Merged
Conversation
* CVE-2025-55184 Patch updates
✅ Deploy Preview for adapt-giving ready!
To edit notification comments on pull requests, go to your Netlify project configuration. |
Contributor
There was a problem hiding this comment.
Pull request overview
This is a security release (v7.0.1) addressing CVE-2025-55184 through dependency updates, particularly upgrading Next.js, React, and ESLint-related packages. The PR also includes code quality improvements by refactoring React hooks patterns and modernizing the ESLint configuration to use the flat config format.
- Upgraded critical dependencies: Next.js (16.0.7 → 16.0.10), React/React-DOM (19.2.1 → 19.2.3), and eslint-config-next (15.5.3 → 16.0.10)
- Refactored components to use useMemo instead of useState/useEffect for derived values, improving performance
- Modernized ESLint configuration from FlatCompat wrapper to native flat config format
Reviewed changes
Copilot reviewed 10 out of 11 changed files in this pull request and generated 4 comments.
Show a summary per file
| File | Description |
|---|---|
| package.json | Updated dependencies for Next.js, React, React-DOM, and eslint-config-next to address security vulnerability |
| package-lock.json | Lock file updates reflecting dependency upgrades including new Babel packages and TypeScript ESLint v8.49.0 |
| eslint.config.mjs | Refactored to use flat config format directly, removing FlatCompat wrapper and reorganizing rule configurations |
| utilities/data/getStoryData.ts | Removed eslint-disable comment for no-explicit-any (but still uses any type) |
| tailwind/plugins/base/base.ts | Removed eslint-disable comment for no-unsafe-function-type (but still uses Function type) |
| components/Search/Search.tsx | Removed eslint-disable comment for no-explicit-any (but still uses any[] type) |
| components/Storyblok/partials/SbLink.tsx | Refactored from useState/useEffect to useMemo for URL computation with UTMs |
| components/Cta/CtaExternalLink.tsx | Refactored from useState/useEffect to useMemo for external link href with UTMs |
| components/Accordion/Accordion.tsx | Optimized initial state computation using useState initializer function instead of useEffect |
| components/Storyblok/SbSupportPage/SbSupportPage.tsx | Added eslint-disable for new react-hooks/set-state-in-effect rule |
| components/Search/Modal/SearchModalContext.tsx | Added eslint-disable for new react-hooks/set-state-in-effect rule |
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
yvonnetangsu
approved these changes
Dec 12, 2025
Member
yvonnetangsu
left a comment
yvonnetangsu
left a comment
There was a problem hiding this comment.
Quick check components that were updated and all still seems to be good 👍🏼 Thanks!
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
READY FOR REVIEW
Summary