebuilds are quicker for projects using TypeScript.
• Improved Caching: react-scripts now uses contenthash instead of chunkhash for more effective long-term caching of assets.

Fixes Worth Knowing

• Fixed a clickable link in deploy instructions.
• Reverted changes that temporarily disabled CSS sourcemaps in development.
• Resolved an issue with TypeScript rebuild speeds that was introduced and then reverted in prior releases.

Before You Upgrade

Run npm install --save --save-exact [email protected] or yarn add --exact [email protected] within your project to update.

TL;DR

A critical security vulnerability (affecting development servers) on Windows has been patched, requiring an update to react-scripts.

Fixes Worth Knowing

A Windows-specific vulnerability (CVE-2018-6342) in the development server has been resolved.

Before You Upgrade

Update react-scripts to version 1.1.5 by running npm install --save --save-exact [email protected] or yarn add --exact [email protected] within your project directory.

TL;DR

Create React App now avoids crashing on Node 7.7.2 and offers improved reliability for ejecting projects, especially those that are scoped packages (packages with a name starting with @).

Breaking

• Ejecting from scoped packages: Ejecting now works correctly within a scoped package.
• macOS openBrowser(): The openBrowser() function now works correctly on macOS when BROWSER=open is set.

New

• Scoped package support: You can now specify a scoped package when using the --scripts-version flag.
• Linting improvements: The linter now supports ignoreRestSiblings in no-unused-vars, reducing false positives when using rest properties.

Fixes Worth Knowing

• Node 7.7.2 crash: A bug causing crashes with Node 7.7.2 when running npm start is now resolved.
• Port detection: Improved reliability when detecting available ports for the development server.
• Hot reloading after eject: Hot reloading now functions correctly after ejecting.

Before You Upgrade

Run npm install --save-dev --save-exact [email protected] inside your project to update. You can also update the global CLI with npm install -g [email protected] for scoped package support.