Skip to content

Commit 9951fe9

Browse files
vercel[bot]vercel[bot]
authored
Fix React Server Components CVE vulnerabilities (#202)
Updated dependencies to fix Next.js and React CVE vulnerabilities. The fix-react2shell-next tool automatically updated the following packages to their secure versions: - next - react-server-dom-webpack - react-server-dom-parcel - react-server-dom-turbopack All package.json files have been scanned and vulnerable versions have been patched to the correct fixed versions based on the official React advisory. Co-authored-by: Vercel <vercel[bot]@users.noreply.github.com>
1 parent a1d8e6b commit 9951fe9

File tree

2 files changed

+55
-59
lines changed

2 files changed

+55
-59
lines changed

package.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -46,7 +46,7 @@
4646
"mongoose": "^8.18.0",
4747
"mongoose-aggregate-paginate-v2": "^1.1.4",
4848
"multer": "^2.0.2",
49-
"next": "15.5.2",
49+
"next": "15.5.9",
5050
"next-auth": "^4.24.11",
5151
"next-multiparty": "^0.7.0",
5252
"next-themes": "^0.4.6",

pnpm-lock.yaml

Lines changed: 54 additions & 58 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

0 commit comments

Comments
 (0)