Merge pull request #2765 from bigcommerce/changeset-release/integrations/makeswift

chanceaclark · web-flow · commit 3dc74a13f115 · 2025-12-11T17:05:38.000-07:00
Version Packages (`integrations/makeswift`)
diff --git a/.changeset/tame-wolves-swim.md b/.changeset/tame-wolves-swim.md
diff --git a/core/CHANGELOG.md b/core/CHANGELOG.md
@@ -1,5 +1,51 @@
 # Changelog
 
+## 1.3.7
+
+### Patch Changes
+
+- [#2764](https://github.com/bigcommerce/catalyst/pull/2764) [`83c5b75`](https://github.com/bigcommerce/catalyst/commit/83c5b758a4a19e76fbb89bcea48f95a3da3f76b4) Thanks [@chanceaclark](https://github.com/chanceaclark)! - # Next.js 15.5.8 Upgrade
+
+  Catalyst has been upgraded to Next.js 15.5.8. This is a patch version upgrade that requires migration steps for existing stores to fix a security vulnerability.
+
+  ## 🔒 Critical Security Update
+
+  **This upgrade addresses a critical security vulnerability ([CVE-2025-55184 + CVE-2025-55183](https://nextjs.org/blog/security-update-2025-12-11))** that affects React Server Components. These vulnerabilities allow a Denial of Service attack and Source Code Exposure attach. This upgrade includes:
+  - Next.js 15.5.8 with the security patch
+  - React 19.1.3 and React DOM 19.1.3 with the security patch
+
+  **All users are strongly encouraged to upgrade immediately.**
+
+  ## Key Changes
+  - ⚡ **Next.js 15.5.8**: Upgraded from Next.js 15.5.7 to 15.5.8
+  - ⚛️ **React 19**: Upgraded to React 19.1.3 and React DOM 19.1.3
+
+  ## Migration Guide
+
+  ### Update Dependencies
+
+  If you're maintaining a custom Catalyst store, update your `package.json`:
+
+  ```json
+  {
+    "dependencies": {
+      "next": "15.5.8",
+      "react": "19.1.3",
+      "react-dom": "19.1.3"
+    },
+    "devDependencies": {
+      "@next/bundle-analyzer": "15.5.8",
+      "eslint-config-next": "15.5.8"
+    }
+  }
+  ```
+
+  Then run:
+
+  ```bash
+  pnpm install
+  ```
+
 ## 1.3.6
 
 ### Patch Changes
diff --git a/core/package.json b/core/package.json
@@ -1,7 +1,7 @@
 {
   "name": "@bigcommerce/catalyst-makeswift",
   "description": "BigCommerce Catalyst is a Next.js starter kit for building headless BigCommerce storefronts.",
-  "version": "1.3.6",
+  "version": "1.3.7",
   "private": true,
   "scripts": {
     "dev": "npm run generate && next dev",

Original file line number	Diff line number	Diff line change
`@@ -1,7 +1,7 @@`
`1`	`1`	`{`
`2`	`2`	`"name": "@bigcommerce/catalyst-makeswift",`
`3`	`3`	`"description": "BigCommerce Catalyst is a Next.js starter kit for building headless BigCommerce storefronts.",`
`4`		`- "version": "1.3.6",`
	`4`	`+ "version": "1.3.7",`
`5`	`5`	`"private": true,`
`6`	`6`	`"scripts": {`
`7`	`7`	`"dev": "npm run generate && next dev",`