Skip to content

stack: facebook 18.2.3#427

Open
renovate[bot] wants to merge 1 commit intomainfrom
renovate/facebook
Open

stack: facebook 18.2.3#427
renovate[bot] wants to merge 1 commit intomainfrom
renovate/facebook

Conversation

@renovate
Copy link
Copy Markdown
Contributor

@renovate renovate Bot commented Mar 27, 2026
edited
Loading

This PR contains the following updates:

Package Change Age Confidence
com.facebook.android:facebook-core 18.1.318.2.3 age confidence
com.facebook.android:facebook-applinks 18.1.318.2.3 age confidence

Release Notes

facebook/facebook-android-sdk (com.facebook.android:facebook-core)

v18.2.3

Added
  • Added redirect_uri support for secure login flows across WebView, CustomTab, and native app (Katana) handlers
  • Added intent_uri_package_target parameter support for CustomTab and Katana login flows
  • Added protected data metadata flag for Integrity
  • Added banned params manager to send banned param names for Integrity
  • Added referrer for Deep Link requests
  • Added Build.VERSION.SDK_INT check before using AdServices APIs
Fixed
  • Fixed ConcurrentModificationException in FetchedAppGateKeepersManager
  • Avoided Kotlin reflection during FetchedAppGateKeepersManager static init
  • Fixed AtomicBoolean misuse in AttributionIdentifiers
  • Fixed identity comparison in ImageDownloader RequestKey.equals
  • Fixed logic bug in FileLruCache content tag check
  • Fixed thread safety by adding @​Volatile to shared mutable fields across multiple classes
  • Fixed variable shadowing in LegacyTokenHelper and Utility
  • Fixed CustomRedirectWebDialog WebView sizing regression
  • Fixed token refresh to execute requests individually for Gaming Graph tokens
  • Only warn about missing FacebookActivity when facebook-common is present
Changed
  • Updated to Gradle 8.5
  • Updated install-referrer dependency
  • Replaced deprecated CookieSyncManager and removeExpiredCookie usage
  • Replaced deprecated BigDecimal.ROUND_HALF_UP with RoundingMode.HALF_UP
  • Replaced java.util.Random with SecureRandom for security compliance
  • Removed SSL bypass flag code path in WebDialog
  • Stopped persisting Access Token with Events
  • Used debug-gated logd() instead of Log.d() in catch block logging
  • Improved resource management with Kotlin .use{} for I/O operations
  • Added logging to previously empty catch blocks

Configuration

📅 Schedule: (UTC)

  • Branch creation
    • At any time (no schedule defined)
  • Automerge
    • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about these updates again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate Bot requested a review from a team March 27, 2026 02:17
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants