chore: upgrade to 4.3.0-exodus.0 for RN 0.85

apps/common-app/package.json

@@ -16,6 +16,7 @@
     "react-native": "*"
   },
   "dependencies": {
+    "@exodus/react-native-reanimated": "workspace:*",
     "@fortawesome/fontawesome-svg-core": "6.5.2",
     "@fortawesome/free-solid-svg-icons": "6.5.2",
     "@fortawesome/react-native-fontawesome": "0.3.2",
@@ -38,7 +39,6 @@
     "react-native-gesture-handler": "2.28.0",
     "react-native-mmkv": "4.0.0",
     "react-native-nitro-modules": "0.31.9",
-    "react-native-reanimated": "workspace:*",
     "react-native-safe-area-context": "5.6.1",
     "react-native-screens": "4.19.0-nightly-20251125-46052f31e",
     "react-native-svg": "patch:react-native-svg@npm%3A15.15.3#~/.yarn/patches/react-native-svg-npm-15.15.3-0699a4dc13.patch",

apps/macos-example/package.json

@@ -11,11 +11,11 @@
     "type:check": "tsc --noEmit"
   },
   "dependencies": {
+    "@exodus/react-native-reanimated": "workspace:*",
     "common-app": "workspace:*",
     "react": "19.1.4",
     "react-native": "0.81.4",
     "react-native-macos": "patch:react-native-macos@npm%3A0.81.4#~/.yarn/patches/react-native-macos-npm-0.81.4.patch",
-    "react-native-reanimated": "workspace:*",
     "react-native-worklets": "0.8.1"
   },
   "devDependencies": {

apps/next-example/package.json

@@ -15,12 +15,12 @@
     "format": "prettier --write --list-different ."
   },
   "dependencies": {
+    "@exodus/react-native-reanimated": "workspace:*",
     "expo": "54.0.13",
     "next": "15.5.4",
     "react": "19.2.3",
     "react-dom": "19.2.3",
     "react-native": "0.85.0-rc.1",
-    "react-native-reanimated": "workspace:*",
     "react-native-web": "0.21.1",
     "react-native-worklets": "0.8.1",
     "webpack": "5.102.1"

apps/tvos-example/package.json

@@ -13,9 +13,9 @@
     "type:check": "tsc --noEmit"
   },
   "dependencies": {
+    "@exodus/react-native-reanimated": "workspace:*",
     "react": "19.2.3",
     "react-native": "npm:react-native-tvos@0.84.1-0",
-    "react-native-reanimated": "workspace:*",
     "react-native-worklets": "0.8.1"
   },
   "devDependencies": {

package.json

@@ -21,7 +21,7 @@
   "private": true,
   "scripts": {
     "build": "husky && yarn build-packages",
-    "build-packages": "yarn workspace react-native-reanimated build",
+    "build-packages": "yarn workspace @exodus/react-native-reanimated build",
     "build-all": "husky && yarn workspaces foreach --all --parallel --topological-dev run build",
     "format": "yarn format:root && yarn format:workspaces",
     "format:root": "prettier --cache --write --list-different --ignore-path .gitignore --ignore-path .prettierignore --ignore-path .prettiereslintignore .",

packages/react-native-reanimated/Common/cpp/reanimated/Fabric/updates/AnimatedPropsRegistry.cpp

@@ -23,7 +23,7 @@ void AnimatedPropsRegistry::update(jsi::Runtime &rt, const jsi::Value &operation
     const jsi::Value &updates = item.getProperty(rt, "updates");
     addUpdatesToBatch(shadowNode, jsi::dynamicFromValue(rt, updates));
 
-    if constexpr (StaticFeatureFlags::getFlag("FORCE_REACT_RENDER_FOR_SETTLED_ANIMATIONS")) {
+    if (RuntimeFeatureFlags::forceReactRenderForSettledAnimations()) {
       timestampMap_[shadowNode->getTag()] = timestamp;
     }
   }

packages/react-native-reanimated/Common/cpp/reanimated/NativeModules/ReanimatedModuleProxy.cpp

@@ -343,7 +343,12 @@ jsi::Value ReanimatedModuleProxy::getStaticFeatureFlag(jsi::Runtime &rt, const j
 
 jsi::Value
 ReanimatedModuleProxy::setDynamicFeatureFlag(jsi::Runtime &rt, const jsi::Value &name, const jsi::Value &value) {
-  reanimated::DynamicFeatureFlags::setFlag(name.asString(rt).utf8(rt), value.asBool());
+  const auto flagName = name.asString(rt).utf8(rt);
+  const auto flagValue = value.asBool();
+  if (flagName == "FORCE_REACT_RENDER_FOR_SETTLED_ANIMATIONS") {
+    reanimated::RuntimeFeatureFlags::setForceReactRenderForSettledAnimations(flagValue);
+  }
+  reanimated::DynamicFeatureFlags::setFlag(flagName, flagValue);
   return jsi::Value::undefined();
 }
 
@@ -528,9 +533,9 @@ void ReanimatedModuleProxy::unregisterCSSTransition(jsi::Runtime &rt, const jsi:
 }
 
 jsi::Value ReanimatedModuleProxy::getSettledUpdates(jsi::Runtime &rt) {
-  react_native_assert(
-      StaticFeatureFlags::getFlag("FORCE_REACT_RENDER_FOR_SETTLED_ANIMATIONS") &&
-      "getSettledUpdates requires FORCE_REACT_RENDER_FOR_SETTLED_ANIMATIONS static feature flag to be enabled");
+  if (!RuntimeFeatureFlags::forceReactRenderForSettledAnimations()) {
+    return jsi::Array(rt, 0);
+  }
 
   // TODO(future): use unified timestamp
   const auto currentTimestamp = getAnimationTimestamp_();

packages/react-native-reanimated/Common/cpp/reanimated/RuntimeDecorators/RNRuntimeDecorator.cpp

@@ -10,14 +10,7 @@ void RNRuntimeDecorator::decorate(
     jsi::Runtime &rnRuntime,
     jsi::Runtime &uiRuntime,
     const std::shared_ptr<ReanimatedModuleProxy> &reanimatedModuleProxy) {
-  auto workletRuntimeValue = rnRuntime.global()
-                                 .getPropertyAsObject(rnRuntime, "ArrayBuffer")
-                                 .asFunction(rnRuntime)
-                                 .callAsConstructor(rnRuntime, {static_cast<double>(sizeof(void *))});
-  uintptr_t *workletRuntimeData =
-      reinterpret_cast<uintptr_t *>(workletRuntimeValue.getObject(rnRuntime).getArrayBuffer(rnRuntime).data(rnRuntime));
-  workletRuntimeData[0] = reinterpret_cast<uintptr_t>(&uiRuntime);
-  rnRuntime.global().setProperty(rnRuntime, "_WORKLET_RUNTIME", workletRuntimeValue);
+  // Security: _WORKLET_RUNTIME pointer leak removed (0056)
 
 #ifndef NDEBUG
   checkJSVersion(rnRuntime);

packages/react-native-reanimated/Common/cpp/reanimated/Tools/FeatureFlags.cpp

@@ -1,5 +1,6 @@
 #include <reanimated/Tools/FeatureFlags.h>
 
+#include <atomic>
 #include <string>
 #include <unordered_map>
 
@@ -15,4 +16,15 @@ void DynamicFeatureFlags::setFlag(const std::string &name, bool value) {
   flags_[name] = value;
 }
 
+std::atomic<bool> RuntimeFeatureFlags::forceReactRenderForSettledAnimations_{
+    StaticFeatureFlags::getFlag("FORCE_REACT_RENDER_FOR_SETTLED_ANIMATIONS")};
+
+bool RuntimeFeatureFlags::forceReactRenderForSettledAnimations() {
+  return forceReactRenderForSettledAnimations_.load(std::memory_order_relaxed);
+}
+
+void RuntimeFeatureFlags::setForceReactRenderForSettledAnimations(bool value) {
+  forceReactRenderForSettledAnimations_.store(value, std::memory_order_relaxed);
+}
+
 } // namespace reanimated

packages/react-native-reanimated/Common/cpp/reanimated/Tools/FeatureFlags.h

@@ -1,4 +1,5 @@
 #pragma once
+#include <atomic>
 #include <string>
 #include <unordered_map>
 
@@ -41,4 +42,15 @@ class DynamicFeatureFlags {
   static std::unordered_map<std::string, bool> flags_;
 };
 
+// Per-flag runtime override for select flags that we need to toggle at runtime.
+// Defaults to the compile-time StaticFeatureFlags value. Thread-safe via atomic.
+class RuntimeFeatureFlags {
+ public:
+  static bool forceReactRenderForSettledAnimations();
+  static void setForceReactRenderForSettledAnimations(bool value);
+
+ private:
+  static std::atomic<bool> forceReactRenderForSettledAnimations_;
+};
+
 } // namespace reanimated

packages/react-native-reanimated/android/CMakeLists.txt

@@ -45,7 +45,7 @@ file(GLOB_RECURSE REANIMATED_ANDROID_CPP_SOURCES CONFIGURE_DEPENDS
 
 find_package(fbjni REQUIRED CONFIG)
 find_package(ReactAndroid REQUIRED CONFIG)
-find_package(react-native-worklets REQUIRED CONFIG)
+find_package(exodus_react-native-worklets REQUIRED CONFIG)
 
 add_library(reanimated SHARED ${REANIMATED_COMMON_CPP_SOURCES}
                               ${REANIMATED_ANDROID_CPP_SOURCES})
@@ -99,4 +99,4 @@ target_link_libraries(
   ReactAndroid::jsi
   fbjni::fbjni
   android
-  react-native-worklets::worklets)
+  exodus_react-native-worklets::worklets)

packages/react-native-reanimated/android/build.gradle

@@ -317,8 +317,8 @@ dependencies {
     if (project == rootProject) {
         // This is needed for linting in Reanimated's repo.
     } else {
-        if (rootProject.subprojects.find { it.name == "react-native-worklets" }) {
-            implementation project(":react-native-worklets")
+        if (rootProject.subprojects.find { it.name == "exodus_react-native-worklets" }) {
+            implementation project(":exodus_react-native-worklets")
         } else {
             throw new GradleException("[Reanimated] `react-native-worklets` library not found. Please install it as a dependency in your project. Install `react-native-worklets` with your package manager, i.e. `yarn add react-native-worklets` or `npm i react-native-worklets`. Read the documentation for more details: https://docs.swmansion.com/react-native-reanimated/docs/guides/troubleshooting#unable-to-find-a-specification-for-rnworklets-depended-upon-by-rnreanimated")
         }
@@ -328,14 +328,14 @@ dependencies {
 preBuild.dependsOn(prepareReanimatedHeadersForPrefabs)
 
 if (project != rootProject) {
-    evaluationDependsOn(":react-native-worklets")
+    evaluationDependsOn(":exodus_react-native-worklets")
 
     afterEvaluate {
         tasks.named("externalNativeBuildDebug").configure {
-            dependsOn(findProject(":react-native-worklets").tasks.named("externalNativeBuildDebug"))
+            dependsOn(findProject(":exodus_react-native-worklets").tasks.named("externalNativeBuildDebug"))
         }
         tasks.named("externalNativeBuildRelease").configure {
-            dependsOn(findProject(":react-native-worklets").tasks.named("externalNativeBuildRelease"))
+            dependsOn(findProject(":exodus_react-native-worklets").tasks.named("externalNativeBuildRelease"))
         }
         tasks.named("clean") {
             it.finalizedBy(cleanCMakeCache)

packages/react-native-reanimated/android/src/main/cpp/reanimated/android/SensorSetter.h

@@ -17,7 +17,9 @@ class SensorSetter : public HybridClass<SensorSetter> {
     size_t size = value->size();
     auto elements = value->getRegion(0, size);
     double array[7];
-    for (size_t i = 0; i < size; i++) {
+    // Security: bounds check to prevent buffer overflow (0080)
+    size_t max = sizeof(array) / sizeof(array[0]);
+    for (size_t i = 0; i < size && i < max; i++) {
       array[i] = elements[i];
     }
     callback_(array, orientationDegrees);

packages/react-native-reanimated/package.json

@@ -1,6 +1,6 @@
 {
-  "name": "react-native-reanimated",
-  "version": "4.3.0",
+  "name": "@exodus/react-native-reanimated",
+  "version": "4.3.0-exodus.3",
   "description": "More powerful alternative to Animated library for React Native.",
   "keywords": [
     "react-native",
@@ -34,7 +34,7 @@
     "type:check:strict": "yarn type:check:strict:src && yarn type:check:strict:app",
     "type:check:strict:src": "yarn tsc --noEmit --customConditions react-native-strict-api",
     "type:check:strict:app": "yarn workspace common-app type:check:strict",
-    "build": "yarn workspace react-native-worklets build && bob build",
+    "build": "yarn workspace @exodus/react-native-worklets build && bob build",
     "circular-dependency-check": "yarn madge --extensions js,jsx --circular lib",
     "tree-shake:check:web": "yarn is-tree-shakable --resolution web",
     "validate-peers": "node ../../scripts/validate-compatibility-peer-dependencies.js"
@@ -96,9 +96,9 @@
     "semver": "^7.7.3"
   },
   "peerDependencies": {
+    "@exodus/react-native-worklets": "0.9.x",
     "react": "*",
-    "react-native": "0.81 - 0.85",
-    "react-native-worklets": "0.8.x"
+    "react-native": "0.81 - 0.85"
   },
   "devDependencies": {
     "@babel/core": "7.28.4",

packages/react-native-reanimated/plugin/index.js

@@ -1,4 +1,4 @@
 // @ts-ignore plugin type isn't exposed
-const plugin = require('react-native-worklets/plugin');
+const plugin = require('@exodus/react-native-worklets/plugin');
 
 module.exports = plugin;